Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: damanino.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 24 Nov 2014 01:20:01 GMT
Pragma: no-cache
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=b66a5e65cd58399f513ec161e148d653; path=/
Set-Cookie: GoCart=6yUfLSwgVXsUiXDnOHFjVMwjOeNZJ1jbjn8KrKU%2Fsu3foE0EpMI3yvdyiMI7mM8ze8ATmW%2FDexnBctlVXEmAhfXzyLxOGmWB7xGzYOfWu%2Bm%2FpAITtYLYz5b5e9Ye8Q80dNMk7CoU6dkNUG0vJfRdpY5AbQ8ePEBZhulyGH1eXggI5CB%2FokY0pCyac3K5zcY8M%2FDMLpRJmchgkh5paAofiZO0a2PLkIZxFdt7H76WIGMv63aDUkSFEtMn7Z05Yf%2F0%2FhXVIbHWu3AtxTHHjZyIYUe9PRjA2d8bgtZmz%2BLrWq%2F6Cz0Y%2F9GLAt66cIa8qG9NvrACfCr%2Fga0qLFpnpbCTCT%2Fa9wF3mZ7D6b7vaAthNsyNnA6Hkvjcx0oi74OQAwGT; expires=Wed, 23-Nov-2016 01:20:01 GMT; path=/
Set-Cookie: admin_session_config=n%2BRNChGeu%2B7J4ws4wm9jE0HVMIq%2B9qfjFhp2dT%2BTwcMLGZyuEyPiHF9LpNT0OB13rmWi558ecLRPJICSAjvKIw%2Bg9mS7JMKq8jEsKKMgTLN9jrbeRdSSYTuTq8KTT0lqwn3Msk%2BQ5KBJncOhxsbk9EDkkt9joVL857CoS%2BTp3M0nK5pC%2FcmXJL1PG8Uc8uiWuNZC9Hfe1AHrb2SZB7OjX8shl1KhXDulBpTDrl7s8aQk%2B5ehlH%2BLO%2BZ8fTO6lwNayd31UWNpbNXxwZ%2BO8QCdEEyKqDOqDTbNDQxxKDK7Qu%2BtjXItowNkWRbTvUkwzRMZRm5VFWEz4F6GrnMvUeXzQ8wBq6xQJ0EWrqlrO9tfVQOH4NMq2sEAqfGZBGwTEzPs; expires=Wed, 23-Nov-2016 01:20:02 GMT; path=/
Set-Cookie: GoCart=09Ll1iTL7GX%2FP7yDUxUS1G5JrBUjHah3Y%2BRRLKzjjitos%2BzKDKepJ9YH%2FB7uh7zkXGV0PmgajYUYUPEl5JJ4BqiGMvmJwcQkI3OAj6UiL%2F5dqD1lXMVshMXB2HYoTRviBVRkDVYBrknXCxsNW2bv%2BYYPe0j2reL%2FGG%2B8EcTsnEkuD9ftvvW5Xlwzz5SXg%2B7alIZL6BalAp%2BngVJBWmWe9xU7zXGDvm7URzjI7uKYikkXXPltLgvJJn5o8crTP9Sry8Ue1PEovrlUIa%2BGc9IKUBejhykxt27M0n404sJvdq%2FppcN74QcuRG4qLGskkTM%2FVj6cTnVPfbNkfBdFUTLTYw%3D%3D; expires=Wed, 23-Nov-2016 01:20:02 GMT; path=/
X-Powered-By: PHP/5.4.34
GET / HTTP/1.1
Host: damanino.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 24 Nov 2014 01:20:01 GMT
Pragma: no-cache
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=b66a5e65cd58399f513ec161e148d653; path=/
Set-Cookie: GoCart=6yUfLSwgVXsUiXDnOHFjVMwjOeNZJ1jbjn8KrKU%2Fsu3foE0EpMI3yvdyiMI7mM8ze8ATmW%2FDexnBctlVXEmAhfXzyLxOGmWB7xGzYOfWu%2Bm%2FpAITtYLYz5b5e9Ye8Q80dNMk7CoU6dkNUG0vJfRdpY5AbQ8ePEBZhulyGH1eXggI5CB%2FokY0pCyac3K5zcY8M%2FDMLpRJmchgkh5paAofiZO0a2PLkIZxFdt7H76WIGMv63aDUkSFEtMn7Z05Yf%2F0%2FhXVIbHWu3AtxTHHjZyIYUe9PRjA2d8bgtZmz%2BLrWq%2F6Cz0Y%2F9GLAt66cIa8qG9NvrACfCr%2Fga0qLFpnpbCTCT%2Fa9wF3mZ7D6b7vaAthNsyNnA6Hkvjcx0oi74OQAwGT; expires=Wed, 23-Nov-2016 01:20:01 GMT; path=/
Set-Cookie: admin_session_config=n%2BRNChGeu%2B7J4ws4wm9jE0HVMIq%2B9qfjFhp2dT%2BTwcMLGZyuEyPiHF9LpNT0OB13rmWi558ecLRPJICSAjvKIw%2Bg9mS7JMKq8jEsKKMgTLN9jrbeRdSSYTuTq8KTT0lqwn3Msk%2BQ5KBJncOhxsbk9EDkkt9joVL857CoS%2BTp3M0nK5pC%2FcmXJL1PG8Uc8uiWuNZC9Hfe1AHrb2SZB7OjX8shl1KhXDulBpTDrl7s8aQk%2B5ehlH%2BLO%2BZ8fTO6lwNayd31UWNpbNXxwZ%2BO8QCdEEyKqDOqDTbNDQxxKDK7Qu%2BtjXItowNkWRbTvUkwzRMZRm5VFWEz4F6GrnMvUeXzQ8wBq6xQJ0EWrqlrO9tfVQOH4NMq2sEAqfGZBGwTEzPs; expires=Wed, 23-Nov-2016 01:20:02 GMT; path=/
