Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://myefoto.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: myefoto.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 21 May 2014 12:16:11 GMT Location: http://medicsph.ru/ Server: Apache Content-Length: 264 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://myefoto.com/ | 200 OK Content-Length: 633 Content-Type: text/html | clean |
http://myefoto.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Wed, 21 May 2014 12:16:12 GMT Location: http://medicsph.ru/ Server: Apache Content-Length: 264 Content-Type: text/html; charset=iso-8859-1 | clean |
http://medicsph.ru/ | HTTP/1.1 200 OK Date: Wed, 21 May 2014 12:16:17 GMT Accept-Ranges: bytes ETag: "0eaed11cc1ecf1:0" Server: Microsoft-IIS/7.5 Content-Length: 1062 Content-Type: text/html Last-Modified: Fri, 31 Jan 2014 21:33:24 GMT | clean |
http://medicsph.ru/?framerequest=1 | HTTP/1.1 200 OK Date: Wed, 21 May 2014 12:16:14 GMT Server: Microsoft-IIS/7.5 Content-Length: 17870 Content-Type: text/html; charset=utf-8 | clean |
http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?client=ca-dp-bodis27_3ph_js&ref=&output=html&s=medicsph.ru&drid=as-drid-2281613037483178 | 200 OK Content-Length: 22545 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkgKEwixsLyz_7y-AhXm3XIKHYgKAEgYASAAcQ3dhClZhJ1wggETCLjTvrP_vL4CFdAfcgod_XQAEo0BzlILH5EBTTyKkZuK1HoSGQCchQJKVrivht4VICoRM1gm74CFZMYe6Oo | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwj57NCz_7y-AhUm4HIKHS9UAFcQAhgBIABxDd2EKVmEnXCCARMIp4bSs_-8vgIVxiFyCh1EBACijQHOUgsfkQFNPIqRm4rUehIZAJyFAkqv09MH27aU6F-rYEB7T7EEcd6WYg | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwio3N6z_7y-AhUm4HIKHS9UAFcQAxgBIABxDd2EKVmEnXCCARMIxoTfs_-8vgIViCByCh1MXQCgjQHOUgsfkQFNPIqRm4rUehIZAJyFAkom6qHUWrKIYeK5ehucKc9JJ0DHTA | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwiJ0-iz_7y-AhUmOHIKHetNAAMQBBgBIABxDd2EKVmEnXCCARMI4urps_-8vgIV8CNyCh2cTAC3jQHOUgsfkQFNPIqRm4rUehIZAJyFAkqJ33rgfmF_USbMi653PiFsYKqqJg | 200 OK Content-Length: 21969 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwjAuvSz_7y-AhUmOHIKHetNAAMQBRgBIABxDd2EKVmEnXCCARMIkdb0s_-8vgIVTB5yCh0IGQD-jQHOUgsfkQFNPIqRm4rUehIZAJyFAkp1li-s7af5i0Q_XWf49ZrncLYqCw | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwizkf-z_7y-AhUm4HIKHS9UAFcQBhgBIABxDd2EKVmEnXCCARMIurX_s_-8vgIVcCJyCh2ZAgDQjQHOUgsfkQFNPIqRm4rUehIZAJyFAkrR6HEE_otd1G4S3O532ugrrJrpmA | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwiRtYi0_7y-AhVvI3IKHcBcAKAQBxgBIABxDd2EKVmEnXCCARMIjc6JtP-8vgIVTlpyCh11IQBhjQHOUgsfkQFNPIqRm4rUehIZAJyFAkpTm4vIxKdes63IYjrSWhC6qNIzVA | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwinvZO0_7y-AhVE03IKHRZ6ACQQCBgBIABxDd2EKVmEnXCCARMI_9qUtP-8vgIVFFtyCh2RNwB4jQHOUgsfkQFNPIqRm4rUehIZAJyFAkqevnn3t8ku-Knc3lqYsO0Yeoga7Q | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwjxr560_7y-AhWyH3IKHaNgALkQCRgBIABxDd2EKVmEnXCCARMIz8uftP-8vgIVEyNyCh3bNQA7jQHOUgsfkQFNPIqRm4rUehIZAJyFAkomk6sqA6J2B_ENtcIrz2nuQ3SLvA | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwjWnKm0_7y-AhU0H3IKHU0XAA8QChgBIABxDd2EKVmEnXCCARMIpLCqtP-8vgIVClpyCh30DwC6jQHOUgsfkQFNPIqRm4rUehIZAJyFAkqJJwM6HM1AQeqiwoHbkKbRfK71LQ | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwiy_7O0_7y-AhUUIXIKHZZjAOUQCxgBIABxDd2EKVmEnXCCARMIvJO1tP-8vgIVzCByCh2hJwAujQHOUgsfkQFNPIqRm4rUehIZAJyFAkr22PtWlL1nDdBgTzC9bUE-hVqyGQ | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwjr5r20_7y-AhWp3XIKHTIEALYQDBgBIABxDd2EKVmEnXCCARMIoYa_tP-8vgIVSx9yCh3jdwApjQHOUgsfkQFNPIqRm4rUehIZAJyFAkq2dM_hPNTDteW4jSQY8tkxTLQHuw | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/apps/domainpark/results.cgi?client=ca-dp-bodis27_3ph_js&url=http://medicsph.ru/&output=html&hl=ru&drid=as-drid-2281613037483178&ac=r&q=Sph&afdt=CkoKEwiPoMi0_7y-AhVvI3IKHcBcAKAQDRgBIABxDd2EKVmEnXCCARMI69zItP-8vgIV7SByCh0zUQA9jQHOUgsfkQFNPIqRm4rUehIZAJyFAkogfKLmKuz_h2JTkB9wbw5EtyISVA | 200 OK Content-Length: 21993 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=myefoto.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://myefoto.com/
Result: myefoto.com is not infected or malware details are not published yet.
Result: myefoto.com is not infected or malware details are not published yet.