Scanned pages/files
| Request | Server response | Status |
http://soloterias.net.br/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 13:47:10 GMT Location: http://www.soloterias.net.br/ Server: ghs Content-Length: 226 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.08 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.soloterias.net.br/ | 200 OK Content-Length: 204765 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://texto-center.blogspot.com/ <iframe frameborder='no' height='0' scrolling='no' src='http://texto-center.blogspot.com/' width='0'> | ||
https://googledrive.com/host/0B_VFL5OZroyqT2VKNEZwcENKR2M | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 03 Mar 2015 13:47:12 GMT Pragma: no-cache Accept-Ranges: none Location: https://e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com/host/0B_VFL5OZroyqT2VKNEZwcENKR2M Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Access-Control-Allow-Credentials: false Access-Control-Allow-Headers: Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, X-ClientDetails, X-GData-Client, X-GData-Key, X-Goog-AuthUser, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Experiments, x-goog-iam-role, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, X-Goog-Visitor-Id, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Origin, X-Referer, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp Access-Control-Allow-Methods: GET,OPTIONS Access-Control-Allow-Origin: * Alternate-Protocol: 443:quic,p=0.08 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com/host/0b_vfl5ozroyqt2vknezwcenkr2m | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 03 Mar 2015 13:47:13 GMT Pragma: no-cache Accept-Ranges: none Location: https://50afea43ba096219ff1cedab19add7cbd1fbfd53-e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com/host/0b_vfl5ozroyqt2vknezwcenkr2m Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Access-Control-Allow-Credentials: false Access-Control-Allow-Headers: Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, X-ClientDetails, X-GData-Client, X-GData-Key, X-Goog-AuthUser, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Experiments, x-goog-iam-role, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, X-Goog-Visitor-Id, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Origin, X-Referer, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp Access-Control-Allow-Methods: GET,OPTIONS Access-Control-Allow-Origin: * Alternate-Protocol: 443:quic,p=0.08 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://50afea43ba096219ff1cedab19add7cbd1fbfd53-e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com/host/0b_vfl5ozroyqt2vknezwcenkr2m | 500 Can't connect to 50afea43ba096219ff1cedab19add7cbd1fbfd53-e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com:443 Content-Length: 274 Content-Type: text/plain | clean |
http://50afea43ba096219ff1cedab19add7cbd1fbfd53-e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com/test404page.js | 500 Can't connect to 50afea43ba096219ff1cedab19add7cbd1fbfd53-e25960fd6df8e3f45731196dbb68496589391aff.googledrive.com:80 Content-Length: 272 Content-Type: text/plain | clean |
https://googledrive.com/host/0B3_e6qoKxLQCWW91ZDJLVExkTFU | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 03 Mar 2015 13:47:13 GMT Pragma: no-cache Accept-Ranges: none Location: https://79974f5e9e1fd9583d09549b03330c38b2ed561c.googledrive.com/host/0B3_e6qoKxLQCWW91ZDJLVExkTFU Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Access-Control-Allow-Credentials: false Access-Control-Allow-Headers: Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, X-ClientDetails, X-GData-Client, X-GData-Key, X-Goog-AuthUser, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Experiments, x-goog-iam-role, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, X-Goog-Visitor-Id, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Origin, X-Referer, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp Access-Control-Allow-Methods: GET,OPTIONS Access-Control-Allow-Origin: * Alternate-Protocol: 443:quic,p=0.08 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://79974f5e9e1fd9583d09549b03330c38b2ed561c.googledrive.com/host/0b3_e6qokxlqcww91zdjlvexktfu | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 03 Mar 2015 13:47:13 GMT Pragma: no-cache Accept-Ranges: none Location: https://e0c203cf86a959f77f78860fdb6b717b610cc364-79974f5e9e1fd9583d09549b03330c38b2ed561c.googledrive.com/host/0b3_e6qokxlqcww91zdjlvexktfu Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Access-Control-Allow-Credentials: false Access-Control-Allow-Headers: Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, X-ClientDetails, X-GData-Client, X-GData-Key, X-Goog-AuthUser, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Experiments, x-goog-iam-role, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, X-Goog-Visitor-Id, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Origin, X-Referer, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp Access-Control-Allow-Methods: GET,OPTIONS Access-Control-Allow-Origin: * Alternate-Protocol: 443:quic,p=0.08 X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
