Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thesalivan.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thesalivan.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Thu, 26 Feb 2015 05:25:14 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.5
Content-Length: 5163
Content-Type: text/html; charset=utf-8
Expires: -1
P3p: CP="CAO PSA OUR"
Set-Cookie: SessionID=ea8684b2-896b-4af2-8954-2817ffcd5c2a; path=/
Set-Cookie: VisitorID=b098953f-3e1a-42cd-a265-8bfab45fe94c&Exp=2/25/2018 9:25:15 PM; expires=Mon, 26-Feb-2018 05:25:15 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...5163 bytes of data.
GET / HTTP/1.1
Host: thesalivan.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Thu, 26 Feb 2015 05:25:14 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.5
Content-Length: 5163
Content-Type: text/html; charset=utf-8
Expires: -1
P3p: CP="CAO PSA OUR"
Set-Cookie: SessionID=ea8684b2-896b-4af2-8954-2817ffcd5c2a; path=/
Set-Cookie: VisitorID=b098953f-3e1a-42cd-a265-8bfab45fe94c&Exp=2/25/2018 9:25:15 PM; expires=Mon, 26-Feb-2018 05:25:15 GMT; path=/
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...5163 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: thesalivan.com
Referer: http://www.google.com/search?q=thesalivan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thesalivan.com
Referer: http://www.google.com/search?q=thesalivan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://thesalivan.com/ | 200 OK Content-Length: 5163 Content-Type: text/html | clean |
http://code.jquery.com/jquery-latest.min.js | 200 OK Content-Length: 95786 Content-Type: application/x-javascript | clean |
http://thesalivan.com/js/standard.js?rte=1&tm=2&dn=thesalivan.com&tid=1020 | 200 OK Content-Length: 1297 Content-Type: text/javascript | clean |
http://thesalivan.com/static/cash-advance?slt=21&slr=1&lpt=0&yt= | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 26 Feb 2015 05:25:16 GMT Location: /click Server: Microsoft-IIS/7.5 Content-Length: 123 Content-Type: text/html; charset=utf-8 P3p: CP="CAO PSA OUR" Set-Cookie: SessionID=ed814389-8d84-4c28-ac6d-b9e1c9cacf15; path=/ Set-Cookie: VisitorID=e9f90a7f-4eca-4ffb-8df3-55b2b41c0aaf&Exp=2/25/2018 9:25:16 PM; expires=Mon, 26-Feb-2018 05:25:16 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://thesalivan.com/click | 200 OK Content-Length: 5160 Content-Type: text/html | clean |
http://thesalivan.com/static/debt-consolidation?slt=21&slr=2&lpt=0&yt= | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 26 Feb 2015 05:25:17 GMT Location: /click Server: Microsoft-IIS/7.5 Content-Length: 123 Content-Type: text/html; charset=utf-8 P3p: CP="CAO PSA OUR" Set-Cookie: SessionID=e902af36-0e75-4980-bb45-62c67f8cedd3; path=/ Set-Cookie: VisitorID=cdefda0c-e735-430c-9bc4-9cf2b0f328c3&Exp=2/25/2018 9:25:18 PM; expires=Mon, 26-Feb-2018 05:25:18 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://thesalivan.com/test404page.js | 200 OK Content-Length: 5161 Content-Type: text/html | clean |
http://thesalivan.com/static/insurance?slt=21&slr=3&lpt=0&yt= | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 26 Feb 2015 05:25:20 GMT Location: /click Server: Microsoft-IIS/7.5 Content-Length: 123 Content-Type: text/html; charset=utf-8 P3p: CP="CAO PSA OUR" Set-Cookie: SessionID=12da1224-89e3-4ef4-ae35-533f1e719798; path=/ Set-Cookie: VisitorID=e4bb1c88-14eb-4657-9562-fe7cf1776584&Exp=2/25/2018 9:25:20 PM; expires=Mon, 26-Feb-2018 05:25:20 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://thesalivan.com/static/free-credit-report?slt=21&slr=4&lpt=0&yt= | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 26 Feb 2015 05:25:20 GMT Location: /click Server: Microsoft-IIS/7.5 Content-Length: 123 Content-Type: text/html; charset=utf-8 P3p: CP="CAO PSA OUR" Set-Cookie: SessionID=38693631-5dd2-40b7-8c2a-73484f59d22f; path=/ Set-Cookie: VisitorID=7f3aeef2-758f-4220-834a-e44293f2925f&Exp=2/25/2018 9:25:20 PM; expires=Mon, 26-Feb-2018 05:25:20 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://thesalivan.com/static/cell-phones?slt=21&slr=5&lpt=0&yt= | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 26 Feb 2015 05:25:21 GMT Location: /click Server: Microsoft-IIS/7.5 Content-Length: 123 Content-Type: text/html; charset=utf-8 P3p: CP="CAO PSA OUR" Set-Cookie: SessionID=a7ba9acd-054a-4009-b976-3c1f2179735c; path=/ Set-Cookie: VisitorID=c84f5e8f-df45-475d-8375-50cc63653d3a&Exp=2/25/2018 9:25:22 PM; expires=Mon, 26-Feb-2018 05:25:22 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://thesalivan.com/static/life-insurance?slt=21&slr=6&lpt=0&yt= | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 26 Feb 2015 05:25:22 GMT Location: /click Server: Microsoft-IIS/7.5 Content-Length: 123 Content-Type: text/html; charset=utf-8 P3p: CP="CAO PSA OUR" Set-Cookie: SessionID=cab8ca6a-3c0f-48a7-913c-de40918436c3; path=/ Set-Cookie: VisitorID=3ad3ef66-59e2-4783-872b-09101e950c6e&Exp=2/25/2018 9:25:22 PM; expires=Mon, 26-Feb-2018 05:25:22 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://thesalivan.com/static/credit-card-application?slt=21&slr=7&lpt=0&yt= | 500 Status read failed: Соединение ÑазоÑвано дÑÑгой ÑÑоÑоной Content-Length: 152 Content-Type: text/plain | clean |
http://thesalivan.com/static/real-estate?slt=21&slr=8&lpt=0&yt= | 500 Status read failed: Соединение ÑазоÑвано дÑÑгой ÑÑоÑоной Content-Length: 152 Content-Type: text/plain | clean |
http://thesalivan.com/static/cheap-airfare?slt=21&slr=9&lpt=0&yt= | 500 Status read failed: Соединение ÑазоÑвано дÑÑгой ÑÑоÑоной Content-Length: 152 Content-Type: text/plain | clean |
http://thesalivan.com/static/finance?slt=21&slr=10&lpt=0&yt= | 500 Status read failed: Соединение ÑазоÑвано дÑÑгой ÑÑоÑоной Content-Length: 152 Content-Type: text/plain | clean |