Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tal.shdemati.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tal.shdemati.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tal.shdemati.com
Result:
HTTP/1.1 200 OK
Date: Wed, 08 Oct 2014 23:43:34 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 2163
Content-Type: text/html; charset=UTF-8
X-Cnection: close
...2163 bytes of data.
GET / HTTP/1.1
Host: tal.shdemati.com
Result:
HTTP/1.1 200 OK
Date: Wed, 08 Oct 2014 23:43:34 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 2163
Content-Type: text/html; charset=UTF-8
X-Cnection: close
...2163 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tal.shdemati.com
Referer: http://www.google.com/search?q=tal.shdemati.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tal.shdemati.com
Referer: http://www.google.com/search?q=tal.shdemati.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://tal.shdemati.com/ | 200 OK Content-Length: 2163 Content-Type: text/html | clean |
http://tal.shdemati.com/?fp=Gay3SbI7BQrFfoHj9icBRku5xHZBfTlPxSh3cG68L4aNzsPWyy5lsAq%2FY8jEJjjM8fDmBpFvtSlstfC9s5%2BB5A%3D%3D&prvtof=vMDC4qIRIyZx3WTD7Vmd0vGfMLZh3jelGW%2FqXBY21ng%3D&poru=X1ZvKAtZFqk5N7yD9WMi2brT5iQN5UVE2Je4%2FX2C%2B936h%2FKxtvAAyhqMnM0RLj3T& | 200 OK Content-Length: 51270 Content-Type: text/html | clean |
http://i1.cdn-image.com/__media__/js/min.js?v1.6 | 200 OK Content-Length: 8748 Content-Type: application/x-javascript | clean |
http://tal.shdemati.com/Bamboo_Shades.cfm?fp=Yt7Sg7MuqRUPMW8FfX7t33aRiuKRGi8UCOLQp%2Bz77tNcuk2RKvKNsxXOfP2Pt0CICo86HrRsxsR%2FZf67T0DZEM6cSzMxJ%2F3DyBkxPWv4A81pD3TQWD1yh3tHKEnkzyQ1NJCy8FbMQFqEAb9%2FSNkX%2BU1x%2Fk3rfBu5uZgxC0yG4QhgF7OJPs%2B99ly0TyNoPDHb&yep=7F9mDfZTEW3aI%2B7p67oa0hzk%2BajwskwuL5RXVwOM5oXYwm4osuo1bp5GU3xp3BiaZVSRdkTWF69qkzKUtfCljry9vyyGv3mWybMbFZzeafPKzOxgzvA8YUxn%2FUli5S4HDj7zcaDaXw <span>...557 symbols skipped</span> | 200 OK Content-Length: 50209 Content-Type: text/html | clean |
http://i3.cdn-image.com/__media__/js/min.js?v1.6 | 200 OK Content-Length: 8748 Content-Type: application/x-javascript | clean |
http://i2.cdn-image.com/__media__/pics/471/cufon-yui.js | 200 OK Content-Length: 18257 Content-Type: application/x-javascript | clean |
http://i2.cdn-image.com/__media__/pics/471/ChunkFive_400.font.js | 200 OK Content-Length: 16703 Content-Type: application/x-javascript | clean |
