Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: the-tribunal.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 31 Dec 2015 04:01:24 GMT
Location: http://www.the-tribunal.net/
Server: nginx/1.8.0
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cacheable: YES
X-Pingback: http://www.the-tribunal.net/xmlrpc.php
X-Served-From-Cache: Yes
GET / HTTP/1.1
Host: the-tribunal.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 31 Dec 2015 04:01:24 GMT
Location: http://www.the-tribunal.net/
Server: nginx/1.8.0
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Cacheable: YES
X-Pingback: http://www.the-tribunal.net/xmlrpc.php
X-Served-From-Cache: Yes
Second query (visit from search engine):
GET / HTTP/1.1
Host: the-tribunal.net
Referer: http://www.google.com/search?q=the-tribunal.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: the-tribunal.net
Referer: http://www.google.com/search?q=the-tribunal.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://the-tribunal.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 04:01:24 GMT Location: http://www.the-tribunal.net/ Server: nginx/1.8.0 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 X-Cacheable: YES X-Pingback: http://www.the-tribunal.net/xmlrpc.php X-Served-From-Cache: Yes | clean |
http://www.the-tribunal.net/ | 200 OK Content-Length: 21902 Content-Type: text/html | clean |
http://www.google.com/jsapi | 200 OK Content-Length: 25240 Content-Type: text/javascript | clean |
http://the-tribunal.net//www.google.com/recaptcha/api/js/recaptcha_ajax.js?ver=1.21/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 31 Dec 2015 04:01:27 GMT Pragma: no-cache Location: http://www.the-tribunal.net/www.google.com/recaptcha/api/js/recaptcha_ajax.js Server: nginx/1.8.0 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Cacheable: YES X-Served-From-Cache: Yes | clean |
http://www.the-tribunal.net/www.google.com/recaptcha/api/js/recaptcha_ajax.js | 404 Not Found Content-Length: 15334 Content-Type: text/html | clean |
http://www.the-tribunal.net//www.google.com/recaptcha/api/js/recaptcha_ajax.js?ver=1.21/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 31 Dec 2015 04:01:30 GMT Pragma: no-cache Location: http://www.the-tribunal.net/www.google.com/recaptcha/api/js/recaptcha_ajax.js Server: nginx/1.8.0 Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Cacheable: YES X-Served-From-Cache: Yes | clean |
http://www.the-tribunal.net/test404page.js | 404 Not Found Content-Length: 15334 Content-Type: text/html | clean |
http://www.the-tribunal.net/wp-includes/js/jquery/jquery.js?ver=1.11.3 | 200 OK Content-Length: 95977 Content-Type: text/javascript | clean |
http://www.the-tribunal.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://www.the-tribunal.net/wp-content/plugins/google-captcha/js/script.js?ver=1.21 | 200 OK Content-Length: 4909 Content-Type: text/javascript | clean |
http://yui.yahooapis.com/combo?2.6.0/build/yahoo-dom-event/yahoo-dom-event.js&2.6.0/build/container/container_core-min.js&2.6.0/build/menu/menu-min.js | 200 OK Content-Length: 128081 Content-Type: application/javascript | clean |
http://www.the-tribunal.net/wp-content/themes/twordder/js/jquery.corners.min.js | 200 OK Content-Length: 7781 Content-Type: text/javascript | clean |
http://www.the-tribunal.net/wp-includes/js/wp-embed.min.js?ver=4.4 | 200 OK Content-Length: 1518 Content-Type: text/javascript | clean |
http://www.the-tribunal.net/blog/ | 200 OK Content-Length: 45462 Content-Type: text/html | clean |
http://www.the-tribunal.net/wp-content/plugins/ml-slider/assets/sliders/flexslider/jquery.flexslider-min.js?ver=3.3.5 | 200 OK Content-Length: 53993 Content-Type: text/javascript | clean |
http://www.the-tribunal.net/category/tear-down/ | 200 OK Content-Length: 40055 Content-Type: text/html | clean |
http://www.the-tribunal.net/category/build-up/ | 200 OK Content-Length: 42614 Content-Type: text/html | clean |
http://www.the-tribunal.net/mods/ | 200 OK Content-Length: 23858 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=the-tribunal.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://the-tribunal.net/
Result: the-tribunal.net is not infected or malware details are not published yet.
Result: the-tribunal.net is not infected or malware details are not published yet.