Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.l6y.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.l6y.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Jun 2015 05:35:51 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 313 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://iksearch.com/opz.cgi?2 (imitation of visitor from search engine) GET /opz.cgi?2 HTTP/1.1 Host: iksearch.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:51 GMT Location: http://ad.admitad.com/goto/9d223943a82cfc6418340c8327c5c3/ Server: Apache/2.2.15 (CentOS) Content-Length: 320 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: wiyev=dw0bADIAAgAEADcHgVX__zcHgVVAAAEAAAA3B4FVAA--; expires=Thu, 16-Jun-2016 05:35:51 GMT; path=/; domain=iksearch.com | malicious |
URL: http://ad.admitad.com/goto/9d223943a82cfc6418340c8327c5c3/ (imitation of visitor from search engine) GET /goto/9d223943a82cfc6418340c8327c5c3/ HTTP/1.1 Host: ad.admitad.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 FOUND Connection: close Date: Wed, 17 Jun 2015 05:43:05 GMT Location: http://nebo.ru/?utm_source=cpamit&utm_medium=affiliates&utm_campaign=test&uid=393923b03b0756dfd174718c91062696 Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=utf-8 P3P: CP="NON DSP COR CURa TIA" Set-Cookie: UID="expr=1497591785|id=393923b03b0756dfd174718c91062696|v=2"; Domain=.ad.admitad.com; expires=Fri, 16-Jun-2017 08:43:05 GMT; Path=/ | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.l6y.ru/ | 403 Forbidden Content-Length: 278 Content-Type: text/html | clean |
http://www.l6y.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:51 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://iksearch.com/opz.cgi?2 | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:52 GMT Location: http://www.kuponv.ru Server: Apache/2.2.15 (CentOS) Content-Length: 282 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: wiyev=bJgbADIAAgABADgHgVX__zgHgVVAAAEAAAA4B4FVAA--; expires=Thu, 16-Jun-2016 05:35:52 GMT; path=/; domain=iksearch.com | clean |
http://www.kuponv.ru/ | 200 OK Content-Length: 22261 Content-Type: text/html | clean |
http://www.kuponv.ru/catalog/view/javascript/jquery/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://www.l6y.ru/catalog/view/javascript/jquery/ui/jquery-ui-1.8.16.custom.min.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:54 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://iksearch.com/test404page.js | 404 Not Found Content-Length: 290 Content-Type: text/html | clean |
http://www.l6y.ru/catalog/view/javascript/jquery/ui/external/jquery.cookie.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:55 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.l6y.ru/catalog/view/javascript/jquery/colorbox/jquery.colorbox.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:55 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.l6y.ru/catalog/view/javascript/jquery/tabs.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:56 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.l6y.ru/catalog/view/javascript/common.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:56 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.l6y.ru/catalog/view/theme/aquacart/javascript/aquacart_custom.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:57 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.l6y.ru/catalog/view/theme/aquacart/javascript/cloud_zoom.js | HTTP/1.1 302 Found Connection: close Date: Wed, 17 Jun 2015 05:35:57 GMT Location: http://iksearch.com/opz.cgi?2 Server: Apache/2.2.15 (CentOS) Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=l6y.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://l6y.ru/
Result: l6y.ru is not infected or malware details are not published yet.
Result: l6y.ru is not infected or malware details are not published yet.