Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=intesa-build.com.ua
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: almpirat.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 01:47:07 GMT
Accept-Ranges: bytes
ETag: "4223-150-49d954ee28a80"
Server: Apache/2.2.29 (Unix)
Content-Length: 336
Content-Type: text/html
Last-Modified: Thu, 03 Mar 2011 15:01:46 GMT
...336 bytes of data.
GET / HTTP/1.1
Host: almpirat.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 01:47:07 GMT
Accept-Ranges: bytes
ETag: "4223-150-49d954ee28a80"
Server: Apache/2.2.29 (Unix)
Content-Length: 336
Content-Type: text/html
Last-Modified: Thu, 03 Mar 2011 15:01:46 GMT
...336 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: almpirat.com
Referer: http://www.google.com/search?q=almpirat.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: almpirat.com
Referer: http://www.google.com/search?q=almpirat.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://intesa-build.com.ua/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 13:35:26 GMT Location: http://ivanovojbi.ru/ Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 314 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://ivanovojbi.ru/ | 200 OK Content-Length: 59124 Content-Type: text/html | clean |
http://ivanovojbi.ru/media/system/js/modal.js | 200 OK Content-Length: 11637 Content-Type: application/javascript | clean |
http://ivanovojbi.ru/components/com_k2/js/k2.js | 200 OK Content-Length: 4126 Content-Type: application/javascript | clean |
http://intesa-build.com.ua/media/system/js/caption.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 13:35:29 GMT Location: http://ivanovojbi.ru/media/system/js/caption.js Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 340 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://ivanovojbi.ru/media/system/js/caption.js | 200 OK Content-Length: 3012 Content-Type: application/javascript | clean |
http://intesa-build.com.ua/media/widgetkit/js/jquery.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 13:35:29 GMT Location: http://ivanovojbi.ru/media/widgetkit/js/jquery.js Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 342 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://ivanovojbi.ru/media/widgetkit/js/jquery.js | 200 OK Content-Length: 94875 Content-Type: application/javascript | clean |
http://intesa-build.com.ua/cache/widgetkit/widgetkit-6ed698e3.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 13:35:31 GMT Location: http://ivanovojbi.ru/cache/widgetkit/widgetkit-6ed698e3.js Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 351 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://ivanovojbi.ru/cache/widgetkit/widgetkit-6ed698e3.js | 200 OK Content-Length: 18158 Content-Type: application/javascript | clean |
http://intesa-build.com.ua/templates/ot_boutiquebox/scripts/otscript.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 13:35:31 GMT Location: http://ivanovojbi.ru/templates/ot_boutiquebox/scripts/otscript.js Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 358 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://ivanovojbi.ru/templates/ot_boutiquebox/scripts/otscript.js | 200 OK Content-Length: 2144 Content-Type: application/javascript | clean |
http://ivanovojbi.ru/modules/mod_jv_headline/assets/js/slideshow6.js | 200 OK Content-Length: 13599 Content-Type: application/javascript | clean |
http://ivanovojbi.ru/modules/mod_djimageslider/assets/slider.js | 200 OK Content-Length: 12551 Content-Type: application/javascript | clean |
http://ivanovojbi.ru/plugins/system/pc_includes/ajax_1.3.js | 200 OK Content-Length: 9892 Content-Type: application/javascript | clean |
http://intesa-build.com.ua/templates/ot_boutiquebox/scripts/dropdownMenu11.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 13:35:33 GMT Location: http://ivanovojbi.ru/templates/ot_boutiquebox/scripts/dropdownMenu11.js Server: nginx/0.7.67 Vary: Accept-Encoding Content-Length: 364 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://ivanovojbi.ru/templates/ot_boutiquebox/scripts/dropdownmenu11.js | 404 Not Found Content-Length: 1288 Content-Type: text/html | clean |
http://ivanovojbi.ru/test404page.js | 404 Not Found Content-Length: 1288 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21308 Content-Type: text/javascript | clean |