Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: www3.cedare.int
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Date: Sat, 04 Oct 2014 01:15:33 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.0
Content-Length: 45625
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sat, 04 Oct 2014 01:15:34 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 53f94ae28286625d467fde6c991deb78=m6p3g2ui4ujsgrj15rs4kdsr87; path=/
X-Powered-By: ASP.NET
...45625 bytes of data.
GET / HTTP/1.1
Host: www3.cedare.int
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Date: Sat, 04 Oct 2014 01:15:33 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.0
Content-Length: 45625
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Sat, 04 Oct 2014 01:15:34 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 53f94ae28286625d467fde6c991deb78=m6p3g2ui4ujsgrj15rs4kdsr87; path=/
X-Powered-By: ASP.NET
...45625 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: www3.cedare.int
Referer: http://www.google.com/search?q=www3.cedare.int
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: www3.cedare.int
Referer: http://www.google.com/search?q=www3.cedare.int
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www3.cedare.int/ | 200 OK Content-Length: 45625 Content-Type: text/html | clean |
http://www3.cedare.int/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/x-javascript | clean |
http://www3.cedare.int/modules/mod_flashmod/mod_flashmod.js | 200 OK Content-Length: 3776 Content-Type: application/x-javascript | clean |
http://www3.cedare.int/templates/yo_white15_1000_3/script.js | 200 OK Content-Length: 8650 Content-Type: application/x-javascript | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=46&Itemid=58 | 200 OK Content-Length: 19120 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=111&Itemid=89 | 200 OK Content-Length: 18796 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=section&layout=blog&id=9&Itemid=65 | 200 OK Content-Length: 34096 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=110&Itemid=101 | 200 OK Content-Length: 16915 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=54&Itemid=64 | 200 OK Content-Length: 23912 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=74&Itemid=66 | 200 OK Content-Length: 18807 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=79&Itemid=67 | 200 OK Content-Length: 17660 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=106&Itemid=95 | 200 OK Content-Length: 14143 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=106&Itemid=93 | 200 OK Content-Length: 14143 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=section&layout=blog&id=10&Itemid=73 | 200 OK Content-Length: 35125 Content-Type: text/html | clean |
http://www3.cedare.int/index.php?option=com_content&view=article&id=107&Itemid=99 | 200 OK Content-Length: 17503 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=www3.cedare.int
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://www3.cedare.int/
Result: www3.cedare.int is not infected or malware details are not published yet.
Result: www3.cedare.int is not infected or malware details are not published yet.