Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://fanfishing.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: fanfishing.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Mon, 25 Aug 2014 08:02:22 GMT Pragma: no-cache Location: http://web-redirect.ru/?web Server: nginx/0.8.53 Content-Type: text/html; charset=utf-8 Expires: Mon, 1 Jan 2001 00:00:00 GMT Last-Modified: Mon, 25 Aug 2014 08:02:22 GMT P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: _cutt_caches_images=1408953739; expires=Tue, 26-Aug-2014 08:02:19 GMT; path=/ Set-Cookie: af4e662bac48a38d230934d5abb77ea9=qndtfgrd046g0d5brrutvq4nj4; path=/ X-Powered-By: PHP/5.3.10 | malicious |
URL: http://web-redirect.ru/?web (imitation of visitor from search engine) GET /?web HTTP/1.1 Host: web-redirect.ru Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Mon, 25 Aug 2014 08:02:22 GMT Pragma: no-cache Location: http://eciga.org/components/com_weblinks/1/separator.php Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Mon, 25 Aug 2014 08:02:22 GMT X-Powered-By: PHP/5.3.3 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://fanfishing.ru/ | 200 OK Content-Length: 46021 Content-Type: text/html | clean |
http://fanfishing.ru/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/x-javascript | clean |
http://fanfishing.ru/templates/gopip_fish/javascript/md_stylechanger.js | 200 OK Content-Length: 2010 Content-Type: application/x-javascript | clean |
http://img.gismeteo.ru/flash/fcode.js | 200 OK Content-Length: 637 Content-Type: application/x-javascript | clean |
http://counter.rambler.ru/top100.jcn?2651580 | 200 OK Content-Length: 6853 Content-Type: application/x-javascript | clean |
http://autocontext.begun.ru/autocontext2.js | 200 OK Content-Length: 249 Content-Type: application/x-javascript | clean |
http://fanfishing.ru/index.php?option=com_content&view=article&id=12:2009-12-01-10-46-37&catid=5:2009-12-01-10-45-20&Itemid=27 | 200 OK Content-Length: 32182 Content-Type: text/html | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12388 Content-Type: application/javascript | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 100805 Content-Type: application/javascript | clean |
http://cdn.connect.mail.ru/js/loader.js | 200 OK Content-Length: 4120 Content-Type: application/x-javascript | clean |
http://fanfishing.ru/index.php?option=com_content&view=article&id=80:2010-04-22-04-44-35&catid=5:2009-12-01-10-45-20&Itemid=21 | 200 OK Content-Length: 74551 Content-Type: text/html | clean |
http://fanfishing.ru/forum | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 25 Aug 2014 08:02:32 GMT Location: http://fanfishing.ru/forum/ Server: nginx/0.8.53 Content-Length: 235 Content-Type: text/html; charset=iso-8859-1 | clean |
http://fanfishing.ru/forum/ | 200 OK Content-Length: 85524 Content-Type: text/html | clean |
http://fanfishing.ru/forum/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=383 | 200 OK Content-Length: 36628 Content-Type: application/x-javascript | clean |
http://fanfishing.ru/clientscript/yui/connection/connection-min.js?v=383 | 404 Not Found Content-Length: 243 Content-Type: text/html | clean |
http://fanfishing.ru/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fanfishing.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fanfishing.ru/
Result: fanfishing.ru is not infected or malware details are not published yet.
Result: fanfishing.ru is not infected or malware details are not published yet.