Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fpatletismo.pt
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Mon, 29 Sep 2014 22:07:31 GMT
Content-Length: 343168
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: *
Set-Cookie: ASP.NET_SessionId=yaas3dnaj2st05cibgoribfl; path=/; HttpOnly
X-Powered-By: ASP.NET
...343168 bytes of data.
GET / HTTP/1.1
Host: fpatletismo.pt
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Mon, 29 Sep 2014 22:07:31 GMT
Content-Length: 343168
Content-Type: text/html; charset=utf-8
Access-Control-Allow-Origin: *
Set-Cookie: ASP.NET_SessionId=yaas3dnaj2st05cibgoribfl; path=/; HttpOnly
X-Powered-By: ASP.NET
...343168 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: fpatletismo.pt
Referer: http://www.google.com/search?q=fpatletismo.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fpatletismo.pt
Referer: http://www.google.com/search?q=fpatletismo.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://fpatletismo.pt/ | 200 OK Content-Length: 300591 Content-Type: text/html | clean |
http://www.fpatletismo.pt/ScriptsJquery/modernizr.js | 200 OK Content-Length: 9880 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/custom-form-elements.js | 200 OK Content-Length: 6642 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/ecommerce.js | 200 OK Content-Length: 4821 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/formGeneric.js | 200 OK Content-Length: 4466 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/global.js | 200 OK Content-Length: 3166 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/googleMaps.js | 200 OK Content-Length: 8730 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/telerik.js | 200 OK Content-Length: 12945 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/flash/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/x-javascript | clean |
http://www.fpatletismo.pt/Scripts/flash/swfobject_modified.js | 200 OK Content-Length: 22365 Content-Type: application/x-javascript | clean |
http://fpatletismo.pt//ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js/ | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://fpatletismo.pt/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://fpatletismo.pt/WebResource.axd?d=z-zNwDrns1KvHsW-3tfhZVi0drtuixxsLgjh0t3RTsCZjBI3dbE1dnQwAsm7lmPmHGE6L1Z3vqWe7Vb1zuam1VnUXXxjg-cbRyxrTdEslso1&t=635195661120000000 | 200 OK Content-Length: 22346 Content-Type: application/x-javascript | clean |
http://fpatletismo.pt/Telerik.Web.UI.WebResource.axd?_TSM_HiddenField_=RadScriptManager1_TSM&compress=1&_TSM_CombinedScripts_=%3b%3bSystem.Web.Extensions%2c+Version%3d4.0.0.0%2c+Culture%3dneutral%2c+PublicKeyToken%3d31bf3856ad364e35%3apt-PT%3afa6755fd-da1a-49d3-9eb4-1e473e780ecd%3aea597d4b%3ab25378d2%3bTelerik.Web.UI%2c+Version%3d2014.1.225.40%2c+Culture%3dneutral%2c+PublicKeyToken%3d121fae78165ba <span>...270 symbols skipped</span> | 200 OK Content-Length: 300544 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fpatletismo.pt
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fpatletismo.pt/
Result: fpatletismo.pt is not infected or malware details are not published yet.
Result: fpatletismo.pt is not infected or malware details are not published yet.