Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dreamwork.soldra.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dreamwork.soldra.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 28 Feb 2015 10:05:09 GMT
Location: http://86.101.226.237/dreamdev/
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1
...239 bytes of data.
GET / HTTP/1.1
Host: dreamwork.soldra.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 28 Feb 2015 10:05:09 GMT
Location: http://86.101.226.237/dreamdev/
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1
...239 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dreamwork.soldra.com
Referer: http://www.google.com/search?q=dreamwork.soldra.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dreamwork.soldra.com
Referer: http://www.google.com/search?q=dreamwork.soldra.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://dreamwork.soldra.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 28 Feb 2015 10:05:09 GMT Location: http://86.101.226.237/dreamdev/ Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Content-Length: 239 Content-Type: text/html; charset=iso-8859-1 | clean |
http://86.101.226.237/dreamdev/ | 200 OK Content-Length: 38099 Content-Type: text/html | clean |
http://86.101.226.237/Dreamdev/WebResource.axd?d=akE_ow29zXF9lArVHbJOfF0sS-b1ZdHvCdZjVG3vIRFELkhsCC11YpVadTysdHMKJX3r5NAAlIkp8_dojwWYYTROvcajIhypwxFN7aOgbRo1&t=635374411680526886 | 200 OK Content-Length: 22346 Content-Type: application/x-javascript | clean |
http://dreamwork.soldra.com/Dreamdev/ScriptResource.axd?d=4A_7c6YfcqQFF6eXgW_BYDsMhFhyGjFpls1XGMK1UlLWY7SA-M-DwfQwRHszVdc55eKFBGZzCV51CTPy9DwyE8JfJrqyvVhDrgOU-OVdTbFpfQD4-38_IZmZdgtEhdVcOPksX92akQ9bKikDgl048cmDihKkEdl0aJNm7IP-1Qs1&t=fffffffff11c85e0 | 404 Not Found Content-Length: 1126 Content-Type: text/html | clean |
http://dreamwork.soldra.com/test404page.js | 404 Not Found Content-Length: 1126 Content-Type: text/html | clean |
http://dreamwork.soldra.com/Dreamdev/Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=RadScriptManager1_TSM&compress=1&_TSM_CombinedScripts_=%3b%3bSystem.Web.Extensions%2c+Version%3d4.0.0.0%2c+Culture%3dneutral%2c+PublicKeyToken%3d31bf3856ad364e35%3aen-US%3a4ae4914f-8c8e-4123-9d05-414d87b48357%3aea597d4b%3ab25378d2%3bTelerik.Web.UI%3aen-US%3aac331549-681c-4402-9fb7-09ec3c579ee8%3a16e4e7cd%3af76455 <span>...100 symbols skipped</span> | 404 Not Found Content-Length: 1126 Content-Type: text/html | clean |
http://dreamwork.soldra.com/Dreamdev/WebResource.axd?d=YpPnwcynf2EujnKedYn5aZow-P3T_820B2sxIK9QFbN53XfsIAi27P2MS-MqXCWPMGrhyRnCienwamOpOeFCUT-q7utcl54GLM3h5ynenYY1&t=635374411680526886 | 404 Not Found Content-Length: 1126 Content-Type: text/html | clean |