Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: triplecrowncustom.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 05 Oct 2014 18:14:16 GMT
Server: Microsoft-IIS/6.0
Content-Length: 16529
Content-Type: text/html; charset=utf-8
Set-Cookie: ASP.NET_SessionId=ykeohoyf1t4uj52bjlp1fgm0; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...16529 bytes of data.
GET / HTTP/1.1
Host: triplecrowncustom.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 05 Oct 2014 18:14:16 GMT
Server: Microsoft-IIS/6.0
Content-Length: 16529
Content-Type: text/html; charset=utf-8
Set-Cookie: ASP.NET_SessionId=ykeohoyf1t4uj52bjlp1fgm0; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...16529 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: triplecrowncustom.com
Referer: http://www.google.com/search?q=triplecrowncustom.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: triplecrowncustom.com
Referer: http://www.google.com/search?q=triplecrowncustom.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://triplecrowncustom.com/ | 200 OK Content-Length: 16529 Content-Type: text/html | clean |
http://triplecrowncustom.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72330 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/cufon-yui.js | 200 OK Content-Length: 18263 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/Futura_Std_650.font.js | 200 OK Content-Length: 45269 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/script.js | 200 OK Content-Length: 221 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/imageflow.js | 200 OK Content-Length: 40599 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.bgiframe-2.1.2.js | 200 OK Content-Length: 1762 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.core.js | 200 OK Content-Length: 8523 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.widget.js | 200 OK Content-Length: 7127 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.mouse.js | 200 OK Content-Length: 4411 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.button.js | 200 OK Content-Length: 10674 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.draggable.js | 200 OK Content-Length: 30892 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.position.js | 200 OK Content-Length: 7599 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.resizable.js | 200 OK Content-Length: 27154 Content-Type: application/x-javascript | clean |
http://triplecrowncustom.com/js/js/jquery.ui.dialog.js | 200 OK Content-Length: 22239 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=triplecrowncustom.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://triplecrowncustom.com/
Result: triplecrowncustom.com is not infected or malware details are not published yet.
Result: triplecrowncustom.com is not infected or malware details are not published yet.