Scanned pages/files
| Request | Server response | Status |
http://dreamshirts.ru/ | 200 OK Content-Length: 35862 Content-Type: text/html | suspicious |
Suspicious code found <!--LiveInternet counter--><script type="text/javascript"><!--
document.write("<a rel='nofollow' href='http://www.liveinternet.ru/click' "+ "target=_blank><img src='http://counter.yadro.ru/hit?t52.1;r"+ escape(document.referrer)+((typeof(screen)=="undefined")?"": ";s"+screen.width+"*"+screen.height+"*"+(screen.colorDepth? screen.colorDepth:screen.pixelDepth))+";u"+escape(document.URL)+ ";"+Math.random()+ "' alt='' title='LiveInternet: показано ÑиÑло пÑоÑмоÑÑов и"+ " поÑеÑиÑелей за 24 ÑаÑа' "+ "border='0' width='88' height='31'><\/a>") //--></script><!--/LiveInternet--> | ||
http://dreamshirts.ru/jscripts/modernizr.custom.js?v=2 | 200 OK Content-Length: 15160 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 200 OK Content-Length: 92629 Content-Type: text/javascript | clean |
http://dreamshirts.ru//vk.com/js/api/openapi.js?79/ | 404 Not Found Content-Length: 268 Content-Type: text/html | clean |
http://dreamshirts.ru/test404page.js | 404 Not Found Content-Length: 268 Content-Type: text/html | clean |
http://dreamshirts.ru//vk.com/js/api/openapi.js?101/ | 404 Not Found Content-Length: 268 Content-Type: text/html | clean |
http://app.comagic.ru/static/cs.min.js | 200 OK Content-Length: 301184 Content-Type: application/x-javascript | clean |
http://dreamshirts.ru//yandex.st/share/share.js/ | 404 Not Found Content-Length: 0 Content-Type: text/html | clean |
http://dreamshirts.ru/jscripts/jquery.js | 200 OK Content-Length: 93435 Content-Type: application/x-javascript | clean |
http://dreamshirts.ru/jscripts/script.js?v=5 | 200 OK Content-Length: 7775 Content-Type: application/x-javascript | clean |
http://dreamshirts.ru/jscripts/jquery.cycle.min.js | 200 OK Content-Length: 20004 Content-Type: application/x-javascript | clean |
http://app.comagic.ru/static/comagic/comagic.min.js | 200 OK Content-Length: 303832 Content-Type: application/x-javascript | clean |
http://google.com/js | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Thu, 16 Apr 2015 08:41:02 GMT Location: http://www.google.com/js Server: sffe Content-Length: 221 Content-Type: text/html; charset=UTF-8 Expires: Sat, 16 May 2015 08:41:02 GMT Alternate-Protocol: 80:quic,p=0.5 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/js | 404 Not Found Content-Length: 1427 Content-Type: text/html | clean |
http://www.google.com//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://dreamshirts.ru//www.google.com/ | 404 Not Found Content-Length: 0 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dreamshirts.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 16 Apr 2015 08:40:58 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Length: 35862
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=g32oo3emikq9bnleq2oppv7ev5; path=/
...35862 bytes of data.
GET / HTTP/1.1
Host: dreamshirts.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 16 Apr 2015 08:40:58 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Length: 35862
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=g32oo3emikq9bnleq2oppv7ev5; path=/
...35862 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dreamshirts.ru
Referer: http://www.google.com/search?q=dreamshirts.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dreamshirts.ru
Referer: http://www.google.com/search?q=dreamshirts.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dreamshirts.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dreamshirts.ru/
Result: dreamshirts.ru is not infected or malware details are not published yet.
Result: dreamshirts.ru is not infected or malware details are not published yet.