Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bluetrek.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 08:40:04 GMT
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html
Set-Cookie: ndleqabu_=%D0%BA%D0%B0%D0%BA+%D0%B7%D0%B0%D1%87%D0%B0%D1%80%D0%B8%D1%82%D1%8C+%D0%B2%D0%B5%D1%89%D1%8C+%D0%BD%D0%B0+127+%D0%BB%D0%B2%D0%BB; expires=Thu, 26-Feb-2015 08:41:33 GMT; path=/; domain=.bluetrek.ru
X-Powered-By: PHP/5.4.35
GET / HTTP/1.1
Host: bluetrek.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 08:40:04 GMT
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html
Set-Cookie: ndleqabu_=%D0%BA%D0%B0%D0%BA+%D0%B7%D0%B0%D1%87%D0%B0%D1%80%D0%B8%D1%82%D1%8C+%D0%B2%D0%B5%D1%89%D1%8C+%D0%BD%D0%B0+127+%D0%BB%D0%B2%D0%BB; expires=Thu, 26-Feb-2015 08:41:33 GMT; path=/; domain=.bluetrek.ru
X-Powered-By: PHP/5.4.35
Second query (visit from search engine):
GET / HTTP/1.1
Host: bluetrek.ru
Referer: http://www.google.com/search?q=bluetrek.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bluetrek.ru
Referer: http://www.google.com/search?q=bluetrek.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://bluetrek.ru/ | 200 OK Content-Length: 51704 Content-Type: text/html | clean |
http://bluetrek.ru/js/default.js | 200 OK Content-Length: 10981 Content-Type: application/x-javascript | clean |
http://bluetrek.ru/js/qsearch.js | 200 OK Content-Length: 801 Content-Type: application/x-javascript | clean |
http://news.yandex.ru/common.js | 200 OK Content-Length: 377 Content-Type: application/x-javascript | clean |
http://news.yandex.ru/ru/movies3.utf8.js | 200 OK Content-Length: 2213 Content-Type: application/javascript | clean |
http://bluetrek.ru/2 | 404 Not Found Content-Length: 25995 Content-Type: text/html | clean |
http://bluetrek.ru/rss | 200 OK Content-Length: 5664 Content-Type: text/xml | clean |
http://bluetrek.ru/test404page.js | 404 Not Found Content-Length: 25733 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/ | 404 Not Found Content-Length: 26054 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/2/ | 404 Not Found Content-Length: 25796 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/2/2/ | 404 Not Found Content-Length: 25719 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/2/2/2/ | 404 Not Found Content-Length: 25886 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/2/2/2/2/ | 404 Not Found Content-Length: 25937 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/2/2/2/2/2/ | 404 Not Found Content-Length: 26046 Content-Type: text/html | clean |
http://bluetrek.ru//novie_post/2/2/2/2/2/2/ | 404 Not Found Content-Length: 25886 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bluetrek.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bluetrek.ru/
Result: bluetrek.ru is not infected or malware details are not published yet.
Result: bluetrek.ru is not infected or malware details are not published yet.