Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ruef.net.br
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sun, 01 Mar 2015 02:51:17 GMT
Location: http://www.redruef.org/
Server: Apache
Content-Length: 207
Content-Type: text/html; charset=iso-8859-1
...207 bytes of data.
GET / HTTP/1.1
Host: ruef.net.br
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sun, 01 Mar 2015 02:51:17 GMT
Location: http://www.redruef.org/
Server: Apache
Content-Length: 207
Content-Type: text/html; charset=iso-8859-1
...207 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ruef.net.br
Referer: http://www.google.com/search?q=ruef.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ruef.net.br
Referer: http://www.google.com/search?q=ruef.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://ruef.net.br/ | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Mar 2015 02:51:17 GMT Location: http://www.redruef.org/ Server: Apache Content-Length: 207 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.redruef.org/ | 200 OK Content-Length: 19856 Content-Type: text/html | clean |
http://new.redruef.org/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://new.redruef.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://new.redruef.org/wp-content/themes/responsive/core/js/responsive-modernizr.js?ver=2.6.1 | 200 OK Content-Length: 18348 Content-Type: application/javascript | clean |
http://new.redruef.org/wp-includes/js/comment-reply.min.js?ver=3.6.1 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://new.redruef.org/wp-content/themes/responsive/core/js/responsive-scripts.js?ver=1.2.4 | 200 OK Content-Length: 9020 Content-Type: application/javascript | clean |
http://new.redruef.org/wp-content/plugins/slideshow-jquery-image-gallery/js/min/all.frontend.min.js?ver=2.2.19 | 200 OK Content-Length: 22687 Content-Type: application/javascript | clean |
http://ruef.net.br/estudios-sobre-la-fraternidad-indicaciones-sobre-los-trabajos-desarrollados-en-el-ultimo-decenio/ | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Mar 2015 02:51:24 GMT Location: http://www.redruef.org/estudios-sobre-la-fraternidad-indicaciones-sobre-los-trabajos-desarrollados-en-el-ultimo-decenio/ Server: Apache Content-Length: 304 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.redruef.org/estudios-sobre-la-fraternidad-indicaciones-sobre-los-trabajos-desarrollados-en-el-ultimo-decenio/ | 200 OK Content-Length: 17303 Content-Type: text/html | clean |
http://www.redruef.org/test404page.js | 404 Not Found Content-Length: 13333 Content-Type: text/html | clean |
http://ruef.net.br/actividades-academicas/ | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Mar 2015 02:51:27 GMT Location: http://www.redruef.org/actividades-academicas/ Server: Apache Content-Length: 230 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.redruef.org/actividades-academicas/ | 200 OK Content-Length: 34639 Content-Type: text/html | clean |
http://ruef.net.br/biblioteca/ | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Mar 2015 02:51:29 GMT Location: http://www.redruef.org/biblioteca/ Server: Apache Content-Length: 218 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.redruef.org/biblioteca/ | 200 OK Content-Length: 25436 Content-Type: text/html | clean |
http://ruef.net.br/foros/ | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Mar 2015 02:51:31 GMT Location: http://www.redruef.org/foros/ Server: Apache Content-Length: 213 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.redruef.org/foros/ | 200 OK Content-Length: 16066 Content-Type: text/html | clean |
http://www.redruef.org/forums | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 01 Mar 2015 02:51:33 GMT Pragma: no-cache Location: http://www.redruef.org/forums/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: qtrans_cookie_test=qTranslate+Cookie+Test; path=/; domain=www.redruef.org Set-Cookie: PHPSESSID=7f688403cbc715ec4c453387bb7d7e2f; path=/ X-Pingback: http://new.redruef.org/xmlrpc.php | clean |
http://www.redruef.org/forums/ | 200 OK Content-Length: 18718 Content-Type: text/html | clean |
http://www.redruef.org/wp-login.php | 200 OK Content-Length: 2353 Content-Type: text/html | clean |
http://www.redruef.org/wp-login.php?action=register | 200 OK Content-Length: 2220 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ruef.net.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ruef.net.br/
Result: ruef.net.br is not infected or malware details are not published yet.
Result: ruef.net.br is not infected or malware details are not published yet.