Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lasercuttinginc.org
Result:
HTTP/1.1 200 OK
Date: Sat, 21 Jun 2014 22:55:45 GMT
Accept-Ranges: bytes
ETag: "dc8bcdb5525fcf1:9ba96f"
Server: Microsoft-IIS/6.0
Content-Length: 13687
Content-Location: http://lasercuttinginc.org/index.html
Content-Type: text/html
Last-Modified: Thu, 24 Apr 2014 00:18:25 GMT
X-Powered-By: ASP.NET
...13687 bytes of data.
GET / HTTP/1.1
Host: lasercuttinginc.org
Result:
HTTP/1.1 200 OK
Date: Sat, 21 Jun 2014 22:55:45 GMT
Accept-Ranges: bytes
ETag: "dc8bcdb5525fcf1:9ba96f"
Server: Microsoft-IIS/6.0
Content-Length: 13687
Content-Location: http://lasercuttinginc.org/index.html
Content-Type: text/html
Last-Modified: Thu, 24 Apr 2014 00:18:25 GMT
X-Powered-By: ASP.NET
...13687 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: lasercuttinginc.org
Referer: http://www.google.com/search?q=lasercuttinginc.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lasercuttinginc.org
Referer: http://www.google.com/search?q=lasercuttinginc.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://lasercuttinginc.org/ | HTTP/1.1 200 OK Date: Sat, 21 Jun 2014 22:55:45 GMT Accept-Ranges: bytes ETag: "dc8bcdb5525fcf1:9ba96f" Server: Microsoft-IIS/6.0 Content-Length: 13687 Content-Location: http://lasercuttinginc.org/index.html Content-Type: text/html Last-Modified: Thu, 24 Apr 2014 00:18:25 GMT X-Powered-By: ASP.NET | clean |
http://lasercuttinginc.org/index.html | 200 OK Content-Length: 13687 Content-Type: text/html | clean |
http://lasercuttinginc.org/Scripts/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/x-javascript | clean |
http://lasercuttinginc.org/2_about.html | 200 OK Content-Length: 11609 Content-Type: text/html | clean |
http://lasercuttinginc.org/3_services.html | 200 OK Content-Length: 10884 Content-Type: text/html | clean |
http://lasercuttinginc.org/4_technologies.html | 200 OK Content-Length: 15382 Content-Type: text/html | clean |
http://lasercuttinginc.org/5_gallery.html | 200 OK Content-Length: 16497 Content-Type: text/html | clean |
http://lasercuttinginc.org/insert_active_flash.js | 200 OK Content-Length: 1089 Content-Type: application/x-javascript | clean |
http://lasercuttinginc.org/quote.aspx | 200 OK Content-Length: 24435 Content-Type: text/html | clean |
http://lasercuttinginc.org/WebResource.axd?d=mrDuAnEo-9qIpIHYeSXPIz_JPPRaUXrXaCIDIVaPU9aztE1p2Z6XVrY9tVror83HXZWRYYW750ZYvKCRV0Lqx9nxxKc1&t=635296529484135000 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://lasercuttinginc.org/WebResource.axd?d=lRcKdl3z4w1wkthrGQFhnqYIQaw0Lxsd5c5raRS_MQzy8UmiBUhNMExmcOFsAkcU7CNN4dZLe7vGHRYOKaUJdT8b_t41&t=635296529484135000 | 200 OK Content-Length: 21547 Content-Type: application/x-javascript | clean |
http://lasercuttinginc.org/WebResource.axd?d=r6P77rrOcb4mmjaHbhFgBkIJzG0amLxwEPkO1IIebKVIOnyrlPnQRZWzBt9TfiYDrRkiS7xn4NqPROX_mNUrI6gmt3A1&t=635296529484135000 | 200 OK Content-Length: 3005 Content-Type: application/x-javascript | clean |
http://lasercuttinginc.org/7_contact.html | 200 OK Content-Length: 13161 Content-Type: text/html | clean |
http://lasercuttinginc.org/employees.php | 200 OK Content-Length: 10764 Content-Type: text/html | clean |
http://lasercuttinginc.org/test404page.js | 404 Not Found Content-Length: 652 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1652 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lasercuttinginc.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lasercuttinginc.org/
Result: lasercuttinginc.org is not infected or malware details are not published yet.
Result: lasercuttinginc.org is not infected or malware details are not published yet.