Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mobilandoo.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=259200
Connection: close
Date: Thu, 05 Mar 2015 01:36:30 GMT
Pragma: no-cache
Server: nginx/1.0.14
Content-Length: 2809
Content-Type: text/html; charset=utf-8
Expires: Sun, 08 Mar 2015 01:36:30 GMT
Set-Cookie: PHPSESSID=8r52q0fmd5gqrbpdk47l08acg7; path=/
Set-Cookie: vk_vote=
Set-Cookie: vk_count=10
Set-Cookie: ok_vote=
Set-Cookie: ok_count=40357
Set-Cookie: fb_vote=
Set-Cookie: fb_count=77
Set-Cookie: s1122=1%3A1%3A%3A%3A; expires=Fri, 06-Mar-2015 01:36:30 GMT; path=/
Set-Cookie: ip=78.158.11.226; expires=Fri, 06-Mar-2015 01:36:30 GMT; path=/
X-Powered-By: PHP/5.3.10
...2809 bytes of data.
GET / HTTP/1.1
Host: mobilandoo.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=259200
Connection: close
Date: Thu, 05 Mar 2015 01:36:30 GMT
Pragma: no-cache
Server: nginx/1.0.14
Content-Length: 2809
Content-Type: text/html; charset=utf-8
Expires: Sun, 08 Mar 2015 01:36:30 GMT
Set-Cookie: PHPSESSID=8r52q0fmd5gqrbpdk47l08acg7; path=/
Set-Cookie: vk_vote=
Set-Cookie: vk_count=10
Set-Cookie: ok_vote=
Set-Cookie: ok_count=40357
Set-Cookie: fb_vote=
Set-Cookie: fb_count=77
Set-Cookie: s1122=1%3A1%3A%3A%3A; expires=Fri, 06-Mar-2015 01:36:30 GMT; path=/
Set-Cookie: ip=78.158.11.226; expires=Fri, 06-Mar-2015 01:36:30 GMT; path=/
X-Powered-By: PHP/5.3.10
...2809 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mobilandoo.com
Referer: http://www.google.com/search?q=mobilandoo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mobilandoo.com
Referer: http://www.google.com/search?q=mobilandoo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://mobilandoo.com/ | 200 OK Content-Length: 2809 Content-Type: text/html | clean |
http://mobilandoo.com/?page=join&action=activate | 200 OK Content-Length: 3599 Content-Type: text/html | clean |
http://mobilandoo.com/?page=main | 200 OK Content-Length: 7452 Content-Type: text/html | clean |
http://mobilandoo.com/?page=genre&id=1 | 200 OK Content-Length: 6023 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=1 | 200 OK Content-Length: 4248 Content-Type: text/html | clean |
http://mobilandoo.com/?page=join | 200 OK Content-Length: 2727 Content-Type: text/html | clean |
http://mobilandoo.com/?page=join&action=control | 200 OK Content-Length: 2986 Content-Type: text/html | clean |
http://mobilandoo.com/?page=join&action=rule | 200 OK Content-Length: 27382 Content-Type: text/html | clean |
http://mobilandoo.com/test404page.js | 404 Not Found Content-Length: 571 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=3 | 200 OK Content-Length: 4641 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=8 | 200 OK Content-Length: 4405 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=13 | 200 OK Content-Length: 3928 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=20 | 200 OK Content-Length: 4647 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=24 | 200 OK Content-Length: 3836 Content-Type: text/html | clean |
http://mobilandoo.com/?page=film&id=28 | 200 OK Content-Length: 4662 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mobilandoo.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mobilandoo.com/
Result: mobilandoo.com is not infected or malware details are not published yet.
Result: mobilandoo.com is not infected or malware details are not published yet.