Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ad-avenue.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 17 Jan 2015 19:20:51 GMT
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Set-Cookie: spcookie=True; expires=Sat, 17-Jan-2015 19:50:50 GMT
Set-Cookie: themes_view=grid; expires=Mon, 16-Feb-2015 19:20:50 GMT
Set-Cookie: themes_view=grid
X-Pingback: http://ad-avenue.net/xmlrpc.php
X-Powered-By: PHP/5.4.36
GET / HTTP/1.1
Host: ad-avenue.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 17 Jan 2015 19:20:51 GMT
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Set-Cookie: spcookie=True; expires=Sat, 17-Jan-2015 19:50:50 GMT
Set-Cookie: themes_view=grid; expires=Mon, 16-Feb-2015 19:20:50 GMT
Set-Cookie: themes_view=grid
X-Pingback: http://ad-avenue.net/xmlrpc.php
X-Powered-By: PHP/5.4.36
Second query (visit from search engine):
GET / HTTP/1.1
Host: ad-avenue.net
Referer: http://www.google.com/search?q=ad-avenue.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ad-avenue.net
Referer: http://www.google.com/search?q=ad-avenue.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.ad-avenue.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 17 Jan 2015 19:20:50 GMT Location: http://ad-avenue.net/ Server: LiteSpeed Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: spcookie=True; expires=Sat, 17-Jan-2015 19:50:50 GMT X-Pingback: http://ad-avenue.net/xmlrpc.php X-Powered-By: PHP/5.4.36 | clean |
http://ad-avenue.net/ | 200 OK Content-Length: 41017 Content-Type: text/html | clean |
http://ad-avenue.net/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/plugins/subscribe-download/js/subscribe-download.js?ver=20 | 200 OK Content-Length: 1494 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/libs/modernizr.min.js?ver=4.1 | 200 OK Content-Length: 16937 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/libs/respond.min.js?ver=4.1 | 200 OK Content-Length: 4074 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/libs/jquery.min.js?ver=4.1 | 200 OK Content-Length: 93433 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/jquery.easing.1.3.min.js?ver=4.1 | 200 OK Content-Length: 3443 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/general.js?ver=4.1 | 200 OK Content-Length: 11776 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/jquery.carouFredSel.packed.js?ver=4.1 | 200 OK Content-Length: 36430 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/jquery.touchSwipe.min.js?ver=4.1 | 200 OK Content-Length: 4325 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/cusel-min.js?ver=4.1 | 200 OK Content-Length: 15646 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/jquery.tools.min.js?ver=4.1 | 200 OK Content-Length: 4781 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/slides.min.jquery.js?ver=4.1 | 200 OK Content-Length: 6803 Content-Type: application/javascript | clean |
http://ad-avenue.net/wp-content/themes/gadgetry-parent/js/jquery.infieldlabel.min.js?ver=4.1 | 200 OK Content-Length: 1815 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ad-avenue.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ad-avenue.net/
Result: ad-avenue.net is not infected or malware details are not published yet.
Result: ad-avenue.net is not infected or malware details are not published yet.