Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=imashamedved.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://imashamedved.ru/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imashamedved.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 09 Jun 2014 12:11:06 GMT
Pragma: no-cache
Server: nginx/1.4.1
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Mon, 09 Jun 2014 12:11:06 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 835168dbb60192ee244b54b621402cf9=4d8c5e56cb777111b9a858a1201ad3a7; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: imashamedved.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 09 Jun 2014 12:11:06 GMT
Pragma: no-cache
Server: nginx/1.4.1
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Mon, 09 Jun 2014 12:11:06 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 835168dbb60192ee244b54b621402cf9=4d8c5e56cb777111b9a858a1201ad3a7; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: imashamedved.ru
Referer: http://www.google.com/search?q=imashamedved.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imashamedved.ru
Referer: http://www.google.com/search?q=imashamedved.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://imashamedved.ru/ | 200 OK Content-Length: 31066 Content-Type: text/html | clean |
http://imashamedved.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
http://imashamedved.ru/plugins/content/mavikthumbnails/highslide/highslide-with-gallery.packed.js | 200 OK Content-Length: 36832 Content-Type: application/x-javascript | clean |
http://imashamedved.ru//yandex.st/share/share.js/ | 404 Not Found Content-Length: 1844 Content-Type: text/html | clean |
http://imashamedved.ru/index.php | 200 OK Content-Length: 27980 Content-Type: text/html | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 11664 Content-Type: application/javascript | clean |
http://imashamedved.ru//mc.yandex.ru/metrika/watch.js/ | 404 Not Found Content-Length: 1844 Content-Type: text/html | clean |
http://imashamedved.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Mon, 09 Jun 2014 12:11:08 GMT Location: http://goo.gl/zJ2pGb Server: nginx/1.4.1 Content-Length: 204 Content-Type: text/html; charset=iso-8859-1 | clean |
http://goo.gl/zj2pgb | 404 Not Found Content-Length: 4438 Content-Type: text/html | clean |
http://goo.gl/static/0045.urlshortener.js | 200 OK Content-Length: 66060 Content-Type: text/javascript | clean |
http://imashamedved.ru//www.google.com/support/websearch/bin/answer.py?answer=190768/ | HTTP/1.1 302 Found Connection: close Date: Mon, 09 Jun 2014 12:11:09 GMT Location: http://goo.gl/zJ2pGb Server: nginx/1.4.1 Content-Length: 204 Content-Type: text/html; charset=iso-8859-1 | clean |
http://goo.gl/test404page.js | 404 Not Found Content-Length: 4446 Content-Type: text/html | clean |
http://goo.gl/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Mon, 09 Jun 2014 12:11:09 GMT Location: https://www.google.com/accounts/ServiceLogin?service=urlshortener&continue=http://goo.gl/?authed%3D1&followup=http://goo.gl/?authed%3D1&passive=true&go=true Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Mon, 09 Jun 2014 12:11:09 GMT Alternate-Protocol: 80:quic Set-Cookie: authed=1;Path=/ X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
https://www.google.com/accounts/servicelogin?service=urlshortener&continue=http://goo.gl/?authed%3d1&followup=http://goo.gl/?authed%3d1&passive=true&go=true | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Mon, 09 Jun 2014 12:11:09 GMT Location: https://accounts.google.com/servicelogin?service=urlshortener&continue=http%3A%2F%2Fgoo.gl%2F%3Fauthed%3D1&followup=http%3A%2F%2Fgoo.gl%2F%3Fauthed%3D1&passive=true&go=true Server: GSE Content-Length: 370 Content-Type: text/html; charset=UTF-8 Expires: Mon, 09 Jun 2014 12:11:09 GMT X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://accounts.google.com/servicelogin?service=urlshortener&continue=http%3a%2f%2fgoo.gl%2f%3fauthed%3d1&followup=http%3a%2f%2fgoo.gl%2f%3fauthed%3d1&passive=true&go=true | HTTP/1.1 200 OK Cache-Control: private, max-age=0 Connection: close Date: Mon, 09 Jun 2014 12:11:10 GMT Server: GSE Content-Length: 1491 Content-Type: text/html; charset=UTF-8 Expires: Mon, 09 Jun 2014 12:11:10 GMT Alternate-Protocol: 443:quic Set-Cookie: GAPS=1:DLzwZrmRsMcyWkx01wVCmbmDrK3pLQ:Aa-_ZAHhUOZKG3VE;Path=/;Expires=Wed, 08-Jun-2016 12:11:10 GMT;Secure;HttpOnly;Priority=HIGH Strict-Transport-Security: max-age=10893354; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block | clean |
https://accounts.google.com/& | 404 Not Found Content-Length: 23425 Content-Type: text/html | clean |
https://accounts.google.com/TOS?loc=LT&hl=en | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store Connection: close Date: Mon, 09 Jun 2014 12:11:10 GMT Pragma: no-cache Location: https://www.google.lt/intl/en/policies/terms/ Server: GSE Content-Length: 227 Content-Type: text/html; charset=UTF-8 Expires: Mon, 01-Jan-1990 00:00:00 GMT Alternate-Protocol: 443:quic Set-Cookie: GoogleAccountsLocale_session=en; Path=/; Secure; HttpOnly Strict-Transport-Security: max-age=10893354; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/intl/en/policies/terms/ | HTTP/1.1 200 OK Cache-Control: private, max-age=0 Connection: close Date: Mon, 09 Jun 2014 12:11:10 GMT Server: sffe Vary: Accept-Encoding Content-Type: text/html Expires: Mon, 09 Jun 2014 12:11:10 GMT Last-Modified: Tue, 24 Jan 2012 14:44:29 GMT X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/intl/en/policies/terms/regional.html | 200 OK Content-Length: 20900 Content-Type: text/html | clean |
https://www.google.lt//www.google.com/js/google.js/ | 404 Not Found Content-Length: 1438 Content-Type: text/html | clean |
https://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://www.google.lt/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |