Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://g.ing-veri.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: g.ing-veri.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 20 Sep 2014 10:44:28 GMT Location: http://google.com Server: nginx Content-Length: 154 Content-Type: text/html | suspicious |
Scanned pages/files
Request | Server response | Status |
http://g.ing-veri.com/ing-d/60/4 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 20 Sep 2014 10:44:28 GMT Location: http://google.com Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sat, 20 Sep 2014 10:44:30 GMT Location: http://www.google.lt/?gws_rd=cr&ei=jlodVMbWCIO7ygOj3oDYAg Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.002 P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=de0849e39d3d881f:FF=0:TM=1411209870:LM=1411209870:S=RBgEPgBMuu0EkU_c; expires=Mon, 19-Sep-2016 10:44:30 GMT; path=/; domain=.google.com Set-Cookie: NID=67=j2wpO-4d7wh9xoSul79pOhgkzMBKcnOCwUg1ZWfW7yP-PO6E1iXmxA7Ssro1iS47YOGkEHTm-mWkqcCVjK_YjiE9S1WYevJBOSKG8RqSqn2LSIpjR49EclnGlHPg_IxM; expires=Sun, 22-Mar-2015 10:44:30 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=jlodvmbwcio7ygoj3odyag | 200 OK Content-Length: 51376 Content-Type: text/html | clean |
https://www.google.lt/webhp?tab=ww | 200 OK Content-Length: 63663 Content-Type: text/html | clean |
https://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 57392 Content-Type: text/html | clean |
https://www.google.lt/webhp?hl=lt&tab=iw | 200 OK Content-Length: 63707 Content-Type: text/html | clean |
http://www.google.lt/intl/lt/options/ | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Sat, 20 Sep 2014 10:44:33 GMT Location: http://www.google.lt/intl/lt/about/products/ Server: sffe Content-Length: 241 Content-Type: text/html; charset=UTF-8 Expires: Mon, 20 Oct 2014 10:44:33 GMT Alternate-Protocol: 80:quic,p=0.002 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/intl/lt/about/products/ | 200 OK Content-Length: 7068 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/js/gweb/analytics/autotrack.js/ | 404 Not Found Content-Length: 1471 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://www.google.lt/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://www.google.lt/preferences?hl=lt | 200 OK Content-Length: 62838 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 51364 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=ii | 200 OK Content-Length: 51364 Content-Type: text/html | clean |
http://www.google.lt/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sat, 20 Sep 2014 10:44:35 GMT Location: https://history.google.com/history/optout?hl=lt Server: Search-History HTTP Server Content-Length: 244 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.002 Set-Cookie: PREF=ID=34185bd6d2547860:TM=1411209875:LM=1411209875:S=I51xy5ZX3heOLi86; expires=Mon, 19-Sep-2016 10:44:35 GMT; path=/; domain=.google.lt X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
https://history.google.com/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sat, 20 Sep 2014 10:44:35 GMT Location: http://www.google.com/ Server: Search-History HTTP Server Content-Length: 219 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 443:quic,p=0.002 Set-Cookie: PREF=ID=1dd3d494601bd4f6:TM=1411209875:LM=1411209875:S=orwwSMF6lvGQyyRY; expires=Mon, 19-Sep-2016 10:44:35 GMT; path=/; domain=.google.com X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sat, 20 Sep 2014 10:44:35 GMT Location: http://www.google.lt/?gws_rd=cr&ei=k1odVP2PMIrmywPWm4CgBg Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.002 P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=5df201952220da49:FF=0:TM=1411209875:LM=1411209875:S=inP8aBOd3duab7gS; expires=Mon, 19-Sep-2016 10:44:35 GMT; path=/; domain=.google.com Set-Cookie: NID=67=qA7vn5widrNUBmM83NIjtUWKEO8OClDUDTU-9Emx6jTA1a0efUqwgIonFCCtzhVzItxZ-pBtbrxyXdTi6Po-rNUjiVhUpu0KNFWZhy0ZdA6l0jjMrGsSo8zxiucAp74i; expires=Sun, 22-Mar-2015 10:44:35 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=k1odvp2pmirmywpwm4cgbg | 200 OK Content-Length: 51363 Content-Type: text/html | clean |
http://www.google.lt/chrome/index.html?hl=lt&brand=CHNG&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt | 200 OK Content-Length: 24906 Content-Type: text/html | clean |
http://www.google.lt/intl/lt/chrome/assets/common/js/chrome.min.js | 200 OK Content-Length: 186560 Content-Type: text/javascript | clean |
http://www.google.lt/intl/lt/chrome/assets/common/js/installer.min.js | 200 OK Content-Length: 65568 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=g.ing-veri.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://g.ing-veri.com/
Result: g.ing-veri.com is not infected or malware details are not published yet.
Result: g.ing-veri.com is not infected or malware details are not published yet.