Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: uw-apts.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 16 Aug 2014 04:56:20 GMT
Accept-Ranges: bytes
ETag: "1547-4f4d7a61dc0dd"
Server: Apache
Vary: Accept-Encoding
Content-Length: 5447
Content-Type: text/html
Last-Modified: Tue, 18 Mar 2014 01:42:28 GMT
X-Pad: avoid browser bug
...5447 bytes of data.
GET / HTTP/1.1
Host: uw-apts.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 16 Aug 2014 04:56:20 GMT
Accept-Ranges: bytes
ETag: "1547-4f4d7a61dc0dd"
Server: Apache
Vary: Accept-Encoding
Content-Length: 5447
Content-Type: text/html
Last-Modified: Tue, 18 Mar 2014 01:42:28 GMT
X-Pad: avoid browser bug
...5447 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: uw-apts.com
Referer: http://www.google.com/search?q=uw-apts.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: uw-apts.com
Referer: http://www.google.com/search?q=uw-apts.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://uw-apts.com/ | 200 OK Content-Length: 5447 Content-Type: text/html | clean |
http://uw-apts.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://uw-apts.com/js/scripts.js | 200 OK Content-Length: 4686 Content-Type: application/javascript | clean |
http://uw-apts.com/js/jquery.colorbox.js | 200 OK Content-Length: 24027 Content-Type: application/javascript | clean |
http://maps.google.com/maps/api/js?sensor=false | 200 OK Content-Length: 5054 Content-Type: text/javascript | clean |
http://maps.google.com/maps?file=api&v=2&key=ABQIAAAAhr73Pm2lyvsIFDkEt6OvThRdwoOZHjFR1koxjuQAZYeWNuvg0RQkwQVSAYpTohDvX4C9jtFOozcxqw | 200 OK Content-Length: 5118 Content-Type: text/javascript | clean |
http://www.google.com/uds/api?file=uds.js&v=1.0 | 200 OK Content-Length: 25129 Content-Type: text/javascript | clean |
http://www.google.com/uds/solutions/localsearch/gmlocalsearch.js | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=2592000 Connection: close Date: Sat, 16 Aug 2014 01:09:46 GMT Age: 13598 Location: http://uds.googleusercontent.com/uds/solutions/localsearch/gmlocalsearch.js Server: sffe Content-Length: 272 Content-Type: text/html; charset=UTF-8 Expires: Mon, 15 Sep 2014 01:09:46 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://uds.googleusercontent.com/uds/solutions/localsearch/gmlocalsearch.js | 200 OK Content-Length: 45358 Content-Type: application/x-javascript | clean |
http://uw-apts.com/brooklyn.html | 200 OK Content-Length: 8103 Content-Type: text/html | clean |
http://uw-apts.com/images/floorplan/b11.jpg | 200 OK Content-Length: 75065 Content-Type: image/jpeg | clean |
http://uw-apts.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://uw-apts.com/images/floorplan/b21.jpg | 200 OK Content-Length: 92566 Content-Type: image/jpeg | clean |
http://uw-apts.com/images/floorplan/b215.jpg | 200 OK Content-Length: 70383 Content-Type: image/jpeg | clean |
http://uw-apts.com/images/floorplan/b32.jpg | 200 OK Content-Length: 72537 Content-Type: image/jpeg | clean |
http://uw-apts.com/washington.html | 200 OK Content-Length: 7960 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=uw-apts.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://uw-apts.com/
Result: uw-apts.com is not infected or malware details are not published yet.
Result: uw-apts.com is not infected or malware details are not published yet.