Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://rusaviainter.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: rusaviainter.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Tue, 24 Jun 2014 04:42:08 GMT Location: http://www.totalcarsolution.com/sctcom/cgi-bin/1.php Server: nginx/1.2.0 Content-Type: text/html; charset=windows-1251 X-Powered-By: PHP/5.2.10 | malicious |
URL: http://www.totalcarsolution.com/sctcom/cgi-bin/1.php (imitation of visitor from search engine) GET /sctcom/cgi-bin/1.php HTTP/1.1 Host: www.totalcarsolution.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 24 Jun 2014 04:42:09 GMT Location: http://www.csra.de/includes/domit/1.php Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html | malicious |
URL: http://www.csra.de/includes/domit/1.php (imitation of visitor from search engine) GET /includes/domit/1.php HTTP/1.1 Host: www.csra.de Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 24 Jun 2014 04:42:09 GMT Location: http://jbtconsultinggroup.com/components/com_user/views/login/tmpl/1/all3.php Server: Apache Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.4.29 | malicious |
URL: http://jbtconsultinggroup.com/components/com_user/views/login/tmpl/1/all3.php (imitation of visitor from search engine) GET /components/com_user/views/login/tmpl/1/all3.php HTTP/1.1 Host: jbtconsultinggroup.com Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 24 Jun 2014 04:42:10 GMT Location: http://google.ru Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html | malicious |
Scanned pages/files
Request | Server response | Status |
http://rusaviainter.ru/ | 200 OK Content-Length: 56571 Content-Type: text/html | clean |
http://rusaviainter.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
http://rusaviainter.ru/modules/mod_lofarticlesscroller/assets/mod_lofarticlesscroller_jl15x.js | 200 OK Content-Length: 11178 Content-Type: application/x-javascript | clean |
http://rusaviainter.ru//modules/mod_swmenupro/menu_Packed.js/ | 404 Not Found Content-Length: 1411 Content-Type: text/html | clean |
http://rusaviainter.ru/test404page.js | 404 Not Found Content-Length: 1411 Content-Type: text/html | clean |
http://rusaviainter.ru/modules/mod_goboslide/js/jquery.js | 200 OK Content-Length: 55344 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rusaviainter.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rusaviainter.ru/
Result: rusaviainter.ru is not infected or malware details are not published yet.
Result: rusaviainter.ru is not infected or malware details are not published yet.