Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sfurn-onlinemoebel.ch
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: andythetoymaker.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 08:25:59 GMT
Accept-Ranges: bytes
ETag: "e402f5-5af-4cd46f72a6c40"
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 1455
Content-Type: text/html
Last-Modified: Tue, 30 Oct 2012 13:43:05 GMT
...1455 bytes of data.
GET / HTTP/1.1
Host: andythetoymaker.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 08:25:59 GMT
Accept-Ranges: bytes
ETag: "e402f5-5af-4cd46f72a6c40"
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 1455
Content-Type: text/html
Last-Modified: Tue, 30 Oct 2012 13:43:05 GMT
...1455 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: andythetoymaker.com
Referer: http://www.google.com/search?q=andythetoymaker.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: andythetoymaker.com
Referer: http://www.google.com/search?q=andythetoymaker.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://sfurn-onlinemoebel.ch/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Dec 2014 04:43:28 GMT Location: http://sfurn.com/ Server: Apache Content-Length: 296 Content-Type: text/html; charset=iso-8859-1 | clean |
http://sfurn.com/ | HTTP/1.1 200 OK Cache-Control: private, must-revalidate Connection: close Date: Mon, 29 Dec 2014 04:43:28 GMT Server: Apache Content-Type: text/html; charset=UTF-8 P3P: CP="NOI NID ADMa OUR IND UNI COM NAV" Set-Cookie: SN542535c99ad9d=3bebe678a23be9e1c2bd6baf3e02cfd4; path=/ Set-Cookie: SN542535c99ad9d=3bebe678a23be9e1c2bd6baf3e02cfd4; path=/ Set-Cookie: selectcountry=ch; expires=Wed, 28-Jan-2015 04:43:30 GMT; path=/ X-Powered-By: PHP/5.3.27 X-Powered-By: PleskLin | clean |
http://www.sfurn.com/ie6.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Dec 2014 04:43:30 GMT Location: http://sfurn.com/ie6.html Server: Apache Content-Length: 296 Content-Type: text/html; charset=iso-8859-1 | clean |
http://sfurn.com/ie6.html | 200 OK Content-Length: 988 Content-Type: text/html | clean |
http://sfurn.com/test404page.js | HTTP/1.1 404 Not Found Cache-Control: private, must-revalidate Connection: close Date: Mon, 29 Dec 2014 04:43:31 GMT Server: Apache Content-Type: text/html; charset=UTF-8 P3P: CP="NOI NID ADMa OUR IND UNI COM NAV" Set-Cookie: SN542535c99ad9d=3d3752e4685d865bea7efb19540b154e; path=/ Set-Cookie: SN542535c99ad9d=3d3752e4685d865bea7efb19540b154e; path=/ X-Powered-By: PHP/5.3.27 X-Powered-By: PleskLin | malicious |
http://www.sfurn-onlinemoebel.ch/ie6.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Dec 2014 04:43:31 GMT Location: http://sfurn.com/ie6.html Server: Apache Content-Length: 308 Content-Type: text/html; charset=iso-8859-1 | clean |