https://e0c203cf86a959f77f78860fdb6b717b610cc364-79974f5e9e1fd9583d09549b03330c38b2ed561c.googledrive.com/host/0b3_e6qokxlqcww91zdjlvexktfu | 500 Can't connect to e0c203cf86a959f77f78860fdb6b717b610cc364-79974f5e9e1fd9583d09549b03330c38b2ed561c.googledrive.com:443 Content-Length: 274 Content-Type: text/plain | clean |
http://apis.google.com/js/plusone.js | 200 OK Content-Length: 12789 Content-Type: application/javascript | clean |
http://soloterias.net.br//pagead2.googlesyndication.com/pagead/show_ads.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 13:47:14 GMT Location: http://www.soloterias.net.br//pagead2.googlesyndication.com/pagead/show_ads.js/ Server: ghs Content-Length: 276 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.08 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.soloterias.net.br//pagead2.googlesyndication.com/pagead/show_ads.js/ | 404 Not Found Content-Length: 147929 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://texto-center.blogspot.com/ <iframe frameborder='no' height='0' scrolling='no' src='http://texto-center.blogspot.com/' width='0'> | ||
http://blogpager.com/dataolder.js | HTTP/1.1 302 Found Connection: close Date: Tue, 03 Mar 2015 13:47:15 GMT Location: http://error404.000webhost.com/? Server: Apache Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
http://error404.000webhost.com/? | 200 OK Content-Length: 17678 Content-Type: text/html | clean |
http://creative.xtendmedia.com/matomy/cf/ply/ply.js?pubid=50792397&mid=c51681034&wid=c51531274&popup=1&popunder=1&size=320x480&pop_times=2&pop_frequency=3600&mm_delay=0&mm_back_delay=300&numOfTimes=3&duration=1&period=24hour&close=1&openNewTab=true | 200 OK Content-Length: 2880 Content-Type: text/javascript | clean |
http://c.ctpsrv.com/ma.js?s=154926 | 200 OK Content-Length: 5095 Content-Type: text/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 20008 Content-Type: text/javascript | clean |
http://soloterias.net.br//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 13:47:17 GMT Location: http://www.soloterias.net.br//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: ghs Content-Length: 282 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.08 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.soloterias.net.br//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 147952 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://texto-center.blogspot.com/ <iframe frameborder='no' height='0' scrolling='no' src='http://texto-center.blogspot.com/' width='0'> | ||
http://widget.cidlessa.com.br/shots.js | 200 OK Content-Length: 3074 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12790 Content-Type: application/javascript | clean |
https://www.blogger.com/static/v1/widgets/2773501920-widgets.js | 200 OK Content-Length: 90097 Content-Type: text/javascript | clean |
http://soloterias.net.br//www.blogger.com/rearrange?blogID=6182403763524513282&widgetType=AdSense&widgetId=AdSense1&action=editWidget§ionId=header2/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 13:47:20 GMT Location: http://www.soloterias.net.br//www.blogger.com/rearrange?blogID=6182403763524513282&widgetType=AdSense&widgetId=AdSense1&action=editWidget§ionId=header2/ Server: ghs Content-Length: 369 Content-Type: text/html; charset=UTF-8 Alternate-Protocol: 80:quic,p=0.08 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.soloterias.net.br//www.blogger.com/rearrange?blogid=6182403763524513282&widgettype=adsense&widgetid=adsense1&action=editwidget§ionid=header2/ | 404 Not Found Content-Length: 148300 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://texto-center.blogspot.com/ <iframe frameborder='no' height='0' scrolling='no' src='http://texto-center.blogspot.com/' width='0'> | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: soloterias.net.br
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 03 Mar 2015 13:47:10 GMT
Location: http://www.soloterias.net.br/
Server: ghs
Content-Length: 226
Content-Type: text/html; charset=UTF-8
Alternate-Protocol: 80:quic,p=0.08
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
...226 bytes of data.
GET / HTTP/1.1
Host: soloterias.net.br
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 03 Mar 2015 13:47:10 GMT
Location: http://www.soloterias.net.br/
Server: ghs
Content-Length: 226
Content-Type: text/html; charset=UTF-8
Alternate-Protocol: 80:quic,p=0.08
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
...226 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: soloterias.net.br
Referer: http://www.google.com/search?q=soloterias.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: soloterias.net.br
Referer: http://www.google.com/search?q=soloterias.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=soloterias.net.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://soloterias.net.br/
Result: soloterias.net.br is not infected or malware details are not published yet.
Result: soloterias.net.br is not infected or malware details are not published yet.