Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: algme3.blogspot.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Tue, 18 Aug 2015 09:25:38 GMT
Accept-Ranges: none
Server: GSE
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Tue, 18 Aug 2015 09:25:38 GMT
Last-Modified: Sun, 16 Aug 2015 19:09:52 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
GET / HTTP/1.1
Host: algme3.blogspot.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Tue, 18 Aug 2015 09:25:38 GMT
Accept-Ranges: none
Server: GSE
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Tue, 18 Aug 2015 09:25:38 GMT
Last-Modified: Sun, 16 Aug 2015 19:09:52 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Second query (visit from search engine):
GET / HTTP/1.1
Host: algme3.blogspot.com
Referer: http://www.google.com/search?q=algme3.blogspot.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: algme3.blogspot.com
Referer: http://www.google.com/search?q=algme3.blogspot.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://algme3.blogspot.com/ | 200 OK Content-Length: 200490 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js | 200 OK Content-Length: 95786 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 13047 Content-Type: application/javascript | clean |
http://algme3.blogspot.com//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ | 404 Not Found Content-Length: 101941 Content-Type: text/html | clean |
http://geoloc14.whoaremyfriends.net/private/geoweather.js?compte=274854623340 | 200 OK Content-Length: 11844 Content-Type: text/html | clean |
http://geoloc14.whoaremyfriends.net/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
https://cdn.firebase.com/v0/firebase.js | 200 OK Content-Length: 75290 Content-Type: application/javascript | clean |
http://algme3.blogspot.com/js/cookiechoices.js | 200 OK Content-Length: 6340 Content-Type: application/x-javascript | clean |
https://www.blogger.com/static/v1/widgets/329677814-widgets.js | 200 OK Content-Length: 93149 Content-Type: text/javascript | clean |
http://algme3.blogspot.com//www.google.com/jsapi/ | 404 Not Found Content-Length: 101721 Content-Type: text/html | clean |
http://algme3.blogspot.com//www.blogger.com/rearrange?blogID=34727052785755668&widgetType=PageList&widgetId=PageList1&action=editWidget§ionId=crosscol/ | 404 Not Found Content-Length: 102210 Content-Type: text/html | clean |
http://algme3.blogspot.com//www.blogger.com/rearrange?blogID=34727052785755668&widgetType=CustomSearch&widgetId=CustomSearch1&action=editWidget§ionId=crosscol-overflow/ | 404 Not Found Content-Length: 102279 Content-Type: text/html | clean |
http://algme3.blogspot.com/feeds/posts/default | 200 OK Content-Length: 235076 Content-Type: application/atom+xml | clean |
http://algme3.blogspot.com//www.blogger.com/rearrange?blogID=34727052785755668&widgetType=Translate&widgetId=Translate1&action=editWidget§ionId=main/ | 404 Not Found Content-Length: 102202 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=algme3.blogspot.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://algme3.blogspot.com/
Result: algme3.blogspot.com is not infected or malware details are not published yet.
Result: algme3.blogspot.com is not infected or malware details are not published yet.