Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bijanbahar.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 16 Jan 2015 13:22:26 GMT
Pragma: no-cache
Accept-Ranges: bytes
ETag: "192d-52fe7544"
Server: Apache
Content-Length: 6445
Content-Type: text/html
Last-Modified: Fri, 14 Feb 2014 19:57:56 GMT
...6445 bytes of data.
GET / HTTP/1.1
Host: bijanbahar.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Fri, 16 Jan 2015 13:22:26 GMT
Pragma: no-cache
Accept-Ranges: bytes
ETag: "192d-52fe7544"
Server: Apache
Content-Length: 6445
Content-Type: text/html
Last-Modified: Fri, 14 Feb 2014 19:57:56 GMT
...6445 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bijanbahar.com
Referer: http://www.google.com/search?q=bijanbahar.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bijanbahar.com
Referer: http://www.google.com/search?q=bijanbahar.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://bijanbahar.com/ | 200 OK Content-Length: 6445 Content-Type: text/html | clean |
http://bijanbahar.com/66.html | 200 OK Content-Length: 11492 Content-Type: text/html | clean |
http://bijanbahar.com/images/abh_lion.html | 200 OK Content-Length: 170466 Content-Type: text/html | clean |
http://web.nba1001.net:8888/tj/tongji.js | 500 Can't connect to web.nba1001.net:8888 Content-Length: 192 Content-Type: text/plain | clean |
http://web.nba1001.net:8888/test404page.js | 500 Can't connect to web.nba1001.net:8888 Content-Length: 192 Content-Type: text/plain | clean |
http://bijanbahar.com/images/abh_redskin.html | 200 OK Content-Length: 302269 Content-Type: text/html | clean |
http://bijanbahar.com/index.html | 200 OK Content-Length: 6445 Content-Type: text/html | clean |
http://bijanbahar.com/sculptures.html | 200 OK Content-Length: 18869 Content-Type: text/html | clean |
http://bijanbahar.com/69.html | 200 OK Content-Length: 14997 Content-Type: text/html | clean |
http://bijanbahar.com/paintings.html | 200 OK Content-Length: 19055 Content-Type: text/html | clean |
http://bijanbahar.com/untitled1.html | 200 OK Content-Length: 15324 Content-Type: text/html | clean |
http://bijanbahar.com/info.html | 200 OK Content-Length: 15083 Content-Type: text/html | clean |
http://bijanbahar.com/validate.js | 200 OK Content-Length: 10862 Content-Type: application/javascript | clean |
http://bijanbahar.com/collages.html | 200 OK Content-Length: 16153 Content-Type: text/html | clean |
http://bijanbahar.com/72.html | 200 OK Content-Length: 15178 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bijanbahar.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bijanbahar.com/
Result: bijanbahar.com is not infected or malware details are not published yet.
Result: bijanbahar.com is not infected or malware details are not published yet.