Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=judicialstaff.cold10.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: centralvalleyscore.org
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=900
Connection: close
Date: Fri, 26 Dec 2014 05:24:33 GMT
Age: 0
Location: http://centralvalley.score.org/
Server: Microsoft-IIS/7.5
Content-Length: 0
Content-Type: text/html
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...0 bytes of data.
GET / HTTP/1.1
Host: centralvalleyscore.org
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=900
Connection: close
Date: Fri, 26 Dec 2014 05:24:33 GMT
Age: 0
Location: http://centralvalley.score.org/
Server: Microsoft-IIS/7.5
Content-Length: 0
Content-Type: text/html
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: centralvalleyscore.org
Referer: http://www.google.com/search?q=centralvalleyscore.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: centralvalleyscore.org
Referer: http://www.google.com/search?q=centralvalleyscore.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://judicialstaff.cold10.com/ | HTTP/1.1 200 OK Cache-Control: private, no-cache Date: Sun, 08 Mar 2015 17:13:05 GMT Pragma: no-cache Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 872 Content-Type: text/html; charset=UTF-8 Expires: Mon, 22 Jul 2002 11:12:01 GMT Set-Cookie: vsid=916vr1733803853204800; expires=Fri, 06-Mar-2020 17:13:05 GMT; path=/; domain=judicialstaff.cold10.com; httponly X-Cnection: close | malicious |
http://ww2.cold10.com/?folio=435329566&bkt=10279 | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Keep-Alive Date: Sun, 08 Mar 2015 17:13:06 GMT Pragma: no-cache Server: Apache Vary: Accept-Encoding,User-Agent Content-Type: text/html; charset=UTF-8 Keep-Alive: timeout=5, max=110 Set-Cookie: gvc=921vr1733803863604901; expires=Fri, 06-Mar-2020 17:13:06 GMT; path=/; domain=ww2.cold10.com; httponly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKrfIMFkSaoTSqKmC+BrghK0CpDHc0MuVzmMHin8LIORhpXbped+iYhSnZurWnEO0zcKcVIrzp026LVc5pMB9bUCAwEAAQ==_dFfH76qibr9HOtAjIAxes/mE+VkAmTyrldnjnzzeLPj96UvhZDgFkkBzYrkxZFYv1aOE5M7luXwzxEOj6qsj7g== | clean |
http://ww2.cold10.com/rg-erdr.php?_rpo=t | HTTP/1.1 302 Found Connection: Keep-Alive Date: Sun, 08 Mar 2015 17:13:07 GMT Location: http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?client=&domain_name=ww2.cold10.com&channel=&drid=&output=html Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Keep-Alive: timeout=5, max=81 | clean |
http://dp.g.doubleclick.net/apps/domainpark/domainpark.cgi?client=&domain_name=ww2.cold10.com&channel=&drid=&output=html | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://dp.g.doubleclick.net/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://dp.g.doubleclick.net//www.google.com/ | 404 Not Found Content-Length: 1440 Content-Type: text/html | clean |