Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://spice-go.ru/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: spice-go.ru Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:10 GMT Location: http://bitly.com/STTMlN Server: LiteSpeed Content-Length: 1148 Content-Type: text/html | malicious |
URL: http://bitly.com/STTMlN (imitation of visitor from search engine) GET /STTMlN HTTP/1.1 Host: bitly.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: private; max-age=90 Connection: close Date: Tue, 15 Jul 2014 15:21:11 GMT Location: http://goo.gl/0rXySb Server: nginx Content-Length: 112 Content-Type: text/html; charset=utf-8 Mime-Version: 1.0 Set-Cookie: _bit=53c546e7-000a4-03392-251cf10a;domain=.bitly.com;expires=Sun Jan 11 15:21:11 2015;path=/; HttpOnly | malicious |
URL: http://goo.gl/0rXySb (imitation of visitor from search engine) GET /0rXySb HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 15 Jul 2014 15:16:43 GMT Pragma: no-cache Age: 268 Location: http://sh.oowoo.ru/redsh.php Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Mon, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
URL: http://sh.oowoo.ru/redsh.php (imitation of visitor from search engine) GET /redsh.php HTTP/1.1 Host: sh.oowoo.ru Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Connection: close Date: Tue, 15 Jul 2014 15:20:54 GMT Location: http://bitly.com/1kNQqvM Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html; charset=CP1251 X-Powered-By: PHP/5.2.17 | malicious |
URL: http://bitly.com/1kNQqvM (imitation of visitor from search engine) GET /1kNQqvM HTTP/1.1 Host: bitly.com Referer: http://www.google.com/search?q=redirect+check5 | HTTP/1.1 301 Moved Permanently Cache-Control: private; max-age=90 Connection: close Date: Tue, 15 Jul 2014 15:21:11 GMT Location: http://bongacams.com/track?c=18000 Server: nginx Content-Length: 126 Content-Type: text/html; charset=utf-8 Mime-Version: 1.0 Set-Cookie: _bit=53c546e7-00257-00536-3b1cf10a;domain=.bitly.com;expires=Sun Jan 11 15:21:11 2015;path=/; HttpOnly | suspicious |
URL: http://bongacams.com/track?c=18000 (imitation of visitor from search engine) GET /track?c=18000 HTTP/1.1 Host: bongacams.com Referer: http://www.google.com/search?q=redirect+check6 | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Tue, 15 Jul 2014 15:21:11 GMT Location: http://bongacash.com/tools/hit.php?c=18000 Server: nginx/1.2.6 Content-Length: 226 Content-Type: text/html; charset=iso-8859-1 Expires: Tue, 15 Jul 2014 15:21:10 GMT | suspicious |
Scanned pages/files
Request | Server response | Status |
http://spice-go.ru/ | 200 OK Content-Length: 1196 Content-Type: text/html | clean |
http://spice-go.ru/function.require-once | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:11 GMT Location: http://goo.gl/0rXySb Server: LiteSpeed Content-Length: 1148 Content-Type: text/html | clean |
http://goo.gl/0rxysb | 404 Not Found Content-Length: 4489 Content-Type: text/html | clean |
http://goo.gl/static/0046.urlshortener.js | 200 OK Content-Length: 66021 Content-Type: text/javascript | clean |
http://spice-go.ru//www.google.com/support/websearch/bin/answer.py?answer=190768/ | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:12 GMT Location: http://goo.gl/0rXySb Server: LiteSpeed Content-Length: 1148 Content-Type: text/html | clean |
http://goo.gl/test404page.js | 404 Not Found Content-Length: 4497 Content-Type: text/html | clean |
http://goo.gl/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:12 GMT Location: https://www.google.com/accounts/ServiceLogin?service=urlshortener&continue=http://goo.gl/?authed%3D1&followup=http://goo.gl/?authed%3D1&passive=true&go=true Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Tue, 15 Jul 2014 15:21:12 GMT Alternate-Protocol: 80:quic Set-Cookie: authed=1;Path=/ X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
