Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mail.dmgag.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mail.dmgag.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Mar 2015 10:24:10 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: mail.dmgag.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Mar 2015 10:24:10 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: mail.dmgag.com
Referer: http://www.google.com/search?q=mail.dmgag.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mail.dmgag.com
Referer: http://www.google.com/search?q=mail.dmgag.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://mail.dmgag.com/ | HTTP/1.1 200 OK Connection: close Date: Sun, 01 Mar 2015 10:24:10 GMT Accept-Ranges: bytes Server: Apache Vary: Accept-Encoding Content-Type: text/html | clean |
http://mail.dmgag.com:2095/ | HTTP/1.1 401 Access Denied Connection: close Date: Sun, 01 Mar 2015 10:24:11 GMT Server: cpsrvd/11.44.2.4 Content-Length: 1283 Content-Type: text/html; charset="utf-8" Set-Cookie: webmailrelogin=no; HttpOnly; path=/; port=2095 Set-Cookie: webmailsession=%3arH5yeXN2XjvG9sJVqv2RlxJpOs1b3nO8ztHWR3Bs22eTVIaJeZXE0mrlHVNdqYWp%2c5bdd6514e99a8e363621ed1e22ae6740bd0ada4e08caef345a70a65aa26c2d11; HttpOnly; path=/; port=2095 | clean |
http://login.bluehost.com/cgi/webmail | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:12 GMT Location: https://login.bluehost.com/cgi/webmail?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 X-O: 934a73f67f714d46e04fdce66fa1e22e | clean |
https://login.bluehost.com/cgi/webmail?verify_https=1 | 200 OK Content-Length: 15079 Content-Type: text/html | clean |
https://login.bluehost.com//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:16 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:16 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:17 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:17 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:18 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:19 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:20 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:20 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:21 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:21 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required/cookies_required/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:22 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required/cookies_required/cookies_required/cookies_required//ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:22 GMT Strict-Transport-Security: max-age=604800 | clean |
http://login.bluehost.com/test404page.js | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:23 GMT Location: https://login.bluehost.com/test404page.js?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 | clean |
https://login.bluehost.com/test404page.js?verify_https=1 | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:24 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/test404page.js?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:24 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/test404page.js?verify_https=1 | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:25 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/test404page.js?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:25 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required/test404page.js?verify_https=1 | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:26 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required/test404page.js?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:26 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required/cookies_required/test404page.js?verify_https=1 | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:27 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required/cookies_required/test404page.js?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:27 GMT Strict-Transport-Security: max-age=604800 | clean |
https://login.bluehost.com/cookies_required/cookies_required/cookies_required/cookies_required/test404page.js?verify_https=1 | HTTP/1.1 302 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:28 GMT Location: https://login.bluehost.com/COOKIES_REQUIRED/cookies_required/cookies_required/cookies_required/cookies_required/test404page.js?verify_https=1 Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Set-Cookie: test=1; domain=.bluehost.com; path=/; expires=Fri, 28-Aug-2015 10:24:28 GMT Strict-Transport-Security: max-age=604800 | clean |
http://mail.dmgag.com//bluehost-cdn.com/media/shared/general/cookies.js/ | HTTP/1.1 301 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:29 GMT Location: http://mail.dmgag.com:2095//bluehost-cdn.com/media/shared/general/cookies.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html | clean |
http://mail.dmgag.com:2095//bluehost-cdn.com/media/shared/general/cookies.js/ | HTTP/1.1 401 Access Denied Connection: close Date: Sun, 01 Mar 2015 10:24:30 GMT Server: cpsrvd/11.44.2.4 Content-Length: 1283 Content-Type: text/html; charset="utf-8" Set-Cookie: webmailrelogin=no; HttpOnly; path=/; port=2095 Set-Cookie: webmailsession=%3amf0bhiZjWnQ6u7pIg5M0pCcTzKirHt8szeLkt4A7LPheNwNPjwuWCIrkHUCuy7y1%2c3caf45304c12c7f8f84cdbb78e12afc858d8dc76d1917f1c54452926396c557f; HttpOnly; path=/; port=2095 | clean |
http://mail.dmgag.com//bluehost-cdn.com/media/shared/general/common.js/ | HTTP/1.1 301 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:31 GMT Location: http://mail.dmgag.com:2095//bluehost-cdn.com/media/shared/general/common.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html X-Pad: avoid browser bug | clean |
http://mail.dmgag.com:2095//bluehost-cdn.com/media/shared/general/common.js/ | HTTP/1.1 401 Access Denied Connection: close Date: Sun, 01 Mar 2015 10:24:31 GMT Server: cpsrvd/11.44.2.4 Content-Length: 1283 Content-Type: text/html; charset="utf-8" Set-Cookie: webmailrelogin=no; HttpOnly; path=/; port=2095 Set-Cookie: webmailsession=%3apjzStkpAAqlBR2qYUWrCQ1p1BoQfTnxGkZHgBdiq3m0mLigzGKZwXlOXtumghB74%2cd8ee22a43feff92df76711d914cc6c209e5e7da06a0febf5b8a983546cd477c2; HttpOnly; path=/; port=2095 | clean |
https://www.googleadservices.com/pagead/conversion.js | 200 OK Content-Length: 10722 Content-Type: text/javascript | clean |
http://mail.dmgag.com//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Bounce Connection: close Date: Sun, 01 Mar 2015 10:24:32 GMT Location: http://mail.dmgag.com:2095//www.googleadservices.com/pagead/conversion.js/ Server: Apache Vary: Accept-Encoding Content-Type: text/html X-Pad: avoid browser bug | clean |
http://mail.dmgag.com:2095//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 401 Access Denied Connection: close Date: Sun, 01 Mar 2015 10:24:33 GMT Server: cpsrvd/11.44.2.4 Content-Length: 1283 Content-Type: text/html; charset="utf-8" Set-Cookie: webmailrelogin=no; HttpOnly; path=/; port=2095 Set-Cookie: webmailsession=%3aSONTbdDBeHNiLWpTTU0wlr8zcSkaBDSjoghIE527aoXcjh25Wd808N7aOy1xxFSX%2ccb276805de2de03af5d831020fabc974fe244d0599c9338cebe3bd8a034da319; HttpOnly; path=/; port=2095 | clean |