Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mix7.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 26 Apr 2014 13:11:58 GMT
Pragma: no-cache
Server: nginx/1.7.0
Content-Type: text/html; charset=windows-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=14bslg7oe2ah0h37cfhf9gfvn1; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: mix7.ru
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 26 Apr 2014 13:11:58 GMT
Pragma: no-cache
Server: nginx/1.7.0
Content-Type: text/html; charset=windows-1251
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=14bslg7oe2ah0h37cfhf9gfvn1; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: mix7.ru
Referer: http://www.google.com/search?q=mix7.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mix7.ru
Referer: http://www.google.com/search?q=mix7.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://mix7.ru/ | 200 OK Content-Length: 31437 Content-Type: text/html | clean |
http://mix7.ru/js/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/javascript | clean |
http://mix7.ru/js/jquery-ui-1.10.3.custom.min.js | 200 OK Content-Length: 42701 Content-Type: application/javascript | clean |
http://mix7.ru/js/main_menu.js | 200 OK Content-Length: 760 Content-Type: application/javascript | clean |
http://vk.com/js/api/share.js?11 | 200 OK Content-Length: 10156 Content-Type: application/x-javascript | clean |
http://userapi.com/js/api/openapi.js?52 | 200 OK Content-Length: 63942 Content-Type: application/x-javascript | clean |
http://mix7.ru/basket.php | 200 OK Content-Length: 8610 Content-Type: text/html | clean |
http://mix7.ru/js/jquery-1.5.1.min.js | 200 OK Content-Length: 85275 Content-Type: application/javascript | clean |
http://mix7.ru/js/facebox.js | 200 OK Content-Length: 6788 Content-Type: application/javascript | clean |
http://mix7.ru/js/basket.js | 200 OK Content-Length: 1718 Content-Type: application/javascript | clean |
http://mix7.ru/regUser.php | 200 OK Content-Length: 37398 Content-Type: text/html | clean |
http://mix7.ru/forgot.php | 200 OK Content-Length: 8987 Content-Type: text/html | clean |
http://mix7.ru/catalog/jenskaya_odejda_obuv | 200 OK Content-Length: 40005 Content-Type: text/html | clean |
http://mix7.ru/js/filter.js | 200 OK Content-Length: 4921 Content-Type: application/javascript | clean |
http://mix7.ru/catalog/jenskaya_odejda_obuv/jenskaya_obuv | 200 OK Content-Length: 11814 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mix7.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mix7.ru/
Result: mix7.ru is not infected or malware details are not published yet.
Result: mix7.ru is not infected or malware details are not published yet.