Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://creativeshamans.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: creativeshamans.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Sep 2014 06:04:23 GMT Location: http://red3.polezno2014.com/to/?p=2905 Server: nginx/1.6.2 Content-Length: 315 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://red3.polezno2014.com/to/?p=2905 (imitation of visitor from search engine) GET /to/?p=2905 HTTP/1.1 Host: red3.polezno2014.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 17 Sep 2014 06:04:24 GMT Pragma: no-cache Location: http://tabour.ru Server: nginx/1.4.6 Content-Length: 83 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=u7pd8r0u1c96911smqrsl38cs4; path=/ Set-Cookie: p=2905; expires=Sat, 10-Jan-2015 23:51:42 GMT; path=/ X-Powered-By: PHP/5.1.6 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://creativeshamans.com/ | 200 OK Content-Length: 1568 Content-Type: text/html | clean |
http://creativeshamans.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=creativeshamans.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://creativeshamans.com/
Result: creativeshamans.com is not infected or malware details are not published yet.
Result: creativeshamans.com is not infected or malware details are not published yet.