http://tal.shdemati.com/Roller_Shades.cfm?fp=Hdhq22f8Sv69kJN9zFaR2Vv%2FcqaQ5yKdd9ngCsnZnXhH5RyEUEDgihCcdR0xHhvJbhm9nVocfQoNPKTJDOeU%2FY%2F5c5%2BdVRrxRFSZHRnKcK3%2FLwa%2B1z5ARDCH%2Ffj%2FCggEy8BMFuP4xRV5kyzHaaO9ToeRcj1Z7YDzcfQom%2FliTZCLSps9nN7su8eFYm2AkSCq&yep=o9j3yBHXrit%2BrMxbZeTa9np%2F%2BtYnHXyIRALd2tB%2BrSHVFv%2Fj9Bgn2yV60iFR7VC25hLtDDd7fcK8SbQbWzamsPfj%2BzA9kQ5eaW1SmGpFlvemMmfkvcEBG9iGhUq38FTt <span>...566 symbols skipped</span> | 200 OK Content-Length: 49857 Content-Type: text/html | clean |
http://i4.cdn-image.com/__media__/pics/471/cufon-yui.js | 200 OK Content-Length: 18257 Content-Type: application/x-javascript | clean |
http://i3.cdn-image.com/__media__/pics/471/ChunkFive_400.font.js | 200 OK Content-Length: 16703 Content-Type: application/x-javascript | clean |
http://tal.shdemati.com/Roller_Shades.cfm?fp=3ZNHUPaS97JstWrsY834MH91gI%2FS8WF0kAeaO58G%2F%2BfkkNcC2tfLGuF%2Fz9TFfG2FLvqtMMfQN42I%2BaYK7TmSOYe35Bdz05Gt6ga8Yl2I%2Fqmost%2FTU6Kah4j%2FFXWdBhwjrhgq7qsY2NNxB2XTket4KASYEcbJI9KhpiULimTQZc1Sx6DhTRSq3FKoV9LKwuWf&yep=TJNlHH2hNLJ2V9TGKyVdUs7uPhacK11Tt1ozKngCFs3Keix2wN6bhEVfwbuQmDuxcgGpSUIG3Xzh5j0yzSu8EnrgXgSZzPt2IQo7MDISFbRpHvHLjVcoF3j2BztbngxMqS7Dnou6wCLzsO <span>...546 symbols skipped</span> | 200 OK Content-Length: 50338 Content-Type: text/html | clean |
http://i3.cdn-image.com/__media__/pics/471/cufon-yui.js | 200 OK Content-Length: 18257 Content-Type: application/x-javascript | clean |
http://tal.shdemati.com/Roller_Shades.cfm?fp=gqzPfybZNSvz64By5IVxCQFZGWbxv9UvDqhheITx0zpJUtpBB0X7lvhkg0kjrbTFXXVlzU4qj8AEDp9YcK4DjCQIppMrpveR3%2BpX%2B5Jm2%2BYJUort8uekYCuakV368chvWEmQ95O%2BNP2KpmfMNrd0PAjHdc9pWKIuGYF34BF%2Fx985M8jqqq8cM4abcp7wb92Z&yep=3CAV0pSWUlUHf0tmq%2Fu15dRNdWmPHLcS5A3lnMKMt969pwwa%2B8WYMgzr7IqfcfRJ6Wwz6YxUKtzq65ydq3yzc4DzJmypHXOnNHjd4QCuNRk9GU%2BzTLjQuXCf7h536eUio%2FGztd8cKD9N <span>...558 symbols skipped</span> | 200 OK Content-Length: 50556 Content-Type: text/html | clean |
http://tal.shdemati.com/Roller_Shades.cfm?fp=oP5aIR4kkPBdSsMkc0pZXN9H%2F8ih1Y%2B%2BnJrU9UF%2FEdFpscUvwCmuXXoCHQnmi9rdC9AaM7XCG3tTlcsbvJACbH%2BmIgHuM4i2IpgWtyIrQHL4XiWooArUidf9jvyqOHPSsgyLvzS4HqT%2FQamE7pCpg5Zkr6Fol66BVXEVEQ998Elm5YgGo3s8E9%2B%2Fr8UBWPbz&yep=PoMx4U9eyfyyS2sjRGgJViMfULciqSwxd%2FMCZ6ONfyMCPL%2BVKgsVJ3Tcu5gtGj7t6v625HPXW%2BSuBJnd4Onn5ym4%2Bn1ri7fgWXNmO45UY3Bl86X%2FoPvWRgjJ6lEsU%2BFY1d <span>...596 symbols skipped</span> | 200 OK Content-Length: 50062 Content-Type: text/html | clean |
http://i4.cdn-image.com/__media__/pics/471/ChunkFive_400.font.js | 200 OK Content-Length: 16703 Content-Type: application/x-javascript | clean |