Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tasawak.com
Result:
GET / HTTP/1.1
Host: tasawak.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: tasawak.com
Referer: http://www.google.com/search?q=tasawak.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tasawak.com
Referer: http://www.google.com/search?q=tasawak.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.tasawak.com/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Thu, 25 Dec 2014 13:38:03 GMT Location: /shopping Server: Microsoft-IIS/6.0 Content-Length: 130 Content-Type: text/html Set-Cookie: ASPSESSIONIDQAACSRTR=PNBKKAPBNGNHNOKDDOHKLBDH; path=/ X-Powered-By: ASP.NET | clean |
http://www.tasawak.com/shopping | HTTP/1.1 302 Object moved Cache-Control: no-cache Date: Thu, 25 Dec 2014 13:38:04 GMT Pragma: no-cache Location: http://www.tasawak.com/shopping/ Server: Microsoft-IIS/6.0 Content-Length: 163 Content-Type: text/html | clean |
http://www.tasawak.com/shopping/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Thu, 25 Dec 2014 13:38:04 GMT Location: index2.asp Server: Microsoft-IIS/6.0 Content-Length: 131 Content-Type: text/html Set-Cookie: ASPSESSIONIDQAACSRTR=AOBKKAPBGNJLAEMGIEANFNMB; path=/ X-Powered-By: ASP.NET | clean |
http://www.tasawak.com/shopping/index2.asp | 200 OK Content-Length: 108129 Content-Type: text/html | clean |
http://www.tasawak.com/shopping/../Greetings.asp | HTTP/1.1 302 Object moved Cache-Control: private Date: Thu, 25 Dec 2014 13:38:08 GMT Location: /greetings.Friendship.asp Server: Microsoft-IIS/6.0 Content-Length: 146 Content-Type: text/html Set-Cookie: ASPSESSIONIDQAACSRTR=EOBKKAPBLDILHGCDAKKJPAHG; path=/ X-Powered-By: ASP.NET | clean |
http://www.tasawak.com/greetings.friendship.asp | 200 OK Content-Length: 30301 Content-Type: text/html | clean |
http://m1.nedstatbasic.net/basic.js | 500 Can't connect to m1.nedstatbasic.net:80 Content-Length: 194 Content-Type: text/plain | clean |
http://m1.nedstatbasic.net/test404page.js | 500 Can't connect to m1.nedstatbasic.net:80 Content-Length: 194 Content-Type: text/plain | clean |
http://www.tasawak.com/../Greetings.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../index2.asp?country=1 | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../daleelak.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../mobawaba.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../partners.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../egstreets.asp?country=1 | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../manageyourprofile.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../egydoctors.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../egypharmacies.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../egyhospitals.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.tasawak.com/../egymedicalcenters.asp | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tasawak.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tasawak.com/
Result: tasawak.com is not infected or malware details are not published yet.
Result: tasawak.com is not infected or malware details are not published yet.