Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=smashsafe.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imwebstudio.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 19 Dec 2015 15:27:31 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding
Content-Length: 6530
Content-Type: text/html
Last-Modified: Mon, 27 Jul 2015 18:34:34 GMT
X-Cache: HIT from Backend
...6530 bytes of data.
GET / HTTP/1.1
Host: imwebstudio.ru
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 19 Dec 2015 15:27:31 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding
Content-Length: 6530
Content-Type: text/html
Last-Modified: Mon, 27 Jul 2015 18:34:34 GMT
X-Cache: HIT from Backend
...6530 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: imwebstudio.ru
Referer: http://www.google.com/search?q=imwebstudio.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imwebstudio.ru
Referer: http://www.google.com/search?q=imwebstudio.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://smashsafe.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Wed, 07 Jan 2015 05:43:22 GMT Age: 0 Location: http://useacondom.com Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://useacondom.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 05:43:27 GMT Location: http://www.useacondom.com/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: wfvt_3497895855=54acc77fba12a; expires=Wed, 07-Jan-2015 06:13:27 GMT; path=/; httponly X-Pingback: http://www.useacondom.com/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.useacondom.com/ | 200 OK Content-Length: 13258 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4385 bytes skipped]... | ||
http://www.useacondom.com/wp-content/themes/useacondom/library/js/libs/modernizr.custom.min.js | 200 OK Content-Length: 15126 Content-Type: text/javascript | clean |
http://www.useacondom.com/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95807 Content-Type: text/javascript | clean |
http://www.useacondom.com/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://www.useacondom.com/wp-includes/js/comment-reply.min.js | 200 OK Content-Length: 757 Content-Type: text/javascript | clean |
http://www.useacondom.com/wp-content/themes/useacondom/library/js/scripts.js | 200 OK Content-Length: 4238 Content-Type: text/javascript | clean |
http://smashsafe.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=900 Connection: close Date: Wed, 07 Jan 2015 05:43:37 GMT Age: 1 Location: http://useacondom.com/test404page.js Server: Microsoft-IIS/7.5 Content-Length: 0 Content-Type: text/html X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://useacondom.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 07 Jan 2015 05:43:38 GMT Pragma: no-cache Location: http://www.useacondom.com/test404page.js Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: wfvt_3497895855=54acc78aad2c6; expires=Wed, 07-Jan-2015 06:13:38 GMT; path=/; httponly X-Pingback: http://www.useacondom.com/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.useacondom.com/test404page.js | 404 Not Found Content-Length: 10971 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4375 bytes skipped]... | ||
http://www.useacondom.com/faq/ | 200 OK Content-Length: 21995 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4385 bytes skipped]... | ||
http://www.useacondom.com/condom-use/ | 200 OK Content-Length: 14670 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4385 bytes skipped]... | ||
http://www.useacondom.com/free-condoms/ | 200 OK Content-Length: 11713 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4385 bytes skipped]... | ||
https://www.google.com/jsapi | 200 OK Content-Length: 24553 Content-Type: text/javascript | clean |
http://www.useacondom.com//code.metalocator.com/index.php?option=com_locator&view=directory&layout=_javascript&framed=1&format=raw&tmpl=component&no_html=1&Itemid=2680/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 07 Jan 2015 05:43:42 GMT Pragma: no-cache Location: http://www.useacondom.com/code.metalocator.com/?option=com_locator&view=directory&layout=_javascript&framed=1&format=raw&tmpl=component&no_html=1&Itemid=2680/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: wfvt_3497895855=54acc78e7a3a1; expires=Wed, 07-Jan-2015 06:13:42 GMT; path=/; httponly X-Pingback: http://www.useacondom.com/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.useacondom.com/code.metalocator.com/?option=com_locator&view=directory&layout=_javascript&framed=1&format=raw&tmpl=component&no_html=1&itemid=2680/ | 404 Not Found Content-Length: 10971 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4375 bytes skipped]... | ||
http://www.useacondom.com/advertisements/ | 200 OK Content-Length: 14226 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4385 bytes skipped]... | ||
http://www.useacondom.com/billboard/safe-or-sorry/ | 200 OK Content-Length: 11635 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: condom-nation.org <!doctype html> <!--[if lt IE 7]><html lang="en-US" class="no-js lt-ie9 lt-ie8 lt-ie7"><![endif]--> <!--[if (IE 7)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9 lt-ie8"><![endif]--> <!--[if (IE 8)&!(IEMobile)]><html lang="en-US" class="no-js lt-ie9"><![endif]--> <!--[if gt IE 8]><!--> <html lang="en-US" class="no-js"><!--<![endif]--> ...[4375 bytes skipped]... | ||
http://www.useacondom.com/advertisements | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 07 Jan 2015 05:43:45 GMT Location: http://www.useacondom.com/advertisements/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: wfvt_3497895855=54acc7911e9b1; expires=Wed, 07-Jan-2015 06:13:45 GMT; path=/; httponly X-Pingback: http://www.useacondom.com/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.useacondom.com/wp-content/uploads/2014/09/Screen-Shot-2014-09-15-at-1.34.05-PM-300x90.png | 200 OK Content-Length: 58234 Content-Type: image/png | clean |