https://www.google.com/accounts/servicelogin?service=urlshortener&continue=http://goo.gl/?authed%3d1&followup=http://goo.gl/?authed%3d1&passive=true&go=true | HTTP/1.1 302 Moved Temporarily Cache-Control: private, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:12 GMT Location: https://accounts.google.com/servicelogin?service=urlshortener&continue=http%3A%2F%2Fgoo.gl%2F%3Fauthed%3D1&followup=http%3A%2F%2Fgoo.gl%2F%3Fauthed%3D1&passive=true&go=true Server: GSE Content-Length: 370 Content-Type: text/html; charset=UTF-8 Expires: Tue, 15 Jul 2014 15:21:12 GMT X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://accounts.google.com/servicelogin?service=urlshortener&continue=http%3a%2f%2fgoo.gl%2f%3fauthed%3d1&followup=http%3a%2f%2fgoo.gl%2f%3fauthed%3d1&passive=true&go=true | HTTP/1.1 200 OK Cache-Control: private, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:12 GMT Server: GSE Content-Length: 1491 Content-Type: text/html; charset=UTF-8 Expires: Tue, 15 Jul 2014 15:21:12 GMT Alternate-Protocol: 443:quic Set-Cookie: GAPS=1:Tpyo1QGkuk8EePfbAJOJhqzSZMWhtg:6DWgtLQwW1WqxBzl;Path=/;Expires=Thu, 14-Jul-2016 15:21:12 GMT;Secure;HttpOnly;Priority=HIGH Strict-Transport-Security: max-age=10893354; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block | clean |
https://accounts.google.com/& | 404 Not Found Content-Length: 23425 Content-Type: text/html | clean |
https://accounts.google.com/TOS?loc=LT&hl=en | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store Connection: close Date: Tue, 15 Jul 2014 15:21:13 GMT Pragma: no-cache Location: https://www.google.lt/intl/en/policies/terms/ Server: GSE Content-Length: 227 Content-Type: text/html; charset=UTF-8 Expires: Mon, 01-Jan-1990 00:00:00 GMT Alternate-Protocol: 443:quic Set-Cookie: GoogleAccountsLocale_session=en; Path=/; Secure; HttpOnly Strict-Transport-Security: max-age=10893354; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/intl/en/policies/terms/ | HTTP/1.1 200 OK Cache-Control: private, max-age=0 Connection: close Date: Tue, 15 Jul 2014 15:21:13 GMT Server: sffe Vary: Accept-Encoding Content-Type: text/html Expires: Tue, 15 Jul 2014 15:21:13 GMT Last-Modified: Tue, 24 Jan 2012 14:44:29 GMT X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/intl/en/policies/terms/regional.html | 200 OK Content-Length: 20900 Content-Type: text/html | clean |
https://www.google.lt//www.google.com/js/google.js/ | 404 Not Found Content-Length: 1438 Content-Type: text/html | clean |
https://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://www.google.lt/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
https://accounts.google.com//www.google.com/js/maia.js/ | 404 Not Found Content-Length: 23425 Content-Type: text/html | clean |
http://goo.gl//www.google.com/support/websearch/bin/answer.py?answer=190768/ | 404 Not Found Content-Length: 4544 Content-Type: text/html | clean |
http://goo.gl//www.google.com/privacy.html/ | 404 Not Found Content-Length: 4511 Content-Type: text/html | clean |
http://goo.gl/policy.html | 200 OK Content-Length: 5094 Content-Type: text/html | clean |
http://goo.gl//support.google.com/legal/troubleshooter/1114905?hl=en/ | 404 Not Found Content-Length: 4537 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=spice-go.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://spice-go.ru/
Result: spice-go.ru is not infected or malware details are not published yet.
Result: spice-go.ru is not infected or malware details are not published yet.