Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vinterbadning.dk
Result:
GET / HTTP/1.1
Host: vinterbadning.dk
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: vinterbadning.dk
Referer: http://www.google.com/search?q=vinterbadning.dk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vinterbadning.dk
Referer: http://www.google.com/search?q=vinterbadning.dk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.vinterbadning.dk/ | HTTP/1.1 302 Object moved Cache-Control: no-store Cache-Control: private Date: Fri, 13 Jun 2014 17:44:37 GMT Pragma: no-cache Location: front.asp Server: Microsoft-IIS/6.0 Content-Length: 130 Content-Type: text/html Expires: Fri, 13 Jun 2014 17:44:37 GMT Set-Cookie: ASPSESSIONIDQQRRADSA=KCPNLKHBMDAJAOBLAIEPLJIA; path=/ X-Powered-By: ASP.NET | clean |
http://www.vinterbadning.dk/front.asp | HTTP/1.1 302 Object moved Cache-Control: private Date: Fri, 13 Jun 2014 17:44:37 GMT Location: http://jomsborg.vinterbadning.dk Server: Microsoft-IIS/6.0 Content-Length: 153 Content-Type: text/html Set-Cookie: ASPSESSIONIDQQRRADSA=MCPNLKHBEPANCECOIPFKGMHJ; path=/ X-Powered-By: ASP.NET | clean |
http://jomsborg.vinterbadning.dk/ | 200 OK Content-Length: 25681 Content-Type: text/html | clean |
http://jomsborg.vinterbadning.dk/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/x-javascript | clean |
http://jomsborg.vinterbadning.dk/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://jomsborg.vinterbadning.dk/wp-content/themes/jomsborgblue2013/script.js | 200 OK Content-Length: 5434 Content-Type: application/x-javascript | clean |
http://jomsborg.vinterbadning.dk/wp-includes/js/comment-reply.min.js?ver=3.9.1 | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://www.vinterbadning.dk/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vinterbadning.dk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vinterbadning.dk/
Result: vinterbadning.dk is not infected or malware details are not published yet.
Result: vinterbadning.dk is not infected or malware details are not published yet.