Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ramirod.ro
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ramirod.ro
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 07 Jan 2015 13:34:34 GMT
Vary: X-UA-Device
Content-Type: text/html; charset=utf-8
Link: <http://31.media.tumblr.com/avatar_8a23070dd6f8_128.png>; rel=icon
P3P: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
X-Tumblr-Pixel: 3
X-Tumblr-Pixel-0: http://www.tumblr.com/impixu?T=1420637673&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDpcL1wvcmFtaXJvZC5yb1wvIiwicmVxdHlwZSI6MCwicm91dGUiOiJcLyJ9&U=NLDMKGOMEA&K=28ee674a4aff5f0d975737a8ed42197833ba152d6eac6ff033e445483de2a14f--http://www.tumblr.com/impixu?T=1420637673&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6XC9cL3JhbWlyb2Qucm9cLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiXC8iLCJwb3N0cyI6W3sicG9zdGlkIjoiNzM1Njg3MzEwNTMiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzIwMzAwOTI0NjAiLCJibG9naWQiOiI4
X-Tumblr-Pixel-1: ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjg5MzM3NjI5MDUiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwODAzOTUxODkiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwNzA3MDM1MTkiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwNTEwMDY5OTciLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwMDU4NDQ1ODIiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjE5NTA5Njg5MTIiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG
X-Tumblr-Pixel-2: 9zdGlkIjoiNjE0OTMzNTIwNjEiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjE0ODU3MTIyNTIiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9XX0=&U=OBMMDPCLKH&K=933ffe1c240359d918ed1ebb73a16f000b780fb44ced20622d3debd14fae2404
X-Tumblr-User: ramirod-jewelry
X-UA-Compatible: IE=Edge,chrome=1
X-UA-Device: desktop
GET / HTTP/1.1
Host: ramirod.ro
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 07 Jan 2015 13:34:34 GMT
Vary: X-UA-Device
Content-Type: text/html; charset=utf-8
Link: <http://31.media.tumblr.com/avatar_8a23070dd6f8_128.png>; rel=icon
P3P: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy"
X-Tumblr-Pixel: 3
X-Tumblr-Pixel-0: http://www.tumblr.com/impixu?T=1420637673&J=eyJ0eXBlIjoidXJsIiwidXJsIjoiaHR0cDpcL1wvcmFtaXJvZC5yb1wvIiwicmVxdHlwZSI6MCwicm91dGUiOiJcLyJ9&U=NLDMKGOMEA&K=28ee674a4aff5f0d975737a8ed42197833ba152d6eac6ff033e445483de2a14f--http://www.tumblr.com/impixu?T=1420637673&J=eyJ0eXBlIjoicG9zdCIsInVybCI6Imh0dHA6XC9cL3JhbWlyb2Qucm9cLyIsInJlcXR5cGUiOjAsInJvdXRlIjoiXC8iLCJwb3N0cyI6W3sicG9zdGlkIjoiNzM1Njg3MzEwNTMiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNzIwMzAwOTI0NjAiLCJibG9naWQiOiI4
X-Tumblr-Pixel-1: ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjg5MzM3NjI5MDUiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwODAzOTUxODkiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwNzA3MDM1MTkiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwNTEwMDY5OTciLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjYwMDU4NDQ1ODIiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjE5NTA5Njg5MTIiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG
X-Tumblr-Pixel-2: 9zdGlkIjoiNjE0OTMzNTIwNjEiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9LHsicG9zdGlkIjoiNjE0ODU3MTIyNTIiLCJibG9naWQiOiI4ODk0MzE2NyIsInNvdXJjZSI6MzN9XX0=&U=OBMMDPCLKH&K=933ffe1c240359d918ed1ebb73a16f000b780fb44ced20622d3debd14fae2404
X-Tumblr-User: ramirod-jewelry
X-UA-Compatible: IE=Edge,chrome=1
X-UA-Device: desktop
Second query (visit from search engine):
GET / HTTP/1.1
Host: ramirod.ro
Referer: http://www.google.com/search?q=ramirod.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ramirod.ro
Referer: http://www.google.com/search?q=ramirod.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://ramirod.ro/ | 200 OK Content-Length: 63225 Content-Type: text/html | clean |
http://assets.tumblr.com/assets/scripts/pre_tumblelog.js?_v=0fe6931f685c5a29060675a836044a62 | 200 OK Content-Length: 3361 Content-Type: application/javascript | clean |
http://assets.tumblr.com/javascript/tumblelog.js?16 | 404 Not Found Content-Length: 162 Content-Type: text/html | clean |
http://assets.tumblr.com/test404page.js | 404 Not Found Content-Length: 162 Content-Type: text/html | clean |
http://static.tumblr.com/hugxd2w/6Cpm8gh20/modernizr.2.6.1.min.js | 200 OK Content-Length: 8718 Content-Type: text/javascript | clean |
http://assets.tumblr.com/assets/scripts/tumblelog.js?_v=c78ef57bd25c48e7f24a984e7ef6ceba | 200 OK Content-Length: 44535 Content-Type: application/javascript | clean |
http://ramirod.ro//ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js/ | 404 Not Found Content-Length: 28800 Content-Type: text/html | clean |
http://static.tumblr.com/hugxd2w/Xtema9ggk/plugins.min.js | 200 OK Content-Length: 36364 Content-Type: text/javascript | clean |
http://static.tumblr.com/hugxd2w/Fv7mavex8/script.min.js | 200 OK Content-Length: 18875 Content-Type: text/javascript | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 110239 Content-Type: application/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12798 Content-Type: application/javascript | clean |
http://ramirod.ro/random | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 07 Jan 2015 13:34:39 GMT Accept-Ranges: bytes Location: http://ramirod.ro/post/43392299678/hippo-http-bit-ly-w4y72m#_=_ Vary: X-UA-Device Content-Length: 0 Content-Type: text/html P3P: CP="Tumblr's privacy policy is available here: https://www.tumblr.com/policy/en/privacy" X-Robots-Tag: noindex X-Tumblr-User: ramirod-jewelry X-UA-Compatible: IE=Edge,chrome=1 X-UA-Device: desktop | clean |
http://ramirod.ro/post/43392299678/hippo-http-bit-ly-w4y72m | 200 OK Content-Length: 34859 Content-Type: text/html | clean |
http://ramirod.ro/archive | 200 OK Content-Length: 302165 Content-Type: text/html | clean |
http://assets.tumblr.com/client/prod/app/vendor/index.js?_v=b4f312186598150ce713fe4b451fb940 | 200 OK Content-Length: 302026 Content-Type: application/javascript | clean |
http://assets.tumblr.com/languages/strings/en_US.js?1342 | 200 OK Content-Length: 2168 Content-Type: application/javascript | clean |