Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tide-ban.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tide-ban.com/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tide-ban.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sun, 14 Dec 2014 06:24:16 GMT
Location: http://google.com/
Server: nginx/1.4.4
Content-Length: 0
Content-Type: text/html
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: tide-ban.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sun, 14 Dec 2014 06:24:16 GMT
Location: http://google.com/
Server: nginx/1.4.4
Content-Length: 0
Content-Type: text/html
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tide-ban.com
Referer: http://www.google.com/search?q=tide-ban.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tide-ban.com
Referer: http://www.google.com/search?q=tide-ban.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://tide-ban.com/ | HTTP/1.1 302 Found Connection: close Date: Sun, 14 Dec 2014 06:24:16 GMT Location: http://google.com/ Server: nginx/1.4.4 Content-Length: 0 Content-Type: text/html P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" X-Powered-By: PHP/5.2.17 | clean |
http://google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 14 Dec 2014 06:24:16 GMT Location: http://www.google.lt/?gws_rd=cr&ei=EC2NVLTUIcPlywP6wIKQBA Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=32c5daa64d7b6b09:FF=0:TM=1418538256:LM=1418538256:S=zIiVRy5SiRh8PoXl; expires=Tue, 13-Dec-2016 06:24:16 GMT; path=/; domain=.google.com Set-Cookie: NID=67=lV9_y7DBNem7jnnJJaJ-uoGx7v6gNSYB-0NZ1UXrUIFFB8dGQLfJ8qzmh7Bi_g4rrPBtnIka5GFLKAnlya-v-PepPznYnBVllGhpTtzLLv-jYIEOQBE8Ul-TQLsGxEUP; expires=Mon, 15-Jun-2015 06:24:16 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=ec2nvltuicplywp6wikqba | 200 OK Content-Length: 51137 Content-Type: text/html | clean |
https://www.google.lt/webhp?tab=ww | 200 OK Content-Length: 63906 Content-Type: text/html | clean |
https://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 57494 Content-Type: text/html | clean |
https://www.google.lt/webhp?hl=lt&tab=iw | 200 OK Content-Length: 63896 Content-Type: text/html | clean |
http://www.google.lt/intl/lt/options/ | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Sat, 13 Dec 2014 10:52:19 GMT Age: 70319 Location: http://www.google.lt/intl/lt/about/products/ Server: sffe Content-Length: 241 Content-Type: text/html; charset=UTF-8 Expires: Mon, 12 Jan 2015 10:52:19 GMT Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/intl/lt/about/products/ | 200 OK Content-Length: 7068 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/js/gweb/analytics/autotrack.js/ | 404 Not Found Content-Length: 1471 Content-Type: text/html | clean |
http://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |
http://www.google.lt/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://www.google.lt/preferences?hl=lt | 200 OK Content-Length: 63712 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=wi | 200 OK Content-Length: 51163 Content-Type: text/html | clean |
http://www.google.lt/imghp?hl=lt&tab=ii | 200 OK Content-Length: 51085 Content-Type: text/html | clean |
http://www.google.lt/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 14 Dec 2014 06:24:20 GMT Location: https://history.google.com/history/optout?hl=lt Server: Search-History HTTP Server Content-Length: 244 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 Set-Cookie: PREF=ID=46e751ea1dd29d9e:TM=1418538260:LM=1418538260:S=Mv5S1bVBrTQCACnE; expires=Tue, 13-Dec-2016 06:24:20 GMT; path=/; domain=.google.lt X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
https://history.google.com/history/optout?hl=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 14 Dec 2014 06:24:20 GMT Location: http://www.google.com/ Server: Search-History HTTP Server Content-Length: 219 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 443:quic,p=0.02 Set-Cookie: PREF=ID=ac820795c3a7aa75:TM=1418538260:LM=1418538260:S=WylR0kP1Gjwi8fKI; expires=Tue, 13-Dec-2016 06:24:20 GMT; path=/; domain=.google.com X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/ | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 14 Dec 2014 06:24:20 GMT Location: http://www.google.lt/?gws_rd=cr&ei=FC2NVKOzKKWGywON54KABw Server: gws Content-Length: 258 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 P3P: CP="This is not a P3P policy! See http://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info." Set-Cookie: PREF=ID=c49b59c6d8884ee3:FF=0:TM=1418538260:LM=1418538260:S=Zl3aAeWtGUWxr4SC; expires=Tue, 13-Dec-2016 06:24:20 GMT; path=/; domain=.google.com Set-Cookie: NID=67=qpvJ7BQJUmuXwUuA_TwkJO9xi1V6h4YGA7EK_3MhK_x-1_wnCAcC_SPQzojq1NjKxMwbX0VKO2GUAlg0nmYG2_Gyj5fTbQUihvRbet2BgWGLoh11B4qxvTqn5a561H6P; expires=Mon, 15-Jun-2015 06:24:20 GMT; path=/; domain=.google.com; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.google.lt/?gws_rd=cr&ei=fc2nvkozkkwgywon54kabw | 200 OK Content-Length: 51354 Content-Type: text/html | clean |
http://www.google.lt/chrome/index.html?hl=lt&brand=CHNG&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 14 Dec 2014 06:24:21 GMT Location: https://www.google.lt/chrome/browser/?hl=lt&brand=CHNG&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt Server: sffe Content-Length: 316 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/chrome/browser/?hl=lt&brand=chng&utm_source=lt-hpp&utm_medium=hpp&utm_campaign=lt | HTTP/1.1 200 OK Cache-Control: private, max-age=0 Connection: close Date: Sun, 14 Dec 2014 06:24:21 GMT Server: sffe Vary: Accept-Encoding Content-Type: text/html Expires: Sun, 14 Dec 2014 06:24:21 GMT Last-Modified: Tue, 02 Dec 2014 18:04:39 GMT Alternate-Protocol: 443:quic,p=0.02 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://www.google.lt/chrome/browser/../../chrome/browser/desktop/index.html | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 14 Dec 2014 06:24:21 GMT Location: https://www.google.lt/chrome/browser/desktop/index.html Server: GFE/2.0 Content-Length: 252 Content-Type: text/html; charset=UTF-8 | clean |
https://www.google.lt/chrome/browser/desktop/index.html | 200 OK Content-Length: 43050 Content-Type: text/html | clean |
https://www.google.lt//www.gstatic.com/external_hosted/modernizr/modernizr.js/ | 404 Not Found Content-Length: 1464 Content-Type: text/html | clean |
https://www.google.lt//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |