Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=virtual-illumination.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 52kun.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 05 Sep 2014 19:20:33 GMT
Pragma: no-cache
Server: ASERVER/1.2.9-3
Vary: Cookie
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=7cjp873oq14puems8a7gkfd166; path=/
Set-Cookie: PHPSESSID=gunfmd76pf2h8i6ci9rop5mo53; path=/
Set-Cookie: mc_session_ids[default]=a54c40091797fa4ff89b5d321dc8c328c04f2d24; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/; httponly
Set-Cookie: mc_session_ids[multi][0]=7a399ca10be2970179459c2dce29718f8cb8b87b; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][1]=1387a779250fca22388961fe1b0ed29ffb94bdee; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][2]=fb14f70b8f289587557bea3e305e0248d2246e35; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][3]=391606095c0fee577f060f0ddde4ec3c62ec2627; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][4]=4e649918479d19f5cb9dbecedd5908b56c84d5ad; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
X-Pingback: http://52kun.com/blog/xmlrpc.php
X-Powered-By: PHP/5.3.29
X-Powered-By-Anquanbao: HIT from out-hk-zy-if3
GET / HTTP/1.1
Host: 52kun.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 05 Sep 2014 19:20:33 GMT
Pragma: no-cache
Server: ASERVER/1.2.9-3
Vary: Cookie
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=7cjp873oq14puems8a7gkfd166; path=/
Set-Cookie: PHPSESSID=gunfmd76pf2h8i6ci9rop5mo53; path=/
Set-Cookie: mc_session_ids[default]=a54c40091797fa4ff89b5d321dc8c328c04f2d24; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/; httponly
Set-Cookie: mc_session_ids[multi][0]=7a399ca10be2970179459c2dce29718f8cb8b87b; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][1]=1387a779250fca22388961fe1b0ed29ffb94bdee; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][2]=fb14f70b8f289587557bea3e305e0248d2246e35; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][3]=391606095c0fee577f060f0ddde4ec3c62ec2627; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
Set-Cookie: mc_session_ids[multi][4]=4e649918479d19f5cb9dbecedd5908b56c84d5ad; expires=Fri, 05-Sep-2014 18:37:32 GMT; path=/
X-Pingback: http://52kun.com/blog/xmlrpc.php
X-Powered-By: PHP/5.3.29
X-Powered-By-Anquanbao: HIT from out-hk-zy-if3
Second query (visit from search engine):
GET / HTTP/1.1
Host: 52kun.com
Referer: http://www.google.com/search?q=52kun.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 52kun.com
Referer: http://www.google.com/search?q=52kun.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://virtual-illumination.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 25 May 2014 17:37:10 GMT Location: http://www.innea.de/ Server: Apache/2.2.27 (Unix) Vary: Cookie Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: wordpress_polylang=en; expires=Mon, 25-May-2015 17:37:10 GMT; path=/ X-Pingback: http://www.innea.de/wordpress/xmlrpc.php X-Powered-By: PHP/5.3.28 | malicious |
http://www.innea.de/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 25 May 2014 17:37:10 GMT Location: http://www.innea.de/en/ Server: Apache/2.2.27 (Unix) Vary: Cookie Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.innea.de/wordpress/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://www.innea.de/en/ | 200 OK Content-Length: 21545 Content-Type: text/html | clean |
http://www.innea.de/wordpress/wp-includes/js/prototype.js?ver=1.6.1 | 200 OK Content-Length: 139854 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-includes/js/scriptaculous/wp-scriptaculous.js?ver=1.8.3 | 200 OK Content-Length: 2943 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-includes/js/scriptaculous/effects.js?ver=1.8.3 | 200 OK Content-Length: 38471 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/plugins/wp-lightbox-2/lightbox.js?ver=1.8 | 200 OK Content-Length: 21406 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 93889 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/plugins/wp-video-lightbox/js/jquery.prettyPhoto.js?ver=3.1.3 | 200 OK Content-Length: 24867 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/plugins/nextgen-gallery/js/jquery.cycle.all.min.js?ver=2.9995 | 200 OK Content-Length: 26590 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.06 | 200 OK Content-Length: 1791 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/themes/innea/js/jquery.dumbcrossfade-2.0.min.js?ver=3.3.1 | 200 OK Content-Length: 4431 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/themes/innea/js/top-menu.js?ver=3.3.1 | 200 OK Content-Length: 3832 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/themes/innea/js/main-menu.js?ver=3.3.1 | 200 OK Content-Length: 565 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/themes/innea/js/sub-menu.js?ver=3.3.1 | 200 OK Content-Length: 1142 Content-Type: application/javascript | clean |
http://www.innea.de/wordpress/wp-content/themes/innea/js/social.js?ver=3.3.1 | 200 OK Content-Length: 3879 Content-Type: application/javascript | clean |