Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://nir-ran.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: nir-ran.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sun, 04 May 2014 07:12:03 GMT Location: http://goo.gl/gpWMY Server: nginx/1.2.1 Content-Length: 279 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://goo.gl/gpWMY (imitation of visitor from search engine) GET /gpWMY HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Sun, 04 May 2014 07:12:03 GMT Pragma: no-cache Location: http://mytds.s33.webhost1.ru/go.php?sid=1 Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
Scanned pages/files
Request | Server response | Status |
http://nir-ran.ru/ | 200 OK Content-Length: 48802 Content-Type: text/html | clean |
http://nir-ran.ru/wp-content/themes/Theme/menu/mootools-1.2.5-core-yc.js | 200 OK Content-Length: 66798 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/themes/Theme/menu/MenuMatic_0.68.3.js | 200 OK Content-Length: 25884 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/nextgen-gallery/js/jquery.cycle.all.min.js?ver=2.9995 | 200 OK Content-Length: 26590 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.06 | 200 OK Content-Length: 1791 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/content-slide/js/coin-slider.js?ver=3.4.2 | 200 OK Content-Length: 10820 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/simple-forum/resources/jscript/forum/sf-forum.js?ver=3.4.2 | 200 OK Content-Length: 19585 Content-Type: application/x-javascript | clean |
http://nir-ran.ru//yandex.st/share/share.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sun, 04 May 2014 07:12:06 GMT Pragma: no-cache Location: http://nir-ran.ru/yandex.st/share/share.js/ Server: nginx/1.2.1 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Sun, 04 May 2014 07:12:06 GMT Set-Cookie: PHPSESSID=iq5ui3b0orivbh0ofjif7bc5o7; path=/ X-Pingback: http://nir-ran.ru/xmlrpc.php X-Powered-By: PHP/5.4.4-14+deb7u2 | clean |
http://nir-ran.ru/yandex.st/share/share.js/ | 404 Not Found Content-Length: 25491 Content-Type: text/html | clean |
http://nir-ran.ru/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.15 | 200 OK Content-Length: 14760 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.3 | 200 OK Content-Length: 6859 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/wp-comment-master/autoresize.jquery.min.js?ver=3.4.2 | 200 OK Content-Length: 1143 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/wp-polls/polls-js.js?ver=2.63 | 200 OK Content-Length: 3598 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/wp-content/plugins/wp-postratings/postratings-js.js?ver=1.63 | 200 OK Content-Length: 3090 Content-Type: application/x-javascript | clean |
http://nir-ran.ru/arxiv-oprosov | 200 OK Content-Length: 28367 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nir-ran.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nir-ran.ru/
Result: nir-ran.ru is not infected or malware details are not published yet.
Result: nir-ran.ru is not infected or malware details are not published yet.