Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fireworks.ivis.fi
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://fireworks.ivis.fi/ | 200 OK Content-Length: 42656 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: ivis.fi ...[39369 bytes skipped]... stoa.">vähintään 6 tunniksi</em> lisäysajankohdasta, uusin nosto ylimmäksi! Lähetä tekstiviesti <strong>TXT ILOTULITE <em title="Korvaa tämä oman aiheesi tunnuksella.">aihe-id</em></strong> numeroon <strong>17163</strong>.<br /> Hinta: €1,00<br /> Asiakaspalvelu: +358449990803 | payments@ivis.fi<br /> Palvelun toteutus: <a href="http://fortumo.fi/">fortumo.fi</a> </div> </div> </div> </div> </div> </div> <br /> <div> <div class="box1"> <div class="box_cont"> <div id="sp_block_51"> <div class="box_cont_border"> <h4>Hae sivustolta</h4> <form a ...[11925 bytes skipped]... | ||
http://www.ilotulite.net/theme/scripts/script.js?rc1 | 200 OK Content-Length: 44116 Content-Type: application/x-javascript | clean |
http://www.ilotulite.net/theme/scripts/theme.js?rc1 | 200 OK Content-Length: 2524 Content-Type: application/x-javascript | clean |
http://www.ilotulite.net/mobiquo/tapatalkdetect.js | 200 OK Content-Length: 1495 Content-Type: application/x-javascript | clean |
http://www.ilotulite.net/theme/scripts/sha1.js | 200 OK Content-Length: 5454 Content-Type: application/x-javascript | clean |
http://static.ak.fbcdn.net/connect.php/js/FB.Share | 200 OK Content-Length: 166093 Content-Type: application/x-javascript | clean |
http://fireworks.ivis.fi/ad.php?u=0&ad=rakettikeiu | HTTP/1.1 302 Found Connection: close Date: Sat, 10 May 2014 22:54:08 GMT Location: http://www.rakettikeiu.com/ Server: Apache/2.2.8 (Ubuntu) mod_jk/1.2.25 mod_python/3.3.1 Python/2.5.2 PHP/5.2.4-2ubuntu5.26 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.4-2ubuntu5.26 | clean |
http://www.rakettikeiu.com/ | 200 OK Content-Length: 25429 Content-Type: text/html | clean |
http://www.rakettikeiu.com/sites/default/files/js/js_1skC71C-maE_mjY6icwsa5kNHRJ7Xene_XRIpQXt398.js | 200 OK Content-Length: 96190 Content-Type: application/javascript | clean |
http://www.rakettikeiu.com/sites/default/files/js/js_06bl30VAr9G22I-0W4ekgLt3G2iX7CZbrtotRKefLsg.js | 200 OK Content-Length: 19017 Content-Type: application/javascript | clean |
http://widgets.twimg.com/j/2/widget.js | 200 OK Content-Length: 1489 Content-Type: application/javascript | clean |
http://www.rakettikeiu.com/sites/default/files/js/js_7kVKSOYKYDubxb4iBby9g2iPP8WoSPLJV53Jnq8F-74.js | 200 OK Content-Length: 3950 Content-Type: application/javascript | clean |
http://www.rakettikeiu.com/sites/default/files/js/js_yrrE8NY0PQ9lg3LqprIkMiPfO4LM9jCEr8h5TD-sNFI.js | 200 OK Content-Length: 37308 Content-Type: application/javascript | clean |
http://fireworks.ivis.fi/cart | 404 Not Found Content-Length: 959 Content-Type: text/html | clean |
http://fireworks.ivis.fi/test404page.js | 404 Not Found Content-Length: 959 Content-Type: text/html | clean |
http://fireworks.ivis.fi/all-products | 404 Not Found Content-Length: 959 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fireworks.ivis.fi
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Sat, 10 May 2014 22:54:04 GMT
Pragma: no-cache
Server: Apache/2.2.8 (Ubuntu) mod_jk/1.2.25 mod_python/3.3.1 Python/2.5.2 PHP/5.2.4-2ubuntu5.26 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8
Content-Type: text/html; charset=UTF-8
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sat, 10 May 2014 22:54:04 GMT
Set-Cookie: PHPSESSID=b05862ed6a823edceab556eb01a68cef; path=/
X-Powered-By: PHP/5.2.4-2ubuntu5.26
GET / HTTP/1.1
Host: fireworks.ivis.fi
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Sat, 10 May 2014 22:54:04 GMT
Pragma: no-cache
Server: Apache/2.2.8 (Ubuntu) mod_jk/1.2.25 mod_python/3.3.1 Python/2.5.2 PHP/5.2.4-2ubuntu5.26 with Suhosin-Patch mod_ssl/2.2.8 OpenSSL/0.9.8g mod_perl/2.0.3 Perl/v5.8.8
Content-Type: text/html; charset=UTF-8
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sat, 10 May 2014 22:54:04 GMT
Set-Cookie: PHPSESSID=b05862ed6a823edceab556eb01a68cef; path=/
X-Powered-By: PHP/5.2.4-2ubuntu5.26
Second query (visit from search engine):
GET / HTTP/1.1
Host: fireworks.ivis.fi
Referer: http://www.google.com/search?q=fireworks.ivis.fi
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fireworks.ivis.fi
Referer: http://www.google.com/search?q=fireworks.ivis.fi
Result:
The result is similar to the first query. There are no suspicious redirects found.