Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bob3160.blogspot.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Sun, 13 Jul 2014 13:40:09 GMT
ETag: "a122c50f-c56f-40a0-9dd8-866385be8f7a"
Server: GSE
Content-Type: text/html; charset=UTF-8
Expires: Sun, 13 Jul 2014 13:40:09 GMT
Last-Modified: Sat, 12 Jul 2014 14:01:56 GMT
Alternate-Protocol: 80:quic
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
GET / HTTP/1.1
Host: bob3160.blogspot.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Sun, 13 Jul 2014 13:40:09 GMT
ETag: "a122c50f-c56f-40a0-9dd8-866385be8f7a"
Server: GSE
Content-Type: text/html; charset=UTF-8
Expires: Sun, 13 Jul 2014 13:40:09 GMT
Last-Modified: Sat, 12 Jul 2014 14:01:56 GMT
Alternate-Protocol: 80:quic
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Second query (visit from search engine):
GET / HTTP/1.1
Host: bob3160.blogspot.com
Referer: http://www.google.com/search?q=bob3160.blogspot.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bob3160.blogspot.com
Referer: http://www.google.com/search?q=bob3160.blogspot.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://bob3160.blogspot.com/ | 200 OK Content-Length: 19974 Content-Type: text/html | clean |
http://bob3160.blogspot.com//www.blogblog.com/dynamicviews/76f25a6f2e06af76/js/thirdparty/jquery.js/ | 404 Not Found Content-Length: 19883 Content-Type: text/html | clean |
http://bob3160.blogspot.com//www.blogblog.com/dynamicviews/76f25a6f2e06af76/js/thirdparty/jquery-mousewheel.js/ | 404 Not Found Content-Length: 19927 Content-Type: text/html | clean |
http://bob3160.blogspot.com//www.blogblog.com/dynamicviews/76f25a6f2e06af76/js/common.js/ | 404 Not Found Content-Length: 19839 Content-Type: text/html | clean |
http://bob3160.blogspot.com//www.blogblog.com/dynamicviews/76f25a6f2e06af76/js/sidebar.js/ | 404 Not Found Content-Length: 19843 Content-Type: text/html | clean |
http://bob3160.blogspot.com//www.blogblog.com/dynamicviews/76f25a6f2e06af76/js/gadgets.js/ | 404 Not Found Content-Length: 19843 Content-Type: text/html | clean |
http://bob3160.blogspot.com//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js/ | 404 Not Found Content-Length: 19847 Content-Type: text/html | clean |
https://www.blogger.com/static/v1/widgets/2423294629-widgets.js | 200 OK Content-Length: 89624 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12011 Content-Type: application/javascript | clean |
http://bob3160.blogspot.com/test404page.js | 404 Not Found Content-Length: 19655 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bob3160.blogspot.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bob3160.blogspot.com/
Result: bob3160.blogspot.com is not infected or malware details are not published yet.
Result: bob3160.blogspot.com is not infected or malware details are not published yet.