Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fer.es
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fer.es/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: youjizz-tube8.com
Result:
GET / HTTP/1.1
Host: youjizz-tube8.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: youjizz-tube8.com
Referer: http://www.google.com/search?q=youjizz-tube8.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: youjizz-tube8.com
Referer: http://www.google.com/search?q=youjizz-tube8.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://fer.es/ | HTTP/1.1 200 OK Date: Fri, 12 Sep 2014 20:31:30 GMT Accept-Ranges: bytes ETag: "85f512742c8c61:3f322" Server: Microsoft-IIS/6.0 Content-Length: 399 Content-Location: http://fer.es/Default.htm Content-Type: text/html Last-Modified: Fri, 25 Aug 2006 12:28:53 GMT X-Powered-By: ASP.NET | clean |
http://fer.es/default.htm | HTTP/1.1 200 OK Date: Fri, 12 Sep 2014 20:31:30 GMT Accept-Ranges: bytes ETag: "85f512742c8c61:3f322" Server: Microsoft-IIS/6.0 Content-Length: 399 Content-Type: text/html Last-Modified: Fri, 25 Aug 2006 12:28:53 GMT X-Powered-By: ASP.NET | malicious |
http://sie.fer.es/ | 200 OK Content-Length: 41355 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: multimedia.fer.es <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <link rel="image_src" href="/imgcss/logoFerSocial.png" /> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <meta name="lang" content="es" /> <meta name="organization" content="Federacion d ...[4222 bytes skipped]... | ||
http://sie.fer.es/js/jquery-1.3.2.js | 200 OK Content-Length: 124997 Content-Type: application/x-javascript | clean |
http://fer.es/js/labjs/LAB.js | 404 Not Found Content-Length: 1818 Content-Type: text/html | clean |
http://fer.es/test404page.js | 404 Not Found Content-Length: 1818 Content-Type: text/html | clean |
http://islpronto.islonline.net/live/islpronto/public/chat.js?d=fer&lang=es | 200 OK Content-Length: 5837 Content-Type: application/javascript | suspicious |
Page code contains blacklisted domain: sie.fer.es ...[913 bytes skipped]... nt.referrer : '');if(typeof(extra) == 'object') {if(typeof(extra.args) == 'object') {for(var a in extra.args)link += '&' + esc(a) + '=' + esc(extra.args[a]);}}window.open(link, '_islpronto_chat_' + Math.floor(Math.random()*10000000), 'status=no,toolbar=no,menubar=no,resizable=yes,location=no'+',width='+((31)*emFactor)+',height='+((21)*emFactor));}); var img = document.getElementById("islpronto_image_lang"); img.src = 'http://sie.fer.es/recursos/richImg/doc/15537' + "/islpronto-chat-" + 'es' + ".jpg"; } })(); } catch(e) { } try { (function(){ if(0) { var link = document.getElementById("islpronto_link"); link.href = "javascript:void(0)"; link.onclick = (function(extra) {var emFactor = 16;try {if(window.__ISLPronto_emFactor__ == null) {window.__ISLPronto_emFactor__ = emFactor;var el = document.createElement('div');el.style.width = '1rem';document.body.appendChild(el);try ...[2346 bytes skipped]... | ||