Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.omegafire.net/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.omegafire.net Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Thu, 08 Oct 2015 08:30:25 GMT Location: http://goo.gl/PyxTmU Server: Apache/2.4.12 Content-Length: 204 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://goo.gl/PyxTmU (imitation of visitor from search engine) GET /PyxTmU HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Thu, 08 Oct 2015 08:30:25 GMT Pragma: no-cache Accept-Ranges: none Location: http://werbest.ru/load/?0e62 Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | suspicious |
URL: http://werbest.ru/load/?0e62 (imitation of visitor from search engine) GET /load/?0e62 HTTP/1.1 Host: werbest.ru Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0 Connection: close Date: Thu, 08 Oct 2015 08:30:25 GMT Pragma: no-cache Location: http://softportalann.com/?page=lending&type=soft&join=1&dt=1&size=3&ext=zip&date=yesterday&author=Joshua&img=http%3A%2F%2Fwww.hosoft.ru%2Fimage%2Fprogram%2Fmicrosoft-security-essentials-v.-1.0.1961.0.jpg&link=http%3A%2F%2Fturbobit.net%2F6k9cgr2jtmpu.html&sid=443371618&key=Microsoft+Security+Essentials Server: Apache Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Thu, 08 Oct 2015 08:30:25 GMT X-Powered-By: PHP/5.4.45 | suspicious |
URL: http://softportalann.com/?page=lending&type=soft&join=1&dt=1&size=3&ext=zip&date=yesterday&author=Joshua&img=http%3A%2F%2Fwww.hosoft.ru%2Fimage%2Fprogram%2Fmicrosoft-security-essentials-v.-1.0.1961.0.jpg&link=http%3A%2F%2Fturbobit.net%2F6k9cgr2jtmpu.html&sid=443371618&key=Microsoft+Security+Essentials (imitation of visitor from search engine) GET /?page=lending&type=soft&join=1&dt=1&size=3&ext=zip&date=yesterday&author=Joshua&img=http%3A%2F%2Fwww.hosoft.ru%2Fimage%2Fprogram%2Fmicrosoft-security-essentials-v.-1.0.1961.0.jpg&link=http%3A%2F%2Fturbobit.net%2F6k9cgr2jtmpu.html&sid=443371618&key=Microsoft+Security+Essentials HTTP/1.1 Host: softportalann.com Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Cache-Control: max-age=259200 Connection: close Date: Thu, 08 Oct 2015 08:30:26 GMT Pragma: no-cache Location: http://dl26.softportaliznn.pp.ua?page=lending&type=soft&join=1&dt=1&size=3&ext=zip&date=yesterday&author=Joshua&img=http%3A%2F%2Fwww.hosoft.ru%2Fimage%2Fprogram%2Fmicrosoft-security-essentials-v.-1.0.1961.0.jpg&link=http%3A%2F%2Fturbobit.net%2F6k9cgr2jtmpu.html&sid=443371618&key=Microsoft+Security+Essentials Server: nginx/1.0.14 Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Sun, 11 Oct 2015 08:30:26 GMT Set-Cookie: PHPSESSID=gf5jf155sr23kpl66np6mcbnm5; path=/ X-Powered-By: PHP/5.3.10 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.omegafire.net/ | 200 OK Content-Length: 7529 Content-Type: text/html | clean |
http://www.omegafire.net/templates/protostar/js/grid.js | 200 OK Content-Length: 9511 Content-Type: application/javascript | clean |
http://www.omegafire.net/templates/protostar/js/slider.js | 200 OK Content-Length: 302367 Content-Type: application/javascript | clean |
http://www.omegafire.net/xbox-360-transformers-fall-of-cybertron-demo.pdf | 200 OK Content-Length: 33833 Content-Type: application/pdf | clean |
http://www.omegafire.net/test404page.js | 404 View not found [name, type, prefix]: article, js, contentView Content-Length: 2917 Content-Type: text/html | clean |
http://www.omegafire.net/index.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.omegafire.net/madden-nfl-15-qb-ratings.pdf | 200 OK Content-Length: 32916 Content-Type: application/pdf | clean |
http://www.omegafire.net/vampire-rain-achievement-guide.pdf | 200 OK Content-Length: 32616 Content-Type: application/pdf | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=omegafire.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://omegafire.net/
Result: omegafire.net is not infected or malware details are not published yet.
Result: omegafire.net is not infected or malware details are not published yet.