Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wellux.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 04 Oct 2014 22:48:19 GMT
Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20)
Location: http://www.wellux.com/
Server: Microsoft-IIS/7.5
Content-Length: 145
Content-Type: text/html; charset=UTF-8
X-Cache: MISS from WT263CDN-26570
X-Cache-Lookup: MISS from WT263CDN-26570:80
X-Powered-By: ASP.NET
...145 bytes of data.
GET / HTTP/1.1
Host: wellux.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 04 Oct 2014 22:48:19 GMT
Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20)
Location: http://www.wellux.com/
Server: Microsoft-IIS/7.5
Content-Length: 145
Content-Type: text/html; charset=UTF-8
X-Cache: MISS from WT263CDN-26570
X-Cache-Lookup: MISS from WT263CDN-26570:80
X-Powered-By: ASP.NET
...145 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: wellux.com
Referer: http://www.google.com/search?q=wellux.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wellux.com
Referer: http://www.google.com/search?q=wellux.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://wellux.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 22:48:19 GMT Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20) Location: http://www.wellux.com/ Server: Microsoft-IIS/7.5 Content-Length: 145 Content-Type: text/html; charset=UTF-8 X-Cache: MISS from WT263CDN-26570 X-Cache-Lookup: MISS from WT263CDN-26570:80 X-Powered-By: ASP.NET | clean |
http://www.wellux.com/ | 200 OK Content-Length: 32549 Content-Type: text/html | clean |
http://www.wellux.com/js/jquery.js | 200 OK Content-Length: 38085 Content-Type: application/x-javascript | clean |
http://wellux.com/js/smoothmenu.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 22:48:26 GMT Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20) Location: http://www.wellux.com/js/smoothmenu.js Server: Microsoft-IIS/7.5 Content-Length: 161 Content-Type: text/html; charset=UTF-8 X-Cache: MISS from WT263CDN-26570 X-Cache-Lookup: MISS from WT263CDN-26570:80 X-Powered-By: ASP.NET | clean |
http://www.wellux.com/js/smoothmenu.js | 200 OK Content-Length: 4753 Content-Type: application/x-javascript | clean |
http://wellux.com/js/accordion.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 22:48:31 GMT Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20) Location: http://www.wellux.com/js/accordion.js Server: Microsoft-IIS/7.5 Content-Length: 160 Content-Type: text/html; charset=UTF-8 X-Cache: MISS from WT263CDN-26570 X-Cache-Lookup: MISS from WT263CDN-26570:80 X-Powered-By: ASP.NET | clean |
http://www.wellux.com/js/accordion.js | 200 OK Content-Length: 8687 Content-Type: application/x-javascript | clean |
http://wellux.com/js/cycle.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 22:48:34 GMT Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20) Location: http://www.wellux.com/js/cycle.js Server: Microsoft-IIS/7.5 Content-Length: 156 Content-Type: text/html; charset=UTF-8 X-Cache: MISS from WT263CDN-26570 X-Cache-Lookup: MISS from WT263CDN-26570:80 X-Powered-By: ASP.NET | clean |
http://www.wellux.com/js/cycle.js | 200 OK Content-Length: 19353 Content-Type: application/x-javascript | clean |
http://wellux.com/js/nav.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 22:48:35 GMT Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20) Location: http://www.wellux.com/js/nav.js Server: Microsoft-IIS/7.5 Content-Length: 154 Content-Type: text/html; charset=UTF-8 X-Cache: MISS from WT263CDN-26570 X-Cache-Lookup: MISS from WT263CDN-26570:80 X-Powered-By: ASP.NET | clean |
http://www.wellux.com/js/nav.js | 200 OK Content-Length: 1132 Content-Type: application/x-javascript | clean |
http://wellux.com/js/rolling.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 22:48:36 GMT Via: 1.0 WT263CDN-26570 (squid/3.0.STABLE20) Location: http://www.wellux.com/js/rolling.js Server: Microsoft-IIS/7.5 Content-Length: 158 Content-Type: text/html; charset=UTF-8 X-Cache: MISS from WT263CDN-26570 X-Cache-Lookup: MISS from WT263CDN-26570:80 X-Powered-By: ASP.NET | clean |
http://www.wellux.com/js/rolling.js | 200 OK Content-Length: 2986 Content-Type: application/x-javascript | clean |
http://chat.live800.com/live800/chatClient/staticButton.js?jid=8213150896&companyID=57986&configID=40670&codeType=steady | 200 OK Content-Length: 1172 Content-Type: application/x-javascript | clean |
http://js.users.51.la/9849554.js | 200 OK Content-Length: 1977 Content-Type: application/x-javascript | clean |
http://count11.51yes.com/click.aspx?id=114821553&logo=1 | 200 OK Content-Length: 1777 Content-Type: text/html | clean |
http://count11.51yes.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wellux.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wellux.com/
Result: wellux.com is not infected or malware details are not published yet.
Result: wellux.com is not infected or malware details are not published yet.