Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://havaughan.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: havaughan.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 15:05:27 GMT Location: http://goo.gl/qSaO2y Server: nginx/1.6.1 Content-Length: 291 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://goo.gl/qSaO2y (imitation of visitor from search engine) GET /qSaO2y HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Fri, 29 Aug 2014 15:05:27 GMT Pragma: no-cache Location: http://glbonus.in/?partner=Pashkela Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
URL: http://glbonus.in/?partner=Pashkela (imitation of visitor from search engine) GET /?partner=Pashkela HTTP/1.1 Host: glbonus.in Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Fri, 29 Aug 2014 15:06:07 GMT Location: http://goldline.pro/?partner=Pashkela Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 221 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://havaughan.com/ | 200 OK Content-Length: 4971 Content-Type: text/html | clean |
http://havaughan.com/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://havaughan.com/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 78620 Content-Type: application/javascript | clean |
http://havaughan.com/wp-content/themes/alkivia-chameleon/js/dropdown.js?ver=2.3 | 200 OK Content-Length: 898 Content-Type: application/javascript | clean |
http://havaughan.com/?page_id=4 | 200 OK Content-Length: 5237 Content-Type: text/html | clean |
http://havaughan.com/wp-login.php | 406 Not Acceptable Content-Length: 226 Content-Type: text/html | clean |
http://havaughan.com/test404page.js | 404 Not Found Content-Length: 12839 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://suspended.hostgator.com/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=havaughan.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://havaughan.com/
Result: havaughan.com is not infected or malware details are not published yet.
Result: havaughan.com is not infected or malware details are not published yet.