Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=campus.se
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://campus.se/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: campus.se
Result:
HTTP/1.1 200 OK
Cache-Control: private, no-store, must-revalidate
Date: Thu, 19 Jun 2014 11:45:08 GMT
Server: Microsoft-IIS/7.0
Content-Length: 75574
Content-Type: text/html; charset=utf-8
Set-Cookie: CMSPreferredCulture=sv-SE; expires=Fri, 19-Jun-2015 11:45:08 GMT; path=/
Set-Cookie: CMSPreferredCulture=sv-SE; expires=Fri, 19-Jun-2015 11:45:08 GMT; path=/
Set-Cookie: ASP.NET_SessionId=gxmjww55ktin2x452ygmsumu; path=/; HttpOnly
Set-Cookie: CurrentVisitStatus=1; expires=Fri, 20-Jun-2014 10:45:08 GMT; path=/
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...75574 bytes of data.
GET / HTTP/1.1
Host: campus.se
Result:
HTTP/1.1 200 OK
Cache-Control: private, no-store, must-revalidate
Date: Thu, 19 Jun 2014 11:45:08 GMT
Server: Microsoft-IIS/7.0
Content-Length: 75574
Content-Type: text/html; charset=utf-8
Set-Cookie: CMSPreferredCulture=sv-SE; expires=Fri, 19-Jun-2015 11:45:08 GMT; path=/
Set-Cookie: CMSPreferredCulture=sv-SE; expires=Fri, 19-Jun-2015 11:45:08 GMT; path=/
Set-Cookie: ASP.NET_SessionId=gxmjww55ktin2x452ygmsumu; path=/; HttpOnly
Set-Cookie: CurrentVisitStatus=1; expires=Fri, 20-Jun-2014 10:45:08 GMT; path=/
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...75574 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: campus.se
Referer: http://www.google.com/search?q=campus.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: campus.se
Referer: http://www.google.com/search?q=campus.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://campus.se/ | 200 OK Content-Length: 75574 Content-Type: text/html | clean |
http://campus.se/lib/js/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://campus.se/lib/js/jquery-ui-1.7.2.custom.min.js | 200 OK Content-Length: 28186 Content-Type: application/x-javascript | clean |
http://campus.se/lib/js/jquery.cookie.js | 200 OK Content-Length: 4341 Content-Type: application/x-javascript | clean |
http://campus.se/lib/js/jquery.corner.js | 200 OK Content-Length: 8690 Content-Type: application/x-javascript | clean |
http://campus.se/lib/js/jquery.autocolumn.min.js | 200 OK Content-Length: 8587 Content-Type: application/x-javascript | clean |
http://campus.se/lib/slider/js/mobilyslider.js | 200 OK Content-Length: 4589 Content-Type: application/x-javascript | clean |
http://campus.se/lib/js/runme.js | 200 OK Content-Length: 2436 Content-Type: application/x-javascript | clean |
http://campus.se/WebResource.axd?d=VJb9Ld5QfXGLzEW1QjirYPpmtCwvoJ1uYhILGQ8gtO7vt4o7pO4MTWCrz09qYUstvlk4BBsxdo6kfEGPd5-DTVwmjyM1&t=635198935129146460 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://campus.se/CMSWebParts/Viewers/ContentSlider_files/ContentSlider.js | 200 OK Content-Length: 4124 Content-Type: application/x-javascript | clean |
http://campus.se/ScriptResource.axd?d=feUUK76Yw9BvHI6WOKUyk09IfTSLLaz0fxTHfVwkpOYRWJzVb-Rparz8vJHQvh7sXF9IBK5Bxp8Yn2oN1EH1p4-tECrxFfMM1e3lNck5H-gN-gTD6Lg_3Tk0PNYYo1C33nudlDQfkj5epgpMkdtkQZf6DDg1&t=ffffffff9b71cfca | 200 OK Content-Length: 99504 Content-Type: application/x-javascript | clean |
http://campus.se/ScriptResource.axd?d=2TmJ80ZaRKUJWDpygdM49RraAukNXzfwUxcZYnc8WLHUDCP_7guoNTx8j9Fd2YLndhGMqxviLC7AkAxzWCCf9E2RNgCKg8JpQCWKmUE4WEtVRe2-MQ20JYEsqD4kCG65QU99O0muAalXTScY_K8szqZjrXqVv2U2EtdbrR3L3lzXZWew0&t=ffffffff9b71cfca | 200 OK Content-Length: 32226 Content-Type: application/x-javascript | clean |
http://static.ak.connect.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php/sv_SE | 200 OK Content-Length: 169193 Content-Type: application/x-javascript | clean |
http://www.framtidsforetagen.se/scripttoplist | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 19 Jun 2014 11:45:14 GMT Location: https://www.framtidsforetagen.se/scripttoplist Server: cloudflare-nginx Content-Type: text/html CF-RAY: 13cf7ab3c4450f63-FRA Set-Cookie: __cfduid=d7d07888e3536566a4d0777da5ba7eed01403178314843; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.framtidsforetagen.se; HttpOnly | clean |
https://www.framtidsforetagen.se/scripttoplist | 404 Not Found Content-Length: 1351 Content-Type: text/html | clean |
http://www.framtidsforetagen.se/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=14400 Connection: close Date: Thu, 19 Jun 2014 11:45:15 GMT Location: https://www.framtidsforetagen.se/test404page.js Server: cloudflare-nginx Content-Type: text/html Expires: Thu, 19 Jun 2014 15:45:15 GMT CF-Cache-Status: MISS CF-RAY: 13cf7ab8c6fa0f63-FRA Set-Cookie: __cfduid=dbcfc94b338bee29c55dc0c0e9372464b1403178315642; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.framtidsforetagen.se; HttpOnly | clean |
https://www.framtidsforetagen.se/test404page.js | 404 Not Found Content-Length: 1351 Content-Type: text/html | clean |