Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://hhseason.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: hhseason.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 21 Sep 2014 08:37:28 GMT Pragma: no-cache Location: http://web-redirect.ru/?web Server: nginx Content-Type: text/html; charset=utf-8 Expires: Mon, 1 Jan 2001 00:00:00 GMT Last-Modified: Sun, 21 Sep 2014 08:37:28 GMT P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: _cutt_caches_images=1411288647; expires=Mon, 22-Sep-2014 08:37:27 GMT; path=/ Set-Cookie: 7bdf0b8eea7d0da8e9379aa65268d7ed=1phu03o218t6obb0ompmh80ls4; path=/ X-Powered-By: PHP/5.2.17 | malicious |
URL: http://web-redirect.ru/?web (imitation of visitor from search engine) GET /?web HTTP/1.1 Host: web-redirect.ru Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: max-age=0 Connection: close Date: Sun, 21 Sep 2014 08:37:28 GMT Pragma: no-cache Location: http://wstore.kz/components/com_weblinks/2/separator.php Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Sun, 21 Sep 2014 08:37:28 GMT X-Powered-By: PHP/5.3.3 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://hhseason.ru/ | 200 OK Content-Length: 16936 Content-Type: text/html | clean |
http://hhseason.ru/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/javascript | clean |
http://hhseason.ru/plugins/content/jw_allvideos/includes/players/wmvplayer/silverlight.js | 200 OK Content-Length: 17901 Content-Type: application/javascript | clean |
http://hhseason.ru/plugins/content/jw_allvideos/includes/players/wmvplayer/wmvplayer.js | 200 OK Content-Length: 24010 Content-Type: application/javascript | clean |
http://hhseason.ru/plugins/content/jw_allvideos/includes/players/quicktimeplayer/AC_QuickTime.js | 200 OK Content-Length: 8527 Content-Type: application/javascript | clean |
http://hhseason.ru/plugins/content/jw_allvideos/includes/jw_allvideos.js | 200 OK Content-Length: 6770 Content-Type: application/javascript | clean |
http://hhseason.ru/hover_drop_2/iefix.js | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 08:37:29 GMT Location: http://err.agava.ru/vh/404.html Server: nginx Content-Length: 276 Content-Type: text/html; charset=iso-8859-1 | clean |
http://err.agava.ru/vh/404.html | 200 OK Content-Length: 12338 Content-Type: text/html | clean |
http://err.agava.ru/vh/js/main.js | 200 OK Content-Length: 34164 Content-Type: application/x-javascript | clean |
http://hhseason.ru/hover_drop_2/ | 404 ÐÐ¾Ð¼Ð¿Ð¾Ð½ÐµÐ½Ñ Ð½Ðµ найден Content-Length: 1843 Content-Type: text/html | clean |
http://hhseason.ru/index.php | 200 OK Content-Length: 16945 Content-Type: text/html | clean |
http://hhseason.ru/2009-12-06-14-26-32.html | 200 OK Content-Length: 18489 Content-Type: text/html | clean |
http://hhseason.ru/2010-09-25-15-46-22.html | 200 OK Content-Length: 24696 Content-Type: text/html | clean |
http://hhseason.ru/2009-11-26-14-35-11.html | 200 OK Content-Length: 23717 Content-Type: text/html | clean |
http://hhseason.ru/2009-11-26-14-34-10.html | 200 OK Content-Length: 12889 Content-Type: text/html | clean |
http://hhseason.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 08:37:31 GMT Location: http://err.agava.ru/vh/404.html Server: nginx Content-Length: 276 Content-Type: text/html; charset=iso-8859-1 | clean |
http://err.agava.ru/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 21 Sep 2014 08:53:35 GMT Location: http://err.agava.ru/vh/404.html Server: nginx/0.7.67 Content-Length: 161 Content-Type: text/html | clean |
http://hhseason.ru/2010-09-25-11-44-29.html | 200 OK Content-Length: 22322 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hhseason.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hhseason.ru/
Result: hhseason.ru is not infected or malware details are not published yet.
Result: hhseason.ru is not infected or malware details are not published yet.