Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xn--elpeista-g3a.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://xn--elpeista-g3a.com/ | 200 OK Content-Length: 85081 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: elpenista.com ...[91021 bytes skipped]... <td valign="top" align="center" class="back-lat-2"> <a href="http://www.tatankabooks.com" target="_blank" title=""><img src="images/banners/9.jpg" title="" alt="" width="220px"/></a> </td> </tr> <tr> <td valign="top" align="center" class="back-lat-2"> <a href="Mailto: info@elpenista.com" target="_blank" title="Sorteo camiseta"><img src="images/banners/102.jpg" title="Sorteo camiseta" alt="Sorteo camiseta" width="220px"/></a> </td> </tr> <tr> <td valign="top" align="center" class="back-lat-2"> <a href="" target="_blank" title="Gorri zuria"><img src="images/banners/103.jpg" title="Gorri zuria" alt="Gorri zuria" width="220px"/></a> ...[7419 bytes skipped]... | ||
http://xn--elpeista-g3a.com/js/jquery-1.4.2.js | 200 OK Content-Length: 170100 Content-Type: application/javascript | clean |
http://xn--elpeista-g3a.com/js/piroBox.1_2.js | 200 OK Content-Length: 15973 Content-Type: application/javascript | clean |
http://xn--elpeista-g3a.com/js/opacity.js | 200 OK Content-Length: 291 Content-Type: application/javascript | clean |
http://xn--elpeista-g3a.com/js/jquery.corner.js | 200 OK Content-Length: 10307 Content-Type: application/javascript | clean |
http://affiliatesys.interwetten.com/ad.aspx?pid=7044&bid=6167 | 200 OK Content-Length: 346 Content-Type: text/html | clean |
http://affiliatesys.interwetten.com/redirect.aspx?bid=6167&pid=7044&zid=0&pbg=0&cid=0&ctcid=0&mid=0&sid=0 | HTTP/1.1 301 Moved Permanently Cache-Control: private Date: Sun, 25 May 2014 03:08:08 GMT Location: https://www.interwetten.com/go/?dl=361&b=aff_100EuroNK_EN&utm_campaign=SB_NK&utm_content=EN_100EUR_Frau&utm_medium=banner&utm_source=affiliate&b=af_5B4DCCE1C61A410FA8336401F0A84777 Server: Microsoft-IIS/8.5 Content-Length: 0 Content-Type: text/html P3P: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies" Set-Cookie: NetRefer_CookieUniTrack_C=%5b%7b%22PID%22%3a7044%2c%22BID%22%3a6167%2c%22DateTimeStamp%22%3a%22%5c%2fDate(1400987288664)%5c%2f%22%2c%22CookieTag%22%3a%2261677044642251861291C201452558%22%7d%5d; expires=Fri, 31-Dec-9999 23:59:59 GMT; path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
https://www.interwetten.com/go/?dl=361&b=aff_100euronk_en&utm_campaign=sb_nk&utm_content=en_100eur_frau&utm_medium=banner&utm_source=affiliate&b=af_5b4dcce1c61a410fa8336401f0a84777 | HTTP/1.1 301 Moved Permanently Date: Sun, 25 May 2014 03:08:08 GMT Location: https://www.interwetten.com/en/go/?dl=361&b=aff_100euronk_en&utm_campaign=sb_nk&utm_content=en_100eur_frau&utm_medium=banner&utm_source=affiliate&b=af_5b4dcce1c61a410fa8336401f0a84777 Vary: Accept-Encoding Content-Length: 329 Content-Type: text/html; charset=UTF-8 Set-Cookie: __lb=!ROiTj9kuexjQAhNR8mZOkW5ELly5c4rPlO8WC5pcK32qWhF0Kz+L4ifS4GW1kJrWW8p/4QUqo2MHtcM=; path=/ Set-Cookie: bbbbbbbbbbbbbbb=OJNLFNANCGDKCGDBKIBJOOKOOJEPCINJMBKHAHFDDNLDIEDEIEBCDJPGCHDANHFIDOJOMDDDHGOBPIFBAFDDPFDLIBOMFFNLLIBLKPMOBGNIGEMBGNEBHEPPDPPHKPKP; HttpOnly; secure Set-Cookie: TS019dc611=01668a5a71f47a139137cb7da6cfecaa8b66de7320a96e1eb253408e54e11a934e382ccda6b86355fc6d1811233e7be01c3435afc0052c7f6d052e3c9df82dd439c8183490; Path=/ X-Powered-By: ASP.NET | clean |
