Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: steep-mobile.ru
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 13 Aug 2014 13:35:19 GMT
Location: http://www.steep-mobile.ru/
Server: nginx
Content-Length: 307
Content-Type: text/html; charset=iso-8859-1
...307 bytes of data.
GET / HTTP/1.1
Host: steep-mobile.ru
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 13 Aug 2014 13:35:19 GMT
Location: http://www.steep-mobile.ru/
Server: nginx
Content-Length: 307
Content-Type: text/html; charset=iso-8859-1
...307 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: steep-mobile.ru
Referer: http://www.google.com/search?q=steep-mobile.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: steep-mobile.ru
Referer: http://www.google.com/search?q=steep-mobile.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://steep-mobile.ru/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 13 Aug 2014 13:35:19 GMT Location: http://www.steep-mobile.ru/ Server: nginx Content-Length: 307 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.steep-mobile.ru/ | 200 OK Content-Length: 173637 Content-Type: text/html | clean |
http://www.steep-mobile.ru/templates/yoo_waybeyond/lib/js/mootools/mootools-release-1.12.js | 200 OK Content-Length: 65048 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/media/system/js/modal.js | 200 OK Content-Length: 10588 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://steep-mobile.ru/components/com_k2/js/k2.js | 200 OK Content-Length: 6400 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/modules/mod_accordion_menu/cache/168/69d74ab24f5e1d9567c9b7b1f50f06e8.js | 200 OK Content-Length: 109735 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/templates/yoo_waybeyond/lib/js/addons/base.js | 200 OK Content-Length: 1925 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/templates/yoo_waybeyond/lib/js/addons/accordionmenu.js | 200 OK Content-Length: 1161 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/templates/yoo_waybeyond/lib/js/addons/fancymenu.js | 200 OK Content-Length: 2602 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/templates/yoo_waybeyond/lib/js/addons/dropdownmenu.js | 200 OK Content-Length: 1149 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/templates/yoo_waybeyond/lib/js/yoo_tools.js | 200 OK Content-Length: 9357 Content-Type: application/x-javascript | clean |
http://www.steep-mobile.ru/modules/mod_fpss/mod_fpss/engines/jquery-comp.js | 200 OK Content-Length: 31033 Content-Type: application/x-javascript | clean |
http://www.steep-mobile.ru/modules/mod_fpss/mod_fpss/engines/jquery-fpss-comp.js | 200 OK Content-Length: 5978 Content-Type: application/x-javascript | clean |
http://steep-mobile.ru/modules/mod_ppc_fastfont/js/fastfont.js | 200 OK Content-Length: 2412 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=steep-mobile.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://steep-mobile.ru/
Result: steep-mobile.ru is not infected or malware details are not published yet.
Result: steep-mobile.ru is not infected or malware details are not published yet.