Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nekontakt2.ru
Result:
GET / HTTP/1.1
Host: nekontakt2.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: nekontakt2.ru
Referer: http://www.google.com/search?q=nekontakt2.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nekontakt2.ru
Referer: http://www.google.com/search?q=nekontakt2.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.nekontakt2.ru/ | 200 OK Content-Length: 11537 Content-Type: text/html | clean |
http://www.nekontakt2.ru/jquery-1.3.2.min.js | 200 OK Content-Length: 57254 Content-Type: text/javascript | clean |
http://stolnastole.ru/js/api/openapi.js?15 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 04 Mar 2015 15:53:09 GMT Location: / Server: nginx Content-Length: 0 Content-Type: text/html X-Powered-By: Axelname.ru | clean |
http://stolnastole.ru/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 04 Mar 2015 15:53:09 GMT Location: http://movizor.ru/?from=stolnastole.ru Server: nginx Content-Type: text/html X-Powered-By: Axelname.ru | clean |
http://movizor.ru/?from=stolnastole.ru | 200 OK Content-Length: 11511 Content-Type: text/html | clean |
http://movizor.ru/static/js/jquery.min.js | 200 OK Content-Length: 96381 Content-Type: application/javascript | clean |
http://stolnastole.ru/static/js/bootstrap/bootstrap.min.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 04 Mar 2015 15:53:10 GMT Location: / Server: nginx Content-Length: 0 Content-Type: text/html X-Powered-By: Axelname.ru | clean |
http://stolnastole.ru/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 04 Mar 2015 15:53:10 GMT Location: / Server: nginx Content-Length: 0 Content-Type: text/html X-Powered-By: Axelname.ru | clean |
http://stolnastole.ru/static/js/bootstrap/docs.min.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 04 Mar 2015 15:53:10 GMT Location: / Server: nginx Content-Length: 0 Content-Type: text/html X-Powered-By: Axelname.ru | clean |
http://stolnastole.ru/static/js/support3.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 04 Mar 2015 15:53:10 GMT Location: / Server: nginx Content-Length: 0 Content-Type: text/html X-Powered-By: Axelname.ru | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nekontakt2.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nekontakt2.ru/
Result: nekontakt2.ru is not infected or malware details are not published yet.
Result: nekontakt2.ru is not infected or malware details are not published yet.