Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mukhmedgazdiev.ge
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 12 Dec 2015 04:59:30 GMT
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-7
Link: <http://mukhmedgazdiev.ge/>; rel=shortlink
Set-Cookie: _icl_current_language=ru; expires=Sun, 13-Dec-2015 04:59:30 GMT; path=/
X-Powered-By: PHP/5.4.42
GET / HTTP/1.1
Host: mukhmedgazdiev.ge
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 12 Dec 2015 04:59:30 GMT
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-7
Link: <http://mukhmedgazdiev.ge/>; rel=shortlink
Set-Cookie: _icl_current_language=ru; expires=Sun, 13-Dec-2015 04:59:30 GMT; path=/
X-Powered-By: PHP/5.4.42
Second query (visit from search engine):
GET / HTTP/1.1
Host: mukhmedgazdiev.ge
Referer: http://www.google.com/search?q=mukhmedgazdiev.ge
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mukhmedgazdiev.ge
Referer: http://www.google.com/search?q=mukhmedgazdiev.ge
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://mukhmedgazdiev.ge/ | HTTP/1.1 200 OK Connection: close Date: Sat, 12 Dec 2015 04:59:30 GMT Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Link: <http://mukhmedgazdiev.ge/>; rel=shortlink Set-Cookie: _icl_current_language=ru; expires=Sun, 13-Dec-2015 04:59:30 GMT; path=/ X-Powered-By: PHP/5.4.42 | clean |
http://managedforexaccount-pamm.blogspot.com/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:32 GMT Accept-Ranges: none Location: http://managedforexaccount-pamm.blogspot.lt/ Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Sat, 12 Dec 2015 04:59:32 GMT X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://managedforexaccount-pamm.blogspot.lt/ | 200 OK Content-Length: 22297 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt//www.blogblog.com/dynamicviews/36196c446c831ea4/js/thirdparty/jquery.js/ | 404 Not Found Content-Length: 22426 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt//www.blogblog.com/dynamicviews/36196c446c831ea4/js/thirdparty/jquery-mousewheel.js/ | 404 Not Found Content-Length: 22460 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt//www.blogblog.com/dynamicviews/36196c446c831ea4/js/common.js/ | 404 Not Found Content-Length: 22372 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt//www.blogblog.com/dynamicviews/36196c446c831ea4/js/classic.js/ | 404 Not Found Content-Length: 22376 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt//www.blogblog.com/dynamicviews/36196c446c831ea4/js/gadgets.js/ | 404 Not Found Content-Length: 22376 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ | 404 Not Found Content-Length: 22380 Content-Type: text/html | clean |
http://managedforexaccount-pamm.blogspot.lt/js/cookiechoices.js | 200 OK Content-Length: 6340 Content-Type: application/x-javascript | clean |
https://www.blogger.com/static/v1/widgets/1494607316-widgets.js | 200 OK Content-Length: 101207 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 13354 Content-Type: application/javascript | clean |
http://managedforexaccount-pamm.blogspot.lt/test404page.js | 404 Not Found Content-Length: 22188 Content-Type: text/html | clean |
http://mukhmedgazdiev.ge//www.blogblog.com/dynamicviews/36196c446c831ea4/js/thirdparty/jquery-mousewheel.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:37 GMT Pragma: no-cache Location: http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/thirdparty/jquery-mousewheel.js/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/thirdparty/jquery-mousewheel.js/ | HTTP/1.1 404 Not Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:38 GMT Pragma: no-cache Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge//www.blogblog.com/dynamicviews/36196c446c831ea4/js/common.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:39 GMT Pragma: no-cache Location: http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/common.js/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/common.js/ | HTTP/1.1 404 Not Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:39 GMT Pragma: no-cache Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge//www.blogblog.com/dynamicviews/36196c446c831ea4/js/classic.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:40 GMT Pragma: no-cache Location: http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/classic.js/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/classic.js/ | HTTP/1.1 404 Not Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:41 GMT Pragma: no-cache Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge//www.blogblog.com/dynamicviews/36196c446c831ea4/js/gadgets.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:41 GMT Pragma: no-cache Location: http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/gadgets.js/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/36196c446c831ea4/js/gadgets.js/ | HTTP/1.1 404 Not Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:42 GMT Pragma: no-cache Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:43 GMT Pragma: no-cache Location: http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge/www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ | HTTP/1.1 404 Not Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:43 GMT Pragma: no-cache Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
http://mukhmedgazdiev.ge/js/cookiechoices.js | HTTP/1.1 404 Not Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 12 Dec 2015 04:59:44 GMT Pragma: no-cache Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Type: text/html; charset=UTF-7 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Powered-By: PHP/5.4.42 | clean |
https://www.blogger.com/static/v1/widgets/2317279596-widgets.js | 200 OK Content-Length: 101196 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mukhmedgazdiev.ge
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mukhmedgazdiev.ge/
Result: mukhmedgazdiev.ge is not infected or malware details are not published yet.
Result: mukhmedgazdiev.ge is not infected or malware details are not published yet.