Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=deanpiersee.drivehq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://deanpiersee.drivehq.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: traiteur-naizy.be
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 17 Jan 2015 05:58:45 GMT
Location: http://www.traiteur-naizy.be/
Server: Apache/Debian
Vary: Accept-Encoding
Content-Length: 311
Content-Type: text/html; charset=iso-8859-1
...311 bytes of data.
GET / HTTP/1.1
Host: traiteur-naizy.be
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 17 Jan 2015 05:58:45 GMT
Location: http://www.traiteur-naizy.be/
Server: Apache/Debian
Vary: Accept-Encoding
Content-Length: 311
Content-Type: text/html; charset=iso-8859-1
...311 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: traiteur-naizy.be
Referer: http://www.google.com/search?q=traiteur-naizy.be
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: traiteur-naizy.be
Referer: http://www.google.com/search?q=traiteur-naizy.be
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://deanpiersee.drivehq.com/ | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 20 Dec 2014 22:26:08 GMT Location: http://www.drivehq.com/help/limit/PublishExpired.aspx?url=%2f Server: Microsoft-IIS/8.5 Content-Length: 178 Content-Type: text/html; charset=utf-8 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://www.drivehq.com/help/limit/publishexpired.aspx?url=%2f | 200 OK Content-Length: 10325 Content-Type: text/html | clean |
http://www.drivehq.com/js/CheckBrowser.js | 200 OK Content-Length: 1308 Content-Type: application/javascript | clean |
http://deanpiersee.drivehq.com/js/MM_Images.js | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 20 Dec 2014 22:26:10 GMT Location: http://www.drivehq.com/help/hosting/FileNotFound.aspx?errCode=3&filePath=\\deanpiersee\wwwhome\js\mm_images.js Server: Microsoft-IIS/8.5 Content-Length: 231 Content-Type: text/html; charset=utf-8 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://www.drivehq.com/help/hosting/filenotfound.aspx?errcode=3&filepath=\\deanpiersee\wwwhome\js\mm_images.js | 404 Not Found Content-Length: 9501 Content-Type: text/html | clean |
http://www.drivehq.com/js/MM_Images.js | 200 OK Content-Length: 5849 Content-Type: application/javascript | clean |
http://deanpiersee.drivehq.com/test404page.js | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 20 Dec 2014 22:26:11 GMT Location: http://www.drivehq.com/help/hosting/FileNotFound.aspx?errCode=3&filePath=\\deanpiersee\wwwhome\test404page.js Server: Microsoft-IIS/8.5 Content-Length: 230 Content-Type: text/html; charset=utf-8 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | malicious |
http://www.drivehq.com/help/hosting/filenotfound.aspx?errcode=3&filepath=\\deanpiersee\wwwhome\test404page.js | 404 Not Found Content-Length: 9497 Content-Type: text/html | clean |
http://www.drivehq.com/ | 200 OK Content-Length: 81998 Content-Type: text/html | clean |
http://www.drivehq.com/SubModules/Handler/Res.ashx?type=js&files=/js/StorageV2/JQuery/jquery.min.js|/js/MM_Images.js|/js/PopTips.js|/js/Common.js | 200 OK Content-Length: 112775 Content-Type: application/x-javascript | clean |
http://www.drivehq.com/js/StorageV2/JQuery/jquery-ui.custom.min.js | 200 OK Content-Length: 124285 Content-Type: application/javascript | clean |
http://www.drivehq.com/secure/forgotpassword.aspx | 200 OK Content-Length: 37953 Content-Type: text/html | clean |
http://www.drivehq.com/SubModules/Handler/Res.ashx?type=js&files=/js/StorageV2/JQuery/jquery.min.js|/js/MM_Images.js|/js/tabmenu.js | 200 OK Content-Length: 110388 Content-Type: application/x-javascript | clean |
http://www.drivehq.com/js/Common.js | 200 OK Content-Length: 4853 Content-Type: application/javascript | clean |
http://www.drivehq.com/About/contacts.aspx | 200 OK Content-Length: 38061 Content-Type: text/html | clean |
https://www.drivehq.com/Secure/Logon.aspx | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 20 Dec 2014 22:26:21 GMT Location: /Secure/LogonOption.aspx?gotoURL= Server: Microsoft-IIS/8.5 Content-Length: 150 Content-Type: text/html; charset=utf-8 Set-Cookie: refID=0; expires=Mon, 20-Apr-2015 21:26:21 GMT; path=/ Set-Cookie: srcID=0; expires=Mon, 20-Apr-2015 21:26:21 GMT; path=/ Set-Cookie: randID=1350757707446318172; domain=www.drivehq.com; expires=Mon, 20-Apr-2015 21:26:21 GMT; path=/ Set-Cookie: ServerUTCDateOffset=-28800000; expires=Sun, 21-Dec-2014 09:26:21 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
https://www.drivehq.com/secure/logonoption.aspx?gotourl= | 200 OK Content-Length: 42159 Content-Type: text/html | clean |
https://www.drivehq.com/SubModules/Handler/Res.ashx?type=js&files=/js/StorageV2/JQuery/jquery.min.js|/js/MM_Images.js|/js/tabmenu.js | 200 OK Content-Length: 110388 Content-Type: application/x-javascript | clean |
https://www.drivehq.com/WebResource.axd?d=dlylbdbzirBCtEha5PATA_pwKzU4JxopBrK3eSjdaHZI_0aQ_Wn7am6n-R3jEkQ2cPH4oT-cD7Q11ccOkSpixux3Bjk1&t=635369890285126825 | 200 OK Content-Length: 22346 Content-Type: application/x-javascript | clean |