Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://macoalition.net/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: macoalition.net Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 18 Sep 2014 20:39:29 GMT Location: http://tinyurl.com/bp5bg4v Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: User-Agent,Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.17 | malicious |
Scanned pages/files
Request | Server response | Status |
http://macoalition.net/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://macoalition.net/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 20:39:29 GMT Location: https://supremecenter103.com/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 217 Content-Type: text/html; charset=iso-8859-1 | clean |
https://supremecenter103.com/404/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Sep 2014 20:39:30 GMT Location: http://us.cloudlogin.co/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 | clean |
http://us.cloudlogin.co/404/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Sep 2014 20:39:31 GMT Location: https://us.cloudlogin.co/404/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 319 Content-Type: text/html; charset=iso-8859-1 | clean |
https://us.cloudlogin.co/404/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 18 Sep 2014 20:39:31 GMT Pragma: no-cache Location: /login/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: WHCP=7g28imlrlmcfmsvg1isq3gbit6; path=/ X-Powered-By: PHP/5.4.4-14+deb7u14 | clean |
https://us.cloudlogin.co/login/ | 200 OK Content-Length: 5887 Content-Type: text/html | clean |
https://us.cloudlogin.co/js/jses.min.js?v=1404979296 | 200 OK Content-Length: 303104 Content-Type: application/javascript | clean |
http://macoalition.net/js/jquery_plugins/jquery-fonteffect-1.0.0.min.js | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 20:39:38 GMT Location: https://supremecenter103.com/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 217 Content-Type: text/html; charset=iso-8859-1 | clean |
http://supremecenter103.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Sep 2014 20:39:39 GMT Location: http://us.cloudlogin.co/test404page.js Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 246 Content-Type: text/html; charset=iso-8859-1 | clean |
http://us.cloudlogin.co/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Sep 2014 20:39:39 GMT Location: https://us.cloudlogin.co/test404page.js Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 329 Content-Type: text/html; charset=iso-8859-1 | clean |
https://us.cloudlogin.co/test404page.js | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 18 Sep 2014 20:39:41 GMT Pragma: no-cache Location: /login/ Server: Apache/2.2.22 (Debian) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: WHCP=8v0dgtumi3m1mm5r87npd0oif6; path=/ X-Powered-By: PHP/5.4.4-14+deb7u14 | clean |
http://macoalition.net/js/video-js/video.min.js | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 20:39:41 GMT Location: https://supremecenter103.com/404/ Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3 Vary: Accept-Encoding Content-Length: 217 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.corecounter.net/counter.php?user=59 | 200 OK Content-Length: 482 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=macoalition.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://macoalition.net/
Result: macoalition.net is not infected or malware details are not published yet.
Result: macoalition.net is not infected or malware details are not published yet.