Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: howardbeach.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 09 Oct 2014 15:09:31 GMT
Server: Microsoft-IIS/8.0
Content-Length: 59201
Content-Type: text/html; charset=utf-8
Set-Cookie: .ASPXANONYMOUS=mswt3mQa0AEkAAAAZDE0ZGY5ZmItYjk3Yy00ZDk2LTkyZGUtMjQ4ZmYxMWMxNGUw0; expires=Thu, 18-Dec-2014 01:49:32 GMT; path=/; HttpOnly
Set-Cookie: DotNetNukeAnonymous=233f9635-f37b-4900-9532-dea0f0ae986e; expires=Thu, 09-Oct-2014 15:29:32 GMT; path=/; HttpOnly
Set-Cookie: language=en-US; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-UA-Compatible: IE=EmulateIE9
...59201 bytes of data.
GET / HTTP/1.1
Host: howardbeach.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 09 Oct 2014 15:09:31 GMT
Server: Microsoft-IIS/8.0
Content-Length: 59201
Content-Type: text/html; charset=utf-8
Set-Cookie: .ASPXANONYMOUS=mswt3mQa0AEkAAAAZDE0ZGY5ZmItYjk3Yy00ZDk2LTkyZGUtMjQ4ZmYxMWMxNGUw0; expires=Thu, 18-Dec-2014 01:49:32 GMT; path=/; HttpOnly
Set-Cookie: DotNetNukeAnonymous=233f9635-f37b-4900-9532-dea0f0ae986e; expires=Thu, 09-Oct-2014 15:29:32 GMT; path=/; HttpOnly
Set-Cookie: language=en-US; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-UA-Compatible: IE=EmulateIE9
...59201 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: howardbeach.com
Referer: http://www.google.com/search?q=howardbeach.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: howardbeach.com
Referer: http://www.google.com/search?q=howardbeach.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://howardbeach.com/ | 200 OK Content-Length: 59201 Content-Type: text/html | clean |
http://howardbeach.com/Resources/Shared/Scripts/jquery/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: application/javascript | clean |
http://howardbeach.com/WebResource.axd?d=vOSt1M-U7H1yYUw9MFgKqXYl2axPjO03_HCi_DewJeemBYuE07WWRFolzF3U1dn3MQ-vbjt4SkYeZmws0&t=635195345620019999 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://howardbeach.com/js/dnncore.js | 200 OK Content-Length: 13185 Content-Type: application/javascript | clean |
http://howardbeach.com/desktopmodules/LiveContent/js/swfobject.js | 200 OK Content-Length: 6722 Content-Type: application/javascript | clean |
http://howardbeach.com/desktopmodules/LiveContent/js/livecontent.js | 200 OK Content-Length: 20056 Content-Type: application/javascript | clean |
http://howardbeach.com/desktopmodules/LiveContent/js/livecontent-html.js | 200 OK Content-Length: 6500 Content-Type: application/javascript | clean |
http://howardbeach.com/controls/SolpartMenu/spmenu.js | 200 OK Content-Length: 67819 Content-Type: application/javascript | clean |
http://howardbeach.com/ScriptResource.axd?d=hsTkzq-fUIJNc3H6glWmYXsTgL-gAqQZR6-fU4Hq0Kj652kjjbnJI9jUAh6GbwQYxWgkKLdHGpzTBxSpV3njl9Y23o1ZSEhNVVnaT1jyI2YbUBwFE0MMXhrbERPuGTYMikYAZW-PeoFoRaDhiaYTOUnDVhk1&t=fffffffff98cfb72 | 200 OK Content-Length: 100149 Content-Type: application/x-javascript | clean |
http://howardbeach.com/ScriptResource.axd?d=_LaWcf1Xopi8aO9acR3dG27vVtvKNsGnn4Q3UeP562bRYclPjx19jFxI0CBwxpZrxAhGPdrswrV8fgfxzVGTQWl4VkTyf4PLESYbsx0U6ZsQgOyjOobqcQ09-cp6rDmhzj6qrXevyYRhRQczp-gmufxU2-y67ZmPmX57iw2&t=fffffffff98cfb72 | 200 OK Content-Length: 32254 Content-Type: application/x-javascript | clean |
http://howardbeach.com/js/dnn.js | 200 OK Content-Length: 17506 Content-Type: application/javascript | clean |
http://howardbeach.com/js/dnn.xml.js | 200 OK Content-Length: 4461 Content-Type: application/javascript | clean |
http://howardbeach.com/js/dnn.xmlhttp.js | 200 OK Content-Length: 5518 Content-Type: application/javascript | clean |
http://netweather.accuweather.com/adcbin/netweather_v2/netweatherV2.asp?partner=netweather&tStyle=normal&logo=1&zipcode=11414&lang=eng&size=8&theme=&metric=0&target=_new | 200 OK Content-Length: 8295 Content-Type: text/javascript | clean |
http://howardbeach.com/Resources/Shared/scripts/initWidgets.js | 200 OK Content-Length: 1311 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=howardbeach.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://howardbeach.com/
Result: howardbeach.com is not infected or malware details are not published yet.
Result: howardbeach.com is not infected or malware details are not published yet.