Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: leonberger.ch
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Aug 2014 19:13:19 GMT
Accept-Ranges: bytes
ETag: "2dfe3be-e2c-4d8102785d040"
Server: Apache/2.2.27 (FreeBSD) DAV/2 mod_ssl/2.2.27 OpenSSL/1.0.1i mod_hcgi/0.9.4
Content-Length: 3628
Content-Type: text/html
Last-Modified: Sat, 16 Mar 2013 19:56:41 GMT
...3628 bytes of data.
GET / HTTP/1.1
Host: leonberger.ch
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Aug 2014 19:13:19 GMT
Accept-Ranges: bytes
ETag: "2dfe3be-e2c-4d8102785d040"
Server: Apache/2.2.27 (FreeBSD) DAV/2 mod_ssl/2.2.27 OpenSSL/1.0.1i mod_hcgi/0.9.4
Content-Length: 3628
Content-Type: text/html
Last-Modified: Sat, 16 Mar 2013 19:56:41 GMT
...3628 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: leonberger.ch
Referer: http://www.google.com/search?q=leonberger.ch
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: leonberger.ch
Referer: http://www.google.com/search?q=leonberger.ch
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://leonberger.ch/ | 200 OK Content-Length: 3628 Content-Type: text/html | clean |
http://leonberger.ch/js/jquery.min.js | 200 OK Content-Length: 57255 Content-Type: application/javascript | clean |
http://leonberger.ch/js/scripts/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/javascript | clean |
http://leonberger.ch/js/jquery.nivo.slider.js | 200 OK Content-Length: 29122 Content-Type: application/javascript | clean |
http://leonberger.ch/test404page.js | 404 Not Found Content-Length: 1088 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=leonberger.ch
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://leonberger.ch/
Result: leonberger.ch is not infected or malware details are not published yet.
Result: leonberger.ch is not infected or malware details are not published yet.