https://www.interwetten.com/en/go/?dl=361&b=aff_100euronk_en&utm_campaign=sb_nk&utm_content=en_100eur_frau&utm_medium=banner&utm_source=affiliate&b=af_5b4dcce1c61a410fa8336401f0a84777 | HTTP/1.1 302 Found Cache-Control: private Date: Sun, 25 May 2014 03:08:09 GMT Location: /common/register.aspx?utm_source=affiliate&utm_medium=banner&utm_campaign=sb_nk&utm_content=en_100eur_frau Vary: Accept-Encoding Content-Length: 1764 Content-Type: text/html; charset=utf-8 Set-Cookie: ASP.NET_SessionId=5nbklui1nsfb333jinht1meg; path=/; HttpOnly Set-Cookie: ASP.NET_SessionId=5nbklui1nsfb333jinht1meg; path=/; HttpOnly Set-Cookie: __IW_COOKIE_CULTURE=en; expires=Sat, 25-May-2024 03:08:09 GMT; path=/ Set-Cookie: __IW_BANNER30_INFO=BANNER=aff_100euronk_en,af_5b4dcce1c61a410fa8336401f0a84777; expires=Tue, 24-Jun-2014 03:08:09 GMT; path=/ Set-Cookie: __lb=!8l52B/i5ln69JNNR8mZOkW5ELly5c8h0gzz9ke72eku0gzQh4uE93TuwGqS2fNOV7B1Fi4wGwG0UnMM=; path=/ Set-Cookie: bbbbbbbbbbbbbbb=MPLOAPNADJOHHACJNIEFJKICDONHDPCFIGLAJCIKDKCDOFJGEJGDFMBNKLCAPJNGDOIEJPMPKBIOJDGDAFJKMHMNBFOHLIFCOKFJLAEDLCMDIOIMIGLNENFNLEOKFHDC; HttpOnly; secure Set-Cookie: f5_cspm=1234; Set-Cookie: TS019dc611=01668a5a71aa8ebba8971ee427b7d465c5143fb3a70ede732fd17d18fe2e754d25df42f099b44b85b5acadeec3e6985bded5dc67ef1a8d5bb0f7a3d9fe11efdcbf7fcf6694f640cccdf5d7a3fc9d7d1f7e2f87a063ff245d8e4999a282b675447ed092c76e596691e93392aa6dad3e4e812256ab23baa40440d38e12b27fe1583df0c8f45376145dd46f9fd8fb904a08384d6a008a; Path=/ X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
https://www.interwetten.com/common/register.aspx?utm_source=affiliate&utm_medium=banner&utm_campaign=sb_nk&utm_content=en_100eur_frau | HTTP/1.1 301 Moved Permanently Date: Sun, 25 May 2014 03:08:09 GMT Location: https://www.interwetten.com/en/common/register.aspx?utm_source=affiliate&utm_medium=banner&utm_campaign=sb_nk&utm_content=en_100eur_frau Vary: Accept-Encoding Content-Length: 270 Content-Type: text/html; charset=UTF-8 Set-Cookie: __lb=!s2qlKE3P/MmHN65R8mZOkW5ELly5c7Y7q8cFjaQHuCdVV8fkZ44njhWFf+XB2hMFqtiUHvOrHB2JRA0=; path=/ Set-Cookie: bbbbbbbbbbbbbbb=LHNKJPFPNLGOMLJJPPKJOCMJJBOFKNJCJLHODJIBPEIDGLNHMEFKJNGJGNHAMNNNDONEIGPEPNOKNNOMAFDKGLJJNNNOPCEHCBHDMNNLKHENPDAMJIPCPCANCMLHDJLD; HttpOnly; secure Set-Cookie: TS019dc611=01668a5a715dc134585ce3fb325bfc9b60a133d03c29ea55ceaa4043bfa5328eb7ec81018e08d0fe69c2515060dbdafdcb05e6ac18b55fc99789165fd95bee8560db9c7834; Path=/ X-Powered-By: ASP.NET | clean |
https://www.interwetten.com/en/common/register.aspx?utm_source=affiliate&utm_medium=banner&utm_campaign=sb_nk&utm_content=en_100eur_frau | 200 OK Content-Length: 115226 Content-Type: text/html | clean |
https://iwscripts.hs.llnwd.net/e1/common/source.js?build=Web Publish_20140520.2 | 200 OK Content-Length: 301603 Content-Type: text/javascript | clean |
