Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: deltaflow.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, max-age=0, must-revalidate
Connection: close
Date: Wed, 04 Mar 2015 02:09:09 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset="utf-8"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=r5u7i23ebb2dvkcp3o6l9oj715; path=/; domain=.deltaflow.com; HttpOnly
Set-Cookie: bypassStaticCache=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=http://deltaflow.com/; httponly
Set-Cookie: bypassStaticCache=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=http://deltaflow.com/; httponly
GET / HTTP/1.1
Host: deltaflow.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, max-age=0, must-revalidate
Connection: close
Date: Wed, 04 Mar 2015 02:09:09 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset="utf-8"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=r5u7i23ebb2dvkcp3o6l9oj715; path=/; domain=.deltaflow.com; HttpOnly
Set-Cookie: bypassStaticCache=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=http://deltaflow.com/; httponly
Set-Cookie: bypassStaticCache=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=http://deltaflow.com/; httponly
Second query (visit from search engine):
GET / HTTP/1.1
Host: deltaflow.com
Referer: http://www.google.com/search?q=deltaflow.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: deltaflow.com
Referer: http://www.google.com/search?q=deltaflow.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://deltaflow.com/ | 200 OK Content-Length: 112807 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://deltaflow.com/assets/_combinedfiles/scripts.js?m=1382926341 | 200 OK Content-Length: 20421 Content-Type: text/javascript | clean |
http://deltaflow.com/about/ | 200 OK Content-Length: 7900 Content-Type: text/html | clean |
http://deltaflow.com/about/contact-me/ | 200 OK Content-Length: 5084 Content-Type: text/html | clean |
http://deltaflow.com/articles/ | 200 OK Content-Length: 4613 Content-Type: text/html | clean |
http://deltaflow.com/articles/audio/ | 200 OK Content-Length: 9196 Content-Type: text/html | clean |
http://deltaflow.com/academic/ | 200 OK Content-Length: 6454 Content-Type: text/html | clean |
http://deltaflow.com/academic/ontology/ | 200 OK Content-Length: 7314 Content-Type: text/html | clean |
http://deltaflow.com/academic/publications/ | 200 OK Content-Length: 8930 Content-Type: text/html | clean |
http://deltaflow.com/academic/transcript/ | 200 OK Content-Length: 16194 Content-Type: text/html | clean |
http://deltaflow.com/pictures/main.php | 200 OK Content-Length: 15104 Content-Type: text/html | clean |
http://deltaflow.com/pictures/scripts.js | 404 Not Found Content-Length: 4196 Content-Type: text/html | clean |
http://deltaflow.com/test404page.js | 404 Not Found Content-Length: 4196 Content-Type: text/html | clean |
http://deltaflow.com/script.js | 404 Not Found Content-Length: 4196 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=deltaflow.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://deltaflow.com/
Result: deltaflow.com is not infected or malware details are not published yet.
Result: deltaflow.com is not infected or malware details are not published yet.