Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: androidlive.org
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=604800
Connection: close
Date: Tue, 27 Jan 2015 16:04:32 GMT
Pragma: no-cache
Server: nginx/0.7.67
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html
Expires: Tue, 03 Feb 2015 16:04:32 GMT
Set-Cookie: PHPSESSID=ctlto65fao6l4e7b2bln529ki5; path=/; domain=.androidlive.org; HttpOnly
X-Powered-By: PHP/5.3.3-7+squeeze14
GET / HTTP/1.1
Host: androidlive.org
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=604800
Connection: close
Date: Tue, 27 Jan 2015 16:04:32 GMT
Pragma: no-cache
Server: nginx/0.7.67
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html
Expires: Tue, 03 Feb 2015 16:04:32 GMT
Set-Cookie: PHPSESSID=ctlto65fao6l4e7b2bln529ki5; path=/; domain=.androidlive.org; HttpOnly
X-Powered-By: PHP/5.3.3-7+squeeze14
Second query (visit from search engine):
GET / HTTP/1.1
Host: androidlive.org
Referer: http://www.google.com/search?q=androidlive.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: androidlive.org
Referer: http://www.google.com/search?q=androidlive.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://androidlive.org/ | 200 OK Content-Length: 39326 Content-Type: text/html | clean |
http://androidlive.org/arkady-i-ekshn-dlya-android/ | 200 OK Content-Length: 22880 Content-Type: text/html | clean |
http://androidlive.org/gonki-dlya-android/ | 200 OK Content-Length: 22799 Content-Type: text/html | clean |
http://androidlive.org/strategii-dlya-android/ | 200 OK Content-Length: 22540 Content-Type: text/html | clean |
http://androidlive.org/sportivnye-igry-dlya-android/ | 200 OK Content-Length: 22598 Content-Type: text/html | clean |
http://androidlive.org/kazualnye-igry-dlya-android/ | 200 OK Content-Length: 22762 Content-Type: text/html | clean |
http://androidlive.org/golovolomki-dlya-android/ | 200 OK Content-Length: 22973 Content-Type: text/html | clean |
http://androidlive.org/nastolnye-igry-dlya-android/ | 200 OK Content-Length: 11355 Content-Type: text/html | clean |
http://androidlive.org/igry-dlya-android-2-3-gingerbread/ | 200 OK Content-Length: 23444 Content-Type: text/html | clean |
http://androidlive.org/igry-dlya-android-4-0-ice-cream-sandwich-ics/ | 200 OK Content-Length: 23577 Content-Type: text/html | clean |
http://androidlive.org/igry-dlya-android-4-1-jelly-bean/ | 200 OK Content-Length: 23589 Content-Type: text/html | clean |
http://androidlive.org/igry-dlya-android-4-2-jelly-bean/ | 200 OK Content-Length: 23630 Content-Type: text/html | clean |
http://androidlive.org/igry-dlya-android-5-0-key-lime-pie/ | 200 OK Content-Length: 23369 Content-Type: text/html | clean |
http://androidlive.org/18-minecraft-pocket-edition.html | 200 OK Content-Length: 15217 Content-Type: text/html | clean |
http://androidlive.org/engine/classes/highslide/highslide.js | 200 OK Content-Length: 29550 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=androidlive.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://androidlive.org/
Result: androidlive.org is not infected or malware details are not published yet.
Result: androidlive.org is not infected or malware details are not published yet.