Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=edelblog.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://edelblog.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: elo.net.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 10:25:23 GMT
Server: Apache
Vary: Accept-Encoding
Content-Language: pt-BR
Content-Length: 70
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3-7+squeeze3
...70 bytes of data.
GET / HTTP/1.1
Host: elo.net.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 03 Mar 2015 10:25:23 GMT
Server: Apache
Vary: Accept-Encoding
Content-Language: pt-BR
Content-Length: 70
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3-7+squeeze3
...70 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: elo.net.br
Referer: http://www.google.com/search?q=elo.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: elo.net.br
Referer: http://www.google.com/search?q=elo.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://edelblog.com/ | HTTP/1.1 302 Found Connection: close Date: Tue, 26 Aug 2014 18:19:27 GMT Location: http://www.edelbrock.com Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 286 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://www.edelbrock.com/ | 200 OK Content-Length: 17730 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.edelblog.com ...[2181 bytes skipped]... ;<a href="http://www.russellperformance.com/" target="_self">Russell Performance</a></li> <li><a href="http://www.chmark.png" width="175" height="27" border="0"></a></li> </ul> </li> </ul> <li style="width: 238px; float: left; background: #3b3a37; margin: -10px 0px 0px 10px; list-style-type: none;"><a href="http://www.edelblog.com/" target="_"><img src="/automotive/images/bottom/edelblog.png" width="66" height="66" border="0" style="margin: 10px;"><a href="https://www.facebook.com/edelbrockperformance" target="_"><img src="/automotive/images/bottom/facebook.png" width="66" height="66" border="0" style="margin: 10px 0px;"><a href="https://twitter.com/EdelbrockUSA" target="_"><img src="/automotive/images/bottom/twitter.png" width="66" height="66" border="0" style="margin: 10px ...[1517 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js | 200 OK Content-Length: 96381 Content-Type: text/javascript | clean |
http://edelblog.com/bootstrap/js/bootstrap.min.js | HTTP/1.1 302 Found Connection: close Date: Tue, 26 Aug 2014 18:19:30 GMT Location: http://www.edelbrock.combootstrap/js/bootstrap.min.js Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 315 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.edelbrock.combootstrap/js/bootstrap.min.js | 500 Can't connect to www.edelbrock.combootstrap:80 (Bad hostname) Content-Length: 184 Content-Type: text/plain | clean |
http://www.edelbrock.combootstrap/test404page.js | 500 Can't connect to www.edelbrock.combootstrap:80 (Bad hostname) Content-Length: 184 Content-Type: text/plain | clean |
http://edelblog.com/bootstrap/js/docs.min.js | HTTP/1.1 302 Found Connection: close Date: Tue, 26 Aug 2014 18:19:31 GMT Location: http://www.edelbrock.combootstrap/js/docs.min.js Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 310 Content-Type: text/html; charset=iso-8859-1 X-Pad: avoid browser bug | clean |
http://www.edelbrock.combootstrap/js/docs.min.js | 500 Can't connect to www.edelbrock.combootstrap:80 (Bad hostname) Content-Length: 184 Content-Type: text/plain | clean |