Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=led-logo.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: led-logo.ru
Result:
HTTP/1.1 302 Moved Temporarily
Cache-Control: max-age=0
Connection: close
Date: Fri, 29 Aug 2014 13:09:21 GMT
Pragma: no-cache
Location: http://google.com
Server: nginx/1.4.3
Content-Type: text/html; charset=utf-8
Expires: Thu, 21 Jul 1977 07:30:00 GMT
Last-Modified: Fri, 29 Aug 2014 13:09:21 GMT
X-Powered-By: PHP/5.4.21-1~dotdeb.1
GET / HTTP/1.1
Host: led-logo.ru
Result:
HTTP/1.1 302 Moved Temporarily
Cache-Control: max-age=0
Connection: close
Date: Fri, 29 Aug 2014 13:09:21 GMT
Pragma: no-cache
Location: http://google.com
Server: nginx/1.4.3
Content-Type: text/html; charset=utf-8
Expires: Thu, 21 Jul 1977 07:30:00 GMT
Last-Modified: Fri, 29 Aug 2014 13:09:21 GMT
X-Powered-By: PHP/5.4.21-1~dotdeb.1
Second query (visit from search engine):
GET / HTTP/1.1
Host: led-logo.ru
Referer: http://www.google.com/search?q=led-logo.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: led-logo.ru
Referer: http://www.google.com/search?q=led-logo.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://led-logo.ru/ | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0 Connection: close Date: Fri, 29 Aug 2014 13:09:21 GMT Pragma: no-cache Location: http://google.com Server: nginx/1.4.3 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Fri, 29 Aug 2014 13:09:21 GMT X-Powered-By: PHP/5.4.21-1~dotdeb.1 | clean |
http://google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 29 Aug 2014 13:09:21 GMT Location: http://www.google.lt/?gws_rd=cr&ei=gXsAVI7gNeLjywPax4LwBg Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=5030c6c90cedb716:FF=0:TM=1409317761:LM=1409317761:S=0nXbGtvhoR8obUIU; expires=Sun, 28-Aug-2016 13:09:21 GMT; path=/; domain=.google.com Set-Cookie: NID=67=rmda6nIMvGFKQLICbF6M5cIJaRKK2H3Q-NdmkgPMY3yOTjo_WxK66BzjKIabf_p0UAB1-5h0FosioEGug9-eLIw_wjNqwoK-eTW_DZGTWn7jPUgkEMRxnDPw93mrjmKX; expires=Sat, 28-Feb-2015 13:09:21 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=gxsavi7gneljywpax4lwbg | 200 OK Content-Length: 53003 Content-Type: text/html | clean |
https://www.google.lt/webhp?tab=ww | 200 OK Content-Length: 65208 Content-Type: text/html | clean |
https://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 58978 Content-Type: text/html | clean |
https://www.google.lt/webhp?hl=lt&tab=iw | 200 OK Content-Length: 65242 Content-Type: text/html | clean |
http://www.google.lt/intl/lt/options/ | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Thu, 21 Aug 2014 02:31:44 GMT Age: 729461 Location: http://www.google.lt/intl/lt/about/products/ Server: sffe Content-Length: 241 Content-Type: text/html; charset=UTF-8 Expires: Sat, 20 Sep 2014 02:31:44 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/intl/lt/about/products/ | 200 OK Content-Length: 7068 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/js/gweb/analytics/autotrack.js/ | 404 Not Found Content-Length: 1471 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://www.google.lt/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://www.google.lt/preferences?hl=lt | HTTP/1.1 200 OK Cache-Control: private Connection: close Date: Fri, 29 Aug 2014 13:09:26 GMT Server: gws Content-Type: text/html; charset=UTF-8 Expires: Fri, 29 Aug 2014 13:09:26 GMT Alternate-Protocol: 80:quic P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=4dbb2f430d1e3c61:FF=0:TM=1409317766:LM=1409317766:S=KqWopwlq2e9ObBmi; expires=Sun, 28-Aug-2016 13:09:26 GMT; path=/; domain=.google.lt Set-Cookie: NID=67=LDM4hViBlyJvcY_jWqb2NOLVTfXgTgqn7p6G03mP6xA6wRTij4O7XCt5WqufUiecVAstrt4p9_SGr44BGGVQiWPJvQG8GaMhHThxO7zOmPshR1CFmwU_6NE0_3ge9b90; expires=Sat, 28-Feb-2015 13:09:26 GMT; path=/; domain=.google.lt; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/preferences?hl=lt&gbv=1&sei=hnsavkggdpty4qs4r4gydg | 200 OK Content-Length: 64210 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 52977 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=ii | 200 OK Content-Length: 52963 Content-Type: text/html | clean |
http://www.google.lt/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 29 Aug 2014 13:09:27 GMT Location: https://history.google.com/history/optout?hl=lt Server: Search-History HTTP Server Content-Length: 244 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic Set-Cookie: PREF=ID=9bba5ad2ab11f288:TM=1409317767:LM=1409317767:S=CygY0M8vESlmyjIe; expires=Sun, 28-Aug-2016 13:09:27 GMT; path=/; domain=.google.lt X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
https://history.google.com/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 29 Aug 2014 13:09:27 GMT Location: http://www.google.com/ Server: Search-History HTTP Server Content-Length: 219 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 443:quic Set-Cookie: PREF=ID=f2df1f1b254f665c:TM=1409317767:LM=1409317767:S=kMGX0bPnO_mVBPDy; expires=Sun, 28-Aug-2016 13:09:27 GMT; path=/; domain=.google.com X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Fri, 29 Aug 2014 13:09:27 GMT Location: http://www.google.lt/?gws_rd=cr&ei=h3sAVMeTKsP8ywP9m4HoCw Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=3f393fb2c88b5f5b:FF=0:TM=1409317767:LM=1409317767:S=GxSb2EUWp11frEhY; expires=Sun, 28-Aug-2016 13:09:27 GMT; path=/; domain=.google.com Set-Cookie: NID=67=wMXiRCo8dyrm_lm3BW952zLrDhqa4jKoGUAxFVlpx-jDLCK8AkmxWT2Q_xM-ySp27C6F_gZ-Kx6kw-Bny8bzDh2yU8MA4x9jZsLBr1sjghASgue90YqqnnF1f59muJfV; expires=Sat, 28-Feb-2015 13:09:27 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=h3savmetksp8ywp9m4hocw | 200 OK Content-Length: 52899 Content-Type: text/html | clean |
http://www.google.lt/chrome/index.html?hl=lt&brand=CHNG&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt | 200 OK Content-Length: 24906 Content-Type: text/html | clean |
http://www.google.lt/intl/lt/chrome/assets/common/js/chrome.min.js | 200 OK Content-Length: 186560 Content-Type: text/javascript | clean |
http://www.google.lt/intl/lt/chrome/assets/common/js/installer.min.js | 200 OK Content-Length: 65568 Content-Type: text/javascript | clean |