Set-Cookie: GoCart=09Ll1iTL7GX%2FP7yDUxUS1G5JrBUjHah3Y%2BRRLKzjjitos%2BzKDKepJ9YH%2FB7uh7zkXGV0PmgajYUYUPEl5JJ4BqiGMvmJwcQkI3OAj6UiL%2F5dqD1lXMVshMXB2HYoTRviBVRkDVYBrknXCxsNW2bv%2BYYPe0j2reL%2FGG%2B8EcTsnEkuD9ftvvW5Xlwzz5SXg%2B7alIZL6BalAp%2BngVJBWmWe9xU7zXGDvm7URzjI7uKYikkXXPltLgvJJn5o8crTP9Sry8Ue1PEovrlUIa%2BGc9IKUBejhykxt27M0n404sJvdq%2FppcN74QcuRG4qLGskkTM%2FVj6cTnVPfbNkfBdFUTLTYw%3D%3D; expires=Wed, 23-Nov-2016 01:20:02 GMT; path=/
X-Powered-By: PHP/5.4.34
Second query (visit from search engine):
GET / HTTP/1.1
Host: damanino.com
Referer: http://www.google.com/search?q=damanino.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: damanino.com
Referer: http://www.google.com/search?q=damanino.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://damanino.com/ | 200 OK Content-Length: 26168 Content-Type: text/html | clean |
http://damanino.com/gocart/themes/default/assets/js/jquery.js | 200 OK Content-Length: 92791 Content-Type: application/javascript | clean |
http://damanino.com/gocart/themes/default/assets/js/bootstrap.min.js | 200 OK Content-Length: 22337 Content-Type: application/javascript | clean |
http://damanino.com/gocart/themes/default/assets/js/squard.js | 200 OK Content-Length: 1232 Content-Type: application/javascript | clean |
http://damanino.com/gocart/themes/default/assets/js/equal_heights.js | 200 OK Content-Length: 202 Content-Type: application/javascript | clean |
http://damanino.com/gocart/themes/default/assets/js/jquery-ui-1.10.4.custom.js | 200 OK Content-Length: 37684 Content-Type: application/javascript | clean |
http://damanino.com/gocart/themes/default/assets/js/jquery-1.10.2.js | 200 OK Content-Length: 273199 Content-Type: application/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js | 200 OK Content-Length: 95786 Content-Type: text/javascript | clean |
http://maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js | 200 OK Content-Length: 31819 Content-Type: text/javascript | clean |
http://damanino.com/fancyBox-master/lib/jquery.mousewheel.pack.js?v=3.1.3 | 200 OK Content-Length: 1845 Content-Type: application/javascript | clean |
http://damanino.com/fancyBox-master/source/jquery.fancybox.pack.js?v=2.1.5 | 200 OK Content-Length: 30313 Content-Type: application/javascript | clean |
http://damanino.com/fancyBox-master/source/helpers/jquery.fancybox-buttons.js?v=1.0.5 | 200 OK Content-Length: 3042 Content-Type: application/javascript | clean |
http://damanino.com/gocart/themes/default/assets/js/cookie.js | 200 OK Content-Length: 3128 Content-Type: application/javascript | clean |
http://maps.googleapis.com/maps/api/js?key=AIzaSyDY0kkJiTPVd2U7aTOAwhc9ySH6oHxOIYM&sensor=false | 200 OK Content-Length: 5082 Content-Type: text/javascript | clean |
http://damanino.com/secure/login | 200 OK Content-Length: 16920 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=damanino.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://damanino.com/
Result: damanino.com is not infected or malware details are not published yet.
Result: damanino.com is not infected or malware details are not published yet.