Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: v-e-t-s.co.uk
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 10 Oct 2014 16:37:24 GMT
Location: http://www.v-e-t-s.co.uk
Server: Apache/2.2.15 (CentOS)
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1
...239 bytes of data.
GET / HTTP/1.1
Host: v-e-t-s.co.uk
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 10 Oct 2014 16:37:24 GMT
Location: http://www.v-e-t-s.co.uk
Server: Apache/2.2.15 (CentOS)
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1
...239 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: v-e-t-s.co.uk
Referer: http://www.google.com/search?q=v-e-t-s.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: v-e-t-s.co.uk
Referer: http://www.google.com/search?q=v-e-t-s.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://v-e-t-s.co.uk/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 10 Oct 2014 16:37:24 GMT Location: http://www.v-e-t-s.co.uk Server: Apache/2.2.15 (CentOS) Content-Length: 239 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.v-e-t-s.co.uk/ | 200 OK Content-Length: 12173 Content-Type: text/html | clean |
http://www.v-e-t-s.co.uk/wp-content/themes/vets_wordpress_theme/js/modernizr-2.5.3.min.js | 200 OK Content-Length: 15274 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js | 200 OK Content-Length: 93637 Content-Type: text/javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/themes/vets_wordpress_theme/js/script.js | 200 OK Content-Length: 305 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/themes/vets_wordpress_theme/js/jquery.mousewheel-3.0.6.pack.js | 200 OK Content-Length: 1384 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/themes/vets_wordpress_theme/js/jquery.fancybox.js | 200 OK Content-Length: 47880 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7199 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/plugins/fancy-box/jquery.fancybox.js?ver=1.2.6 | 200 OK Content-Length: 9522 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/plugins/fancy-box/jquery.easing.js?ver=1.3 | 200 OK Content-Length: 8097 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/themes/vets_wordpress_theme/js/seq.cujs.min.js | 200 OK Content-Length: 6252 Content-Type: application/x-javascript | clean |
http://www.v-e-t-s.co.uk/wp-content/themes/vets_wordpress_theme/js/jquery.js | 200 OK Content-Length: 237560 Content-Type: application/x-javascript | clean |
http://v-e-t-s.co.uk/help/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 10 Oct 2014 16:37:31 GMT Location: http://www.v-e-t-s.co.uk/help/ Server: Apache/2.2.15 (CentOS) Content-Length: 245 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.v-e-t-s.co.uk/help/ | 200 OK Content-Length: 15818 Content-Type: text/html | clean |
http://www.v-e-t-s.co.uk/about-us/ | 200 OK Content-Length: 16367 Content-Type: text/html | clean |
http://www.v-e-t-s.co.uk/directions/ | 200 OK Content-Length: 19308 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=v-e-t-s.co.uk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://v-e-t-s.co.uk/
Result: v-e-t-s.co.uk is not infected or malware details are not published yet.
Result: v-e-t-s.co.uk is not infected or malware details are not published yet.