Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://sambaposdestek.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: sambaposdestek.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 07 Jan 2015 23:04:27 GMT Location: http://treyes.deliveredbythedevil.com/neo/darla/php/fc.php?trace=compose_fwd&tID=10&d=0&f=978532079&l=MNW&rn=1341913172975&en=utf-8&mb_s_en=utf-8&filter=no_expandable%253Bajax_cert_expandable%253Bexp_iframe_expandable%253B&ref=http%3A%2F%2Fsambaposdestek.com%2F&sa=content%253D%2522minty_tenure%253A%2520week%25203+%2522 Server: Apache/2 Content-Length: 614 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: ZDC=27; path=/; domain=sambaposdestek.com; expires=Thu, 15-Jan-2015 08:14:27 GMT | suspicious |
URL: http://treyes.deliveredbythedevil.com/neo/darla/php/fc.php?trace=compose_fwd&tID=10&d=0&f=978532079&l=MNW&rn=1341913172975&en=utf-8&mb_s_en=utf-8&filter=no_expandable%253Bajax_cert_expandable%253Bexp_iframe_expandable%253B&ref=http%3A%2F%2Fsambaposdestek.com%2F&sa=content%253D%2522minty_tenure%253A%2520week%25203+%2522 (imitation of visitor from search engine) GET /neo/darla/php/fc.php?trace=compose_fwd&tID=10&d=0&f=978532079&l=MNW&rn=1341913172975&en=utf-8&mb_s_en=utf-8&filter=no_expandable%253Bajax_cert_expandable%253Bexp_iframe_expandable%253B&ref=http%3A%2F%2Fsambaposdestek.com%2F&sa=content%253D%2522minty_tenure%253A%2520week%25203+%2522 HTTP/1.1 Host: treyes.deliveredbythedevil.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 07 Jan 2015 23:22:17 GMT Location: http://www.google.com Server: nginx/1.4.5 Content-Length: 160 Content-Type: text/html | suspicious |
Scanned pages/files
Request | Server response | Status |
http://sambaposdestek.com/ | 403 Forbidden Content-Length: 391 Content-Type: text/html | clean |
http://sambaposdestek.com/test404page.js | 404 Not Found Content-Length: 401 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sambaposdestek.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sambaposdestek.com/
Result: sambaposdestek.com is not infected or malware details are not published yet.
Result: sambaposdestek.com is not infected or malware details are not published yet.