Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=goalslam.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://goalslam.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: scandinavianpokerawards.com
Result:
HTTP/1.1 200 OK
Date: Tue, 17 Jun 2014 07:41:05 GMT
Accept-Ranges: bytes
ETag: "aa341616f090c91:1d87"
Server: Microsoft-IIS/6.0
Content-Length: 16675
Content-Location: http://scandinavianpokerawards.com/index.html
Content-Type: text/html
Last-Modified: Tue, 17 Feb 2009 11:08:39 GMT
X-Powered-By: ASP.NET
...16675 bytes of data.
GET / HTTP/1.1
Host: scandinavianpokerawards.com
Result:
HTTP/1.1 200 OK
Date: Tue, 17 Jun 2014 07:41:05 GMT
Accept-Ranges: bytes
ETag: "aa341616f090c91:1d87"
Server: Microsoft-IIS/6.0
Content-Length: 16675
Content-Location: http://scandinavianpokerawards.com/index.html
Content-Type: text/html
Last-Modified: Tue, 17 Feb 2009 11:08:39 GMT
X-Powered-By: ASP.NET
...16675 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: scandinavianpokerawards.com
Referer: http://www.google.com/search?q=scandinavianpokerawards.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: scandinavianpokerawards.com
Referer: http://www.google.com/search?q=scandinavianpokerawards.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://goalslam.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Feb 2015 15:15:45 GMT Location: http://www.comeonyouspurs.com/ Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: livesession_id=3254ff9f1f546fcbf072d304013941be; path=/; domain=.comeonyouspurs.com; httponly X-Powered-By: PleskLin | malicious |
http://www.comeonyouspurs.com/ | 200 OK Content-Length: 74625 Content-Type: text/html | clean |
http://www.comeonyouspurs.com/public/min/index.php?ipbv=8c72ee598ea6029ea90be962c9d4c530&g=js | 200 OK Content-Length: 193732 Content-Type: application/x-javascript | clean |
http://www.comeonyouspurs.com/public/min/index.php?ipbv=8c72ee598ea6029ea90be962c9d4c530&charset=iso-8859-1&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.board.js | 200 OK Content-Length: 129184 Content-Type: application/x-javascript | clean |
http://www.comeonyouspurs.com/public/js/finalCountdown/jquery.countdown.min.js | 200 OK Content-Length: 12990 Content-Type: text/javascript | clean |
http://www.comeonyouspurs.com/public/js/ips.finalCountdown.js?_v=11000 | 200 OK Content-Length: 2995 Content-Type: text/javascript | clean |
http://goalslam.com/./index.php?act=idx | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Feb 2015 15:15:49 GMT Location: http://www.comeonyouspurs.com/./index.php?act=idx Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: livesession_id=7a90c3ebcd8bc6cd88c96b115f2b3223; path=/; domain=.comeonyouspurs.com; httponly X-Powered-By: PleskLin | malicious |
http://www.comeonyouspurs.com/./index.php?act=idx | 200 OK Content-Length: 74602 Content-Type: text/html | clean |
http://www.comeonyouspurs.com/./ | 200 OK Content-Length: 74559 Content-Type: text/html | clean |
http://www.comeonyouspurs.com/index.php?s=81994a1f5ff7e5345a27f3ea36984f6c&app=core&module=global§ion=login | 200 OK Content-Length: 30785 Content-Type: text/html | clean |
http://www.comeonyouspurs.com/public/min/index.php?ipbv=8c72ee598ea6029ea90be962c9d4c530&charset=iso-8859-1&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.signin.js | 200 OK Content-Length: 124054 Content-Type: application/x-javascript | clean |
http://www.comeonyouspurs.com/index.php?s=81994a1f5ff7e5345a27f3ea36984f6c&app=core&module=global§ion=register | 200 OK Content-Length: 36603 Content-Type: text/html | clean |
http://www.comeonyouspurs.com/public/min/index.php?ipbv=8c72ee598ea6029ea90be962c9d4c530&charset=iso-8859-1&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js,public/js/ips.register.js | 200 OK Content-Length: 127781 Content-Type: application/x-javascript | clean |
http://www.google.com/recaptcha/api/challenge?k=6LcpWAMAAAAAAA4klDtDNuDH6LsGgBX5mBoJ3naK&hl=en | 200 OK Content-Length: 8688 Content-Type: text/javascript | clean |
http://www.comeonyouspurs.com/index.php?s=81994a1f5ff7e5345a27f3ea36984f6c&app=core&module=global§ion=navigation&inapp=core | 200 OK Content-Length: 28500 Content-Type: text/html | clean |
http://www.comeonyouspurs.com/public/min/index.php?ipbv=8c72ee598ea6029ea90be962c9d4c530&charset=iso-8859-1&f=public/js/ipb.js,cache/lang_cache/1/ipb.lang.js,public/js/ips.hovercard.js,public/js/ips.quickpm.js | 200 OK Content-Length: 123100 Content-Type: application/x-javascript | clean |
http://www.comeonyouspurs.com/index.php?s=81994a1f5ff7e5345a27f3ea36984f6c&app=core&module=search&do=viewNewContent&search_app=forums | 403 Forbidden Content-Length: 28052 Content-Type: text/html | clean |