Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: beogradturizamcacak.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 21 Aug 2014 05:57:23 GMT
Location: http://www.beogradturizamcacak.com/
Server: nginx
Content-Length: 0
Content-Type: text/html
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 456e5f18a12a4e77eef28a4e8d83e9a2=36f20378b0b1e2896dfc417e2ae2e933; path=/
...0 bytes of data.
GET / HTTP/1.1
Host: beogradturizamcacak.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 21 Aug 2014 05:57:23 GMT
Location: http://www.beogradturizamcacak.com/
Server: nginx
Content-Length: 0
Content-Type: text/html
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 456e5f18a12a4e77eef28a4e8d83e9a2=36f20378b0b1e2896dfc417e2ae2e933; path=/
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: beogradturizamcacak.com
Referer: http://www.google.com/search?q=beogradturizamcacak.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: beogradturizamcacak.com
Referer: http://www.google.com/search?q=beogradturizamcacak.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://beogradturizamcacak.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 21 Aug 2014 05:57:23 GMT Location: http://www.beogradturizamcacak.com/ Server: nginx Content-Length: 0 Content-Type: text/html P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: 456e5f18a12a4e77eef28a4e8d83e9a2=36f20378b0b1e2896dfc417e2ae2e933; path=/ | clean |
http://www.beogradturizamcacak.com/ | 200 OK Content-Length: 69478 Content-Type: text/html | clean |
http://www.beogradturizamcacak.com/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/templates/eutraverus5/warp/libraries/jquery/jquery.js | 200 OK Content-Length: 94490 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_ppc_simple_spotlight/js/ppc.safejquery.start.js | 200 OK Content-Length: 137 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_ppc_simple_spotlight/js/jquery-1.5.min.js | 200 OK Content-Length: 84587 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_ppc_simple_spotlight/js/ppc.safejquery.end.js | 200 OK Content-Length: 325 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_ppc_simple_spotlight/js/ppc.safejqueryplugin.start.js | 200 OK Content-Length: 222 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_ppc_simple_spotlight/js/jquery.cycle.all.2.74.js | 200 OK Content-Length: 44019 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_ppc_simple_spotlight/js/ppc.safejqueryplugin.end.js | 200 OK Content-Length: 228 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/templates/eutraverus5/warp/js/warp.js | 200 OK Content-Length: 6242 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/templates/eutraverus5/warp/js/accordionmenu.js | 200 OK Content-Length: 1425 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/templates/eutraverus5/warp/js/dropdownmenu.js | 200 OK Content-Length: 5320 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/templates/eutraverus5/js/template.js | 200 OK Content-Length: 1213 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/modules/mod_pagepeel_banner/pagepeel_banner/AC_OETags.js | 200 OK Content-Length: 7827 Content-Type: application/javascript | clean |
http://beogradturizamcacak.com/templates/eutraverus5/warp/js/search.js | 200 OK Content-Length: 3979 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=beogradturizamcacak.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://beogradturizamcacak.com/
Result: beogradturizamcacak.com is not infected or malware details are not published yet.
Result: beogradturizamcacak.com is not infected or malware details are not published yet.