Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: adlmalawi.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 25 Jan 2015 20:49:27 GMT
Server: Apache
Content-Type: text/html
GET / HTTP/1.1
Host: adlmalawi.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 25 Jan 2015 20:49:27 GMT
Server: Apache
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: adlmalawi.com
Referer: http://www.google.com/search?q=adlmalawi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: adlmalawi.com
Referer: http://www.google.com/search?q=adlmalawi.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://adlmalawi.com/ | HTTP/1.1 200 OK Connection: close Date: Sun, 25 Jan 2015 20:49:27 GMT Server: Apache Content-Type: text/html | clean |
https://www.facebook.com/pvprehacker.gov | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Sun, 25 Jan 2015 20:49:28 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=2FbFVPBRniBuQrWMH8mh4irb; expires=Tue, 24-Jan-2017 20:49:28 GMT; Max-Age=63072000; path=/; domain=.facebook.com; httponly Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Fpvprehacker.gov; path=/; domain=.facebook.com Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fpvprehacker.gov; path=/; domain=.facebook.com X-Content-Type-Options: nosniff X-FB-Debug: N1DQuoQSncOwDqNz0NXk4S3edE3s8cI+pH07wI0MvgOl8iEW5h2oNrNQ4cBv7JejjozB3NI7JKble0rsCTowIg== X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/pvprehacker.gov?_fb_noscript=1 | 200 OK Content-Length: 301024 Content-Type: text/html | clean |
https://fbstatic-a.akamaihd.net/rsrc.php/v2/y0/r/cNfsp6bUUCR.js | 200 OK Content-Length: 125465 Content-Type: application/x-javascript | clean |
http://adlmalawi.com/pages/create/?ref_type=page_profile_button&ref_id=405912149478810 | 404 Not Found Content-Length: 393 Content-Type: text/html | clean |
http://adlmalawi.com/test404page.js | 404 Not Found Content-Length: 394 Content-Type: text/html | clean |
http://adlmalawi.com/r.php?profile_id=405912149478810&next=https%3A%2F%2Fwww.facebook.com%2Fpvprehacker.gov&friend_or_subscriber=friend | 404 Not Found Content-Length: 385 Content-Type: text/html | clean |
http://adlmalawi.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Fpvprehacker.gov | 404 Not Found Content-Length: 389 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/a.417399471663411.92052.405912149478810/567646549972035/?type=1 | 404 Not Found Content-Length: 459 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/a.417397121663646.92050.405912149478810/552294988173858/?type=1&source=11 | 404 Not Found Content-Length: 459 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./583430401726983/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./576148872455136/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./568070956596261/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./567666049970085/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./567646549972035/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./561569217246435/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
http://adlmalawi.com/pvprehacker.gov/photos/pb.405912149478810.-2207520000.1422218969./561567580579932/?type=1 | 404 Not Found Content-Length: 462 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=adlmalawi.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://adlmalawi.com/
Result: adlmalawi.com is not infected or malware details are not published yet.
Result: adlmalawi.com is not infected or malware details are not published yet.