Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: equinoxe-guyane.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Oct 2014 16:44:11 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Set-Cookie: 720planBAK=R3744885384; path=/; expires=Fri, 10-Oct-2014 17:49:33 GMT
Set-Cookie: 720plan=R3438473405; path=/; expires=Fri, 10-Oct-2014 17:53:50 GMT
X-Pingback: http://equinoxe-guyane.com/site2012/xmlrpc.php
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: equinoxe-guyane.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 10 Oct 2014 16:44:11 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Set-Cookie: 720planBAK=R3744885384; path=/; expires=Fri, 10-Oct-2014 17:49:33 GMT
Set-Cookie: 720plan=R3438473405; path=/; expires=Fri, 10-Oct-2014 17:53:50 GMT
X-Pingback: http://equinoxe-guyane.com/site2012/xmlrpc.php
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: equinoxe-guyane.com
Referer: http://www.google.com/search?q=equinoxe-guyane.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: equinoxe-guyane.com
Referer: http://www.google.com/search?q=equinoxe-guyane.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://equinoxe-guyane.com/ | 200 OK Content-Length: 48683 Content-Type: text/html | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/compact-wp-audio-player/js/soundmanager2-nodebug-jsmin.js?ver=3.3.2 | 200 OK Content-Length: 34019 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 93889 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/wp-imageflow2/js/imageflowplus.js?ver=3.3.2 | 200 OK Content-Length: 26643 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/form-lightbox/colorbox/jquery.colorbox-min.js?ver=1.3.4 | 200 OK Content-Length: 9593 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/themes/u-design/sliders/piecemaker/js/swfobject.js?ver=1.5 | 200 OK Content-Length: 6880 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/themes/u-design/scripts/prettyPhoto/js/jquery.prettyPhoto.js?ver=3.1.3 | 200 OK Content-Length: 24867 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/themes/u-design/scripts/superfish-1.4.8/js/superfish.combined.js?ver=1.0.0 | 200 OK Content-Length: 5387 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/themes/u-design/scripts/script.js?ver=1.0 | 200 OK Content-Length: 7253 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/flash-video-player/swfobject.js | 200 OK Content-Length: 9759 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/m-vslider/js/rslider.js | 200 OK Content-Length: 4157 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/carousel_wpress/include/js/jquery.mousewheel.min.js?ver=3.3.2 | 200 OK Content-Length: 1172 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/carousel_wpress/include/js/jquery.carousel-1.1.min.js?ver=3.3.2 | 200 OK Content-Length: 16050 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/lightbox-plus/js/jquery.colorbox-min.js?ver=1.3.17.2 | 200 OK Content-Length: 9517 Content-Type: application/javascript | clean |
http://equinoxe-guyane.com/site2012/wp-content/plugins/contact-form-7/includes/js/jquery.form.js?ver=3.09 | 200 OK Content-Length: 14238 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=equinoxe-guyane.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://equinoxe-guyane.com/
Result: equinoxe-guyane.com is not infected or malware details are not published yet.
Result: equinoxe-guyane.com is not infected or malware details are not published yet.