Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xbox-news.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 23 Apr 2014 10:03:11 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=o6t64350fo2k6aphm8f8u791l5; expires=Wed, 23 Apr 2014 11:03:12 GMT; path=/
Set-Cookie: blogn_index_token=1dd7b6aca09c58b19eaede1e7c454d39; expires=Wed, 23-Apr-2014 18:03:12 GMT
X-Powered-By: PHP/5.1.6
GET / HTTP/1.1
Host: xbox-news.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 23 Apr 2014 10:03:11 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=o6t64350fo2k6aphm8f8u791l5; expires=Wed, 23 Apr 2014 11:03:12 GMT; path=/
Set-Cookie: blogn_index_token=1dd7b6aca09c58b19eaede1e7c454d39; expires=Wed, 23-Apr-2014 18:03:12 GMT
X-Powered-By: PHP/5.1.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: xbox-news.com
Referer: http://www.google.com/search?q=xbox-news.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xbox-news.com
Referer: http://www.google.com/search?q=xbox-news.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://xbox-news.com/ | 200 OK Content-Length: 49952 Content-Type: text/html | clean |
http://xbox-news.com/index.php | 200 OK Content-Length: 49952 Content-Type: text/html | clean |
http://xbox-news.com/news/index.html | 200 OK Content-Length: 22058 Content-Type: text/html | clean |
http://xbox-news.com/schedule/index.html | 200 OK Content-Length: 31612 Content-Type: text/html | clean |
http://xbox-news.com/special/index.html | 200 OK Content-Length: 15856 Content-Type: text/html | clean |
http://xbox-news.com/game/indexrev.html | 200 OK Content-Length: 15844 Content-Type: text/html | clean |
http://xbox-news.com/game/indexint.html | 200 OK Content-Length: 17462 Content-Type: text/html | clean |
http://xbox-news.com/offer.html | 200 OK Content-Length: 14591 Content-Type: text/html | clean |
http://xbox-news.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Wed, 23 Apr 2014 10:03:26 GMT Location: http://www.xbox-news.com/404.html Server: Apache/2.2.3 (CentOS) Content-Length: 295 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.xbox-news.com/404.html | 200 OK Content-Length: 1107 Content-Type: text/html | clean |
http://linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js | 200 OK Content-Length: 47623 Content-Type: text/javascript | clean |
http://xbox-news.com/e11720.html | 200 OK Content-Length: 18205 Content-Type: text/html | clean |
http://xbox-news.com/index.php?mode=rss | 200 OK Content-Length: 30592 Content-Type: application/xml | clean |
http://xbox-news.com/index.php?e=1 | 200 OK Content-Length: 24457 Content-Type: text/html | clean |
http://xbox-news.com/data/js/ad468x60.js | HTTP/1.1 302 Found Connection: close Date: Wed, 23 Apr 2014 10:03:33 GMT Location: http://www.xbox-news.com/404.html Server: Apache/2.2.3 (CentOS) Content-Length: 295 Content-Type: text/html; charset=iso-8859-1 | clean |
http://m2t.jp/m2t.php | 403 Forbidden Content-Length: 269 Content-Type: text/html | clean |
http://xbox-news.com/index.php?c=1- | 200 OK Content-Length: 73771 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xbox-news.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xbox-news.com/
Result: xbox-news.com is not infected or malware details are not published yet.
Result: xbox-news.com is not infected or malware details are not published yet.