Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: veseliygremlin.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 13 Jan 2015 01:10:27 GMT
Server: Azar-A Content/1.32
Content-Type: text/html; charset=UTF-8
Last-Modified: Tue, 13 Jan 2015 01:09:57 GMT
X-Powered-CMS: TDSSE CMS
GET / HTTP/1.1
Host: veseliygremlin.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 13 Jan 2015 01:10:27 GMT
Server: Azar-A Content/1.32
Content-Type: text/html; charset=UTF-8
Last-Modified: Tue, 13 Jan 2015 01:09:57 GMT
X-Powered-CMS: TDSSE CMS
Second query (visit from search engine):
GET / HTTP/1.1
Host: veseliygremlin.com
Referer: http://www.google.com/search?q=veseliygremlin.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: veseliygremlin.com
Referer: http://www.google.com/search?q=veseliygremlin.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://veseliygremlin.com/ | 200 OK Content-Length: 42036 Content-Type: text/html | clean |
http://veseliygremlin.com/uploaded/tdsse/templates/design/date.js | 200 OK Content-Length: 722 Content-Type: application/javascript | clean |
http://veseliygremlin.com//vk.com/js/api/openapi.js?115/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 13 Jan 2015 01:10:28 GMT Location: http://www.veseliygremlin.com/ Server: Azar-A Content/1.32 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-CMS: TDSSE CMS | clean |
http://www.veseliygremlin.com/ | 200 OK Content-Length: 42036 Content-Type: text/html | clean |
http://www.veseliygremlin.com/uploaded/tdsse/templates/design/date.js | 200 OK Content-Length: 722 Content-Type: application/javascript | clean |
http://veseliygremlin.com/rss.php | 200 OK Content-Length: 17750 Content-Type: text/html | clean |
http://veseliygremlin.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 13 Jan 2015 01:10:30 GMT Location: http://www.veseliygremlin.com/ Server: Azar-A Content/1.32 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-CMS: TDSSE CMS | clean |
http://www.veseliygremlin.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 13 Jan 2015 01:10:30 GMT Location: http://www.veseliygremlin.com/ Server: Azar-A Content/1.32 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-CMS: TDSSE CMS | clean |
http://veseliygremlin.com/about_kennel.html | 200 OK Content-Length: 50921 Content-Type: text/html | clean |
http://veseliygremlin.com/contacts.html | 200 OK Content-Length: 23795 Content-Type: text/html | clean |
http://veseliygremlin.com/articles.html | 200 OK Content-Length: 22148 Content-Type: text/html | clean |
http://veseliygremlin.com/news.html | 200 OK Content-Length: 60038 Content-Type: text/html | clean |
http://veseliygremlin.com/sharpei_girls.html | 200 OK Content-Length: 32492 Content-Type: text/html | clean |
http://veseliygremlin.com/sharpei_boys.html | 200 OK Content-Length: 31618 Content-Type: text/html | clean |
http://veseliygremlin.com/sharpei_championshtml.html | 200 OK Content-Length: 75120 Content-Type: text/html | clean |
http://veseliygremlin.com/sharpei_litter.html | 200 OK Content-Length: 37018 Content-Type: text/html | clean |
http://veseliygremlin.com/sharpei_photogalery.html | 200 OK Content-Length: 23207 Content-Type: text/html | clean |
http://veseliygremlin.com/sharpei_for_sale.html | 200 OK Content-Length: 300632 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=veseliygremlin.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://veseliygremlin.com/
Result: veseliygremlin.com is not infected or malware details are not published yet.
Result: veseliygremlin.com is not infected or malware details are not published yet.