Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ibizatour.ru
Result:
HTTP/1.1 303 See other
Connection: close
Date: Tue, 03 Mar 2015 15:30:15 GMT
Location: http://ibizatour.ru/index.php/ru/
Server: Apache/2.2.17 (Unix) PHP/5.2.17
Content-Length: 0
Content-Type: text/html; charset=utf-8
Set-Cookie: 0f1bb1564b9ef265238b4ab1223cb817=dcca6b864d2e19e7f92f12f975d19528; path=/
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: ibizatour.ru
Result:
HTTP/1.1 303 See other
Connection: close
Date: Tue, 03 Mar 2015 15:30:15 GMT
Location: http://ibizatour.ru/index.php/ru/
Server: Apache/2.2.17 (Unix) PHP/5.2.17
Content-Length: 0
Content-Type: text/html; charset=utf-8
Set-Cookie: 0f1bb1564b9ef265238b4ab1223cb817=dcca6b864d2e19e7f92f12f975d19528; path=/
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ibizatour.ru
Referer: http://www.google.com/search?q=ibizatour.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ibizatour.ru
Referer: http://www.google.com/search?q=ibizatour.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://ibizatour.ru/ | HTTP/1.1 303 See other Connection: close Date: Tue, 03 Mar 2015 15:30:15 GMT Location: http://ibizatour.ru/index.php/ru/ Server: Apache/2.2.17 (Unix) PHP/5.2.17 Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: 0f1bb1564b9ef265238b4ab1223cb817=dcca6b864d2e19e7f92f12f975d19528; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ibizatour.ru/index.php/ru/ | 200 OK Content-Length: 44588 Content-Type: text/html | clean |
http://ibizatour.ru//yandex.st/share/share.js/ | HTTP/1.1 303 See other Connection: close Date: Tue, 03 Mar 2015 15:30:17 GMT Location: http://ibizatour.ru/index.php/ru/yandex.st/share/share.js Server: Apache/2.2.17 (Unix) PHP/5.2.17 Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: 0f1bb1564b9ef265238b4ab1223cb817=beec60cbafae0525f120f209ee9abcab; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ibizatour.ru/index.php/ru/yandex.st/share/share.js | 404 Not Found Content-Length: 3069 Content-Type: text/html | clean |
http://ibizatour.ru/index.php | HTTP/1.1 303 See other Connection: close Date: Tue, 03 Mar 2015 15:30:18 GMT Location: http://ibizatour.ru/index.php/ru/ Server: Apache/2.2.17 (Unix) PHP/5.2.17 Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: 0f1bb1564b9ef265238b4ab1223cb817=400941af06ae042951a958213976f810; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ibizatour.ru/test404page.js | 404 Not Found Content-Length: 288 Content-Type: text/html | clean |
http://ibizatour.ru/index.php?option=com_search | HTTP/1.1 303 See other Connection: close Date: Tue, 03 Mar 2015 15:30:18 GMT Location: http://ibizatour.ru/index.php/ru/?option=com_search Server: Apache/2.2.17 (Unix) PHP/5.2.17 Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: 0f1bb1564b9ef265238b4ab1223cb817=8e380b3ebcde28c93ffa60cb4d3fa0cd; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://ibizatour.ru/index.php/ru/?option=com_search | 200 OK Content-Length: 17292 Content-Type: text/html | clean |
http://counter.rambler.ru/top100.jcn?2856232 | 200 OK Content-Length: 6853 Content-Type: application/x-javascript | clean |
http://ibizatour.ru/index.php/ru/visas/viza-v-ispaniyu | 200 OK Content-Length: 57097 Content-Type: text/html | clean |
http://ibizatour.ru/index.php/ru/visas/ | 404 Not Found Content-Length: 3065 Content-Type: text/html | clean |
http://ibizatour.ru/images/1/o_vize_v_ispaniyu.pdf | 200 OK Content-Length: 114396 Content-Type: application/pdf | clean |
http://ibizatour.ru/images/1/anketa1.doc | 200 OK Content-Length: 67584 Content-Type: application/msword | clean |
http://ibizatour.ru/images/1/anketa2.doc | 200 OK Content-Length: 302362 Content-Type: application/msword | clean |
http://ibizatour.ru/images/1/obrazez_anketa2.pdf | 200 OK Content-Length: 165293 Content-Type: application/pdf | clean |
http://ibizatour.ru/images/1/soglasie_obrabotka.doc | 200 OK Content-Length: 25600 Content-Type: application/msword | clean |
http://ibizatour.ru/index.php/ru/insurance/strakhovoy-polis | 200 OK Content-Length: 22288 Content-Type: text/html | clean |
http://ibizatour.ru/index.php/ru/insurance/ | 404 Not Found Content-Length: 3065 Content-Type: text/html | clean |
http://ibizatour.ru/images/2/Usloviyz_strakhovaniya.pdf | 200 OK Content-Length: 101558 Content-Type: application/pdf | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ibizatour.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ibizatour.ru/
Result: ibizatour.ru is not infected or malware details are not published yet.
Result: ibizatour.ru is not infected or malware details are not published yet.