Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tumasllc.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sat, 04 Oct 2014 21:51:50 GMT
Location: /site
Server: Apache/2.2.22 (Unix) FrontPage/5.0.2.2635
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.3.27-pl0-gentoo
...0 bytes of data.
GET / HTTP/1.1
Host: tumasllc.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sat, 04 Oct 2014 21:51:50 GMT
Location: /site
Server: Apache/2.2.22 (Unix) FrontPage/5.0.2.2635
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.3.27-pl0-gentoo
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tumasllc.com
Referer: http://www.google.com/search?q=tumasllc.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tumasllc.com
Referer: http://www.google.com/search?q=tumasllc.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://tumasllc.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 04 Oct 2014 21:51:50 GMT Location: /site Server: Apache/2.2.22 (Unix) FrontPage/5.0.2.2635 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.27-pl0-gentoo | clean |
http://tumasllc.com/site | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 21:51:51 GMT Location: http://tumasllc.com/site/ Server: Apache/2.2.22 (Unix) FrontPage/5.0.2.2635 Content-Length: 233 Content-Type: text/html; charset=iso-8859-1 | clean |
http://tumasllc.com/site/ | 200 OK Content-Length: 23494 Content-Type: text/html | clean |
http://tumasllc.com/site/wp-content/themes/mimbo2.2/js/dropdowns.js | 200 OK Content-Length: 422 Content-Type: application/javascript | clean |
http://tumasllc.com/site/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://tumasllc.com/site/wp-content/plugins/royalslider/js/jquery.royal-slider.min.js?ver=1.0 | 200 OK Content-Length: 25891 Content-Type: application/javascript | clean |
http://tumasllc.com/site/wp-content/plugins/royalslider/js/jquery.easing.1.3.min.js?ver=3.5.1 | 200 OK Content-Length: 3436 Content-Type: application/javascript | clean |
http://tumasllc.com/site/?sjsl=colorbox,shopp,catalog,cart&c=1&ver=98239bb061a58639408323699680ad0e | 200 OK Content-Length: 25191 Content-Type: application/x-javascript | clean |
http://tumasllc.com/site/about/ | 200 OK Content-Length: 17525 Content-Type: text/html | clean |
http://tumasllc.com/site/event-services/ | 200 OK Content-Length: 18149 Content-Type: text/html | clean |
http://tumasllc.com/site/event-rentals/ | 200 OK Content-Length: 19463 Content-Type: text/html | clean |
http://tumasllc.com/site/gallery/ | 200 OK Content-Length: 18495 Content-Type: text/html | clean |
http://tumasllc.com/site/gallery/centerpieces/ | 200 OK Content-Length: 31417 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js?ver=1.8.3 | 200 OK Content-Length: 93637 Content-Type: text/javascript | clean |
http://tumasllc.com/site/wp-content/plugins/ng-gallery-optimizer-modified/fancybox/jquery.fancybox-1.3.4.pack.js?ver=1.3.4 | 200 OK Content-Length: 15602 Content-Type: application/javascript | clean |
http://tumasllc.com/site/gallery/table-settings/ | 200 OK Content-Length: 28172 Content-Type: text/html | clean |
http://tumasllc.com/site/gallery/head-tables/ | 200 OK Content-Length: 37999 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tumasllc.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tumasllc.com/
Result: tumasllc.com is not infected or malware details are not published yet.
Result: tumasllc.com is not infected or malware details are not published yet.