Scanned pages/files
Request | Server response | Status |
http://go-alamo.us/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 29 Aug 2014 02:17:19 GMT Location: http://www.alamo.com Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
http://www.alamo.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 02:17:20 GMT Location: https://www.alamo.com/ Server: Apache Vary: Accept-Encoding Content-Length: 230 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.alamo.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 02:17:21 GMT Location: https://www.alamo.com/en_US/car-rental/home.html Server: Apache Vary: Accept-Encoding Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.alamo.com/en_us/car-rental/home.html | 404 Not Found Content-Length: 40808 Content-Type: text/html | clean |
https://www.alamo.com/etc/designs/common/clientlibs_30796/init.min.js | 200 OK Content-Length: 101 Content-Type: application/javascript | clean |
http://go-alamo.us/etc/designs/common/clientlibs_30796/jqueryOld.min.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 29 Aug 2014 02:17:26 GMT Location: http://www.alamo.com Server: Apache-Coyote/1.1 Content-Length: 0 | clean |
http://www.alamo.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 02:17:27 GMT Location: https://www.alamo.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 244 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.alamo.com/test404page.js | 404 Not Found Content-Length: 16338 Content-Type: text/html | clean |
https://www.alamo.com/etc/designs/common/clientlibs_30796/jqueryOld.min.js | 200 OK Content-Length: 303104 Content-Type: application/javascript | clean |
http://www.alamo.com/etc/clientlibs/granite/clientlibrarymanager.min.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 02:17:31 GMT Location: https://www.alamo.com/etc/clientlibs/granite/clientlibrarymanager.min.js Server: Apache Vary: Accept-Encoding Content-Length: 280 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.alamo.com/etc/clientlibs/granite/clientlibrarymanager.min.js | 200 OK Content-Length: 6478 Content-Type: application/javascript | clean |
http://www.alamo.com/etc/designs/common/clientlibs_30796/tealeaf.min.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 02:17:32 GMT Location: https://www.alamo.com/etc/designs/common/clientlibs_30796/tealeaf.min.js Server: Apache Vary: Accept-Encoding Content-Length: 280 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.alamo.com/etc/designs/common/clientlibs_30796/tealeaf.min.js | 200 OK Content-Length: 59314 Content-Type: application/javascript | clean |
http://www.alamo.com//libs.coremetrics.com/eluminate.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 29 Aug 2014 02:17:34 GMT Location: https://www.alamo.com/libs.coremetrics.com/eluminate.js/ Server: Apache Vary: Accept-Encoding Content-Length: 264 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.alamo.com/libs.coremetrics.com/eluminate.js/ | 404 Not Found Content-Length: 16338 Content-Type: text/html | clean |
https://www.alamo.com//libs.coremetrics.com/eluminate.js/ | 404 Not Found Content-Length: 16338 Content-Type: text/html | clean |
https://www.alamo.com/en_US/tourSite/checkin.html | 200 OK Content-Length: 27933 Content-Type: text/html | clean |
https://www.alamo.com/en_US/tourSite/ | 404 Not Found Content-Length: 40925 Content-Type: text/html | clean |
https://www.alamo.com/en_US/car-rental/home.html | 200 OK Content-Length: 134546 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var axel = Math.random() + ""; var a = axel * 10000000000000; document.write('<iframe src="https://4332627.fls.doubleclick.net/activityi;src=4332627;type=alamospa;cat=alamo407;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); Antivirus reports:
| ||
https://www.alamo.com/en_US/car-rental/ | 404 Not Found Content-Length: 40925 Content-Type: text/html | clean |
https://www.alamo.com/en_US/car-rental/insider.html | 200 OK Content-Length: 79490 Content-Type: text/html | clean |
https://www.alamo.com/en_US/modals/forgot-username.modal.html | 200 OK Content-Length: 4416 Content-Type: text/html | clean |
https://www.alamo.com/en_US/modals/ | 404 Not Found Content-Length: 40925 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: go-alamo.us
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 29 Aug 2014 02:17:19 GMT
Location: http://www.alamo.com
Server: Apache-Coyote/1.1
Content-Length: 0
...0 bytes of data.
GET / HTTP/1.1
Host: go-alamo.us
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 29 Aug 2014 02:17:19 GMT
Location: http://www.alamo.com
Server: Apache-Coyote/1.1
Content-Length: 0
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: go-alamo.us
Referer: http://www.google.com/search?q=go-alamo.us
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: go-alamo.us
Referer: http://www.google.com/search?q=go-alamo.us
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=go-alamo.us
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://go-alamo.us/
Result: go-alamo.us is not infected or malware details are not published yet.
Result: go-alamo.us is not infected or malware details are not published yet.