http://affiliatesys.interwetten.com/WebResource.axd?d=CxtsLZ8U2hWculxytrm2Hf9MAyTB9K3XUUFgVrwMB4fWGJbY81YVihLpFWjuBiZSGTSHid3AUCaupyMXvfgIHrW6WKMxwTjjNxAd3hOntZ41&t=635147365028703554 | HTTP/1.1 302 Found Cache-Control: private Date: Sun, 25 May 2014 03:08:12 GMT Location: /blank.html?aspxerrorpath=/WebResource.axd Server: Microsoft-IIS/8.5 Vary: Accept-Encoding Content-Length: 159 Content-Type: text/html; charset=utf-8 P3P: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies" X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://affiliatesys.interwetten.com/blank.html?aspxerrorpath=/webresource.axd | 200 OK Content-Length: 49 Content-Type: text/html | clean |
http://affiliatesys.interwetten.com/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://affiliatesys.interwetten.com/WebResource.axd?d=w8rP3zgKmplfjGWi4drA1iNO9sYxcLJhzfnDjPYweVVRFip_JdB_DWzyD8hZ8hwGz-MyX4K9GKa34y8OpiovKX8IJBno4NWyk-ogXMxRJ8tewrbszHPeU3C-lAflQI0DYM6bz_gBBDs3fAmwMAVM7b7-LBmd6RpyRNgHWfMfaQU1&t=635363438321536082 | HTTP/1.1 302 Found Cache-Control: private Date: Sun, 25 May 2014 03:08:12 GMT Location: /blank.html?aspxerrorpath=/WebResource.axd Server: Microsoft-IIS/8.5 Vary: Accept-Encoding Content-Length: 159 Content-Type: text/html; charset=utf-8 P3P: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies" X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://affiliatesys.interwetten.com/WebResource.axd?d=0IyJSYOP7Sv62SmK88-fy9msxbQQEkc9CHfHi8DYrbZ_sBPM_dIchqRntZw72fhLgaUCCvFYulVa6vkx2sfvvp5lVWn1zuD17y80aDJMey81&t=635147365028703554 | HTTP/1.1 302 Found Cache-Control: private Date: Sun, 25 May 2014 03:08:12 GMT Location: /blank.html?aspxerrorpath=/WebResource.axd Server: Microsoft-IIS/8.5 Vary: Accept-Encoding Content-Length: 159 Content-Type: text/html; charset=utf-8 P3P: CP="This is not a P3P policy! It is used to bypass IEs problematic handling of cookies" X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xn--elpeista-g3a.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 25 May 2014 03:08:02 GMT
Pragma: no-cache
Server: Apache/2.2.13 (Unix) mod_ssl/2.2.13 OpenSSL/0.9.8g PHP/5.2.11 with Suhosin-Patch
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=utst9j5076lpeu4db76ug8rce2; path=/
Set-Cookie: public_usuario=deleted; expires=Sat, 25-May-2013 03:08:03 GMT
Set-Cookie: public_password=deleted; expires=Sat, 25-May-2013 03:08:03 GMT
Set-Cookie: public_recordar=deleted; expires=Sat, 25-May-2013 03:08:03 GMT
GET / HTTP/1.1
Host: xn--elpeista-g3a.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 25 May 2014 03:08:02 GMT
Pragma: no-cache
Server: Apache/2.2.13 (Unix) mod_ssl/2.2.13 OpenSSL/0.9.8g PHP/5.2.11 with Suhosin-Patch
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=utst9j5076lpeu4db76ug8rce2; path=/
Set-Cookie: public_usuario=deleted; expires=Sat, 25-May-2013 03:08:03 GMT
Set-Cookie: public_password=deleted; expires=Sat, 25-May-2013 03:08:03 GMT
Set-Cookie: public_recordar=deleted; expires=Sat, 25-May-2013 03:08:03 GMT
Second query (visit from search engine):
GET / HTTP/1.1
Host: xn--elpeista-g3a.com
Referer: http://www.google.com/search?q=xn--elpeista-g3a.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xn--elpeista-g3a.com
Referer: http://www.google.com/search?q=xn--elpeista-g3a.com
Result:
The result is similar to the first query. There are no suspicious redirects found.