Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tripreports.nl
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tripreports.nl
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, private, must-revalidate
Connection: close
Date: Sun, 28 Dec 2014 01:19:05 GMT
ETag: "edb8c6a22019385523250f286cec563e"
Server: nginx/1.4.7 + Phusion Passenger 4.0.53
Content-Length: 22090
Content-Type: text/html; charset=utf-8
Set-Cookie: request_method=GET; path=/
Set-Cookie: _l_session=dkx5Ly9LWGs2L3g3ankxeWxoejkvNEVkSVBGV2RGdkxJbFo2TS9ReDZ1UEFmY2cvL0NRQlhKN2cxVEI2dUFLUkhuT1pWYjJ2Y0xVUkxJSUJ1M2JMTytmd1BxeGZQMktHbkRGOWRhVVBFSFIwc01tMjh0LzYxeFR3bVB1c1NXMkRmSEptT0pnV1h2UUJFNkRTZ05HT3pUaEtaKzEzSnJ3K3NrQXAvVi9WeEwwPS0tMTdWcFU1QitrUWlpdGszZXFXTmJVZz09--2f1895b543e3a6f0a8d35f336386fd27b0a65890; path=/; HttpOnly
Status: 200 OK
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Phusion Passenger 4.0.53
X-Request-Id: 73b39e51-1b7a-428f-8952-1e5c8895fa39
X-Runtime: 0.107929
X-XSS-Protection: 1; mode=block
...22090 bytes of data.
GET / HTTP/1.1
Host: tripreports.nl
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, private, must-revalidate
Connection: close
Date: Sun, 28 Dec 2014 01:19:05 GMT
ETag: "edb8c6a22019385523250f286cec563e"
Server: nginx/1.4.7 + Phusion Passenger 4.0.53
Content-Length: 22090
Content-Type: text/html; charset=utf-8
Set-Cookie: request_method=GET; path=/
Set-Cookie: _l_session=dkx5Ly9LWGs2L3g3ankxeWxoejkvNEVkSVBGV2RGdkxJbFo2TS9ReDZ1UEFmY2cvL0NRQlhKN2cxVEI2dUFLUkhuT1pWYjJ2Y0xVUkxJSUJ1M2JMTytmd1BxeGZQMktHbkRGOWRhVVBFSFIwc01tMjh0LzYxeFR3bVB1c1NXMkRmSEptT0pnV1h2UUJFNkRTZ05HT3pUaEtaKzEzSnJ3K3NrQXAvVi9WeEwwPS0tMTdWcFU1QitrUWlpdGszZXFXTmJVZz09--2f1895b543e3a6f0a8d35f336386fd27b0a65890; path=/; HttpOnly
Status: 200 OK
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Phusion Passenger 4.0.53
X-Request-Id: 73b39e51-1b7a-428f-8952-1e5c8895fa39
X-Runtime: 0.107929
X-XSS-Protection: 1; mode=block
...22090 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tripreports.nl
Referer: http://www.google.com/search?q=tripreports.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tripreports.nl
Referer: http://www.google.com/search?q=tripreports.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://tripreports.nl/ | 200 OK Content-Length: 22090 Content-Type: text/html | clean |
http://tripreports.nl/assets/application-5154012319b944ac0819d49a82016096.js | 200 OK Content-Length: 267069 Content-Type: application/x-javascript | clean |
http://tripreports.nl/test404page.js | 200 OK Content-Length: 2368 Content-Type: text/html | clean |