Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: domian.com
Result:
GET / HTTP/1.1
Host: domian.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: domian.com
Referer: http://www.google.com/search?q=domian.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: domian.com
Referer: http://www.google.com/search?q=domian.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.domian.com/ | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Connection: close Date: Mon, 28 Jul 2014 06:20:24 GMT Pragma: no-cache Server: Apache Vary: User-Agent,Accept-Encoding Content-Type: text/html Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 28 Jul 2014 06:20:24 GMT Set-Cookie: tu=decadf7be345cc77b9f83aadbf742eb3; expires=Tue, 31-Dec-2019 23:00:00 GMT; path=/; domain=domian.com; httponly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_Sz5micEKmo6UWCrB7AKf+KQ7SYsz9HiUOc0K4UKdcbHCkGkS+PgFlNmiHWIIMHcRb66vz1bkmDHhYMBTMgU5pQ== X-Cache: MISS from 831149 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://www.domian.com//?gtnjs=1/ | 200 OK Content-Length: 18815 Content-Type: text/html | clean |
http://img.sedoparking.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 52579 Content-Type: application/x-javascript | clean |
http://www.google.com/adsense/domains/caf.js | 200 OK Content-Length: 258 Content-Type: text/javascript | clean |
http://www.domian.com/test404page.js | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Connection: close Date: Mon, 28 Jul 2014 06:20:26 GMT Pragma: no-cache Server: Apache Vary: User-Agent,Accept-Encoding Content-Type: text/html Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 28 Jul 2014 06:20:26 GMT Set-Cookie: tu=6aba24878d136ff14fa05d44e93674ff; expires=Tue, 31-Dec-2019 23:00:00 GMT; path=/; domain=domian.com; httponly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_zgrboe88u5IwlSV2+M4wXmBRV4Io4UrpkWeVIPufjSYLiqOBbJ+AMge1lXDWFCJGBrJLeiaYiVNh9Kk8mQYWfA== X-Cache: MISS from 220945 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://www.domian.com/test404page.js/?gtnjs=1 | 200 OK Content-Length: 18815 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=domian.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://domian.com/
Result: domian.com is not infected or malware details are not published yet.
Result: domian.com is not infected or malware details are not published yet.