Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://rework.cc/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: rework.cc Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 25 Jun 2014 06:07:09 GMT Location: http://bitly.com/STTMlN Server: nginx/1.2.2 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://bitly.com/STTMlN (imitation of visitor from search engine) GET /STTMlN HTTP/1.1 Host: bitly.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: private; max-age=90 Connection: close Date: Wed, 25 Jun 2014 06:07:09 GMT Location: http://goo.gl/0rXySb Server: nginx Content-Length: 112 Content-Type: text/html; charset=utf-8 Mime-Version: 1.0 Set-Cookie: _bit=53aa670d-00241-0744d-cf1cf10a;domain=.bitly.com;expires=Mon Dec 22 06:07:09 2014;path=/; HttpOnly | malicious |
URL: http://goo.gl/0rXySb (imitation of visitor from search engine) GET /0rXySb HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Wed, 25 Jun 2014 06:03:41 GMT Pragma: no-cache Age: 208 Location: http://sh.oowoo.ru/redsh.php Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Mon, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
URL: http://sh.oowoo.ru/redsh.php (imitation of visitor from search engine) GET /redsh.php HTTP/1.1 Host: sh.oowoo.ru Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Connection: close Date: Wed, 25 Jun 2014 06:01:41 GMT Location: http://bitly.com/1kNQqvM Server: nginx/1.1.10 Content-Length: 0 Content-Type: text/html; charset=cp1251 X-Powered-By: PHP/5.2.17 | malicious |
URL: http://bitly.com/1kNQqvM (imitation of visitor from search engine) GET /1kNQqvM HTTP/1.1 Host: bitly.com Referer: http://www.google.com/search?q=redirect+check5 | HTTP/1.1 301 Moved Permanently Cache-Control: private; max-age=90 Connection: close Date: Wed, 25 Jun 2014 06:07:10 GMT Location: http://bongacams.com/track?c=18000 Server: nginx Content-Length: 126 Content-Type: text/html; charset=utf-8 Mime-Version: 1.0 Set-Cookie: _bit=53aa670e-00019-0746b-cf1cf10a;domain=.bitly.com;expires=Mon Dec 22 06:07:10 2014;path=/; HttpOnly | suspicious |
URL: http://bongacams.com/track?c=18000 (imitation of visitor from search engine) GET /track?c=18000 HTTP/1.1 Host: bongacams.com Referer: http://www.google.com/search?q=redirect+check6 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Wed, 25 Jun 2014 06:07:10 GMT Location: http://bongacash.com/tools/hit.php?c=18000 Server: nginx/1.6.0 Content-Length: 226 Content-Type: text/html; charset=iso-8859-1 Expires: Wed, 25 Jun 2014 06:07:09 GMT | suspicious |
Scanned pages/files
Request | Server response | Status |
http://rework.cc/ | 200 OK Content-Length: 40857 Content-Type: text/html | clean |
http://rework.cc/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-includes/js/comment-reply.min.js?ver=3.8.3 | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-content/themes/bretheon/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=3.8.3 | 200 OK Content-Length: 16280 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-content/themes/bretheon/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=3.8.3 | 200 OK Content-Length: 53308 Content-Type: application/x-javascript | clean |
http://code.jquery.com/jquery-1.6.4.min.js | 200 OK Content-Length: 91669 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-content/themes/bretheon/js/slide.js | 200 OK Content-Length: 366 Content-Type: application/x-javascript | clean |
http://rework.justclick.ru/media/subscribe/helper2.js.php | 200 OK Content-Length: 1847 Content-Type: text/javascript | clean |
http://rework.cc//vk.com/js/api/openapi.js?89/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 25 Jun 2014 06:07:13 GMT Pragma: no-cache Location: http://rework.cc/vk.com/js/api/openapi.js?89/ Server: nginx/1.2.2 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://rework.cc/xmlrpc.php X-Powered-By: PHP/5.3.13 X-UA-Compatible: IE=edge,chrome=1 | clean |
http://rework.cc/vk.com/js/api/openapi.js?89/ | 404 Not Found Content-Length: 25433 Content-Type: text/html | clean |
http://rework.cc/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05 | 200 OK Content-Length: 16305 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.7.2 | 200 OK Content-Length: 8913 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.10.3 | 200 OK Content-Length: 4289 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.10.3 | 200 OK Content-Length: 6488 Content-Type: application/x-javascript | clean |
http://rework.cc/wp-includes/js/jquery/ui/jquery.ui.mouse.min.js?ver=1.10.3 | 200 OK Content-Length: 2841 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rework.cc
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rework.cc/
Result: rework.cc is not infected or malware details are not published yet.
Result: rework.cc is not infected or malware details are not published yet.