Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rainbowguide.eu
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 18 Oct 2015 14:11:06 GMT
Pragma: no-cache
Server: cloudflare-nginx
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
CF-RAY: 2374d48d19b62ab5-WAW
Set-Cookie: __cfduid=df4a3c09d08cb097aaa8eb6c49df90e461445177463; expires=Mon, 17-Oct-16 14:11:03 GMT; path=/; domain=.rainbowguide.eu; HttpOnly
Set-Cookie: PHPSESSID=5vv17thujs4bu2rcc60rdvv2p5; path=/
X-Pingback: http://rainbowguide.eu/xmlrpc.php
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: rainbowguide.eu
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 18 Oct 2015 14:11:06 GMT
Pragma: no-cache
Server: cloudflare-nginx
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
CF-RAY: 2374d48d19b62ab5-WAW
Set-Cookie: __cfduid=df4a3c09d08cb097aaa8eb6c49df90e461445177463; expires=Mon, 17-Oct-16 14:11:03 GMT; path=/; domain=.rainbowguide.eu; HttpOnly
Set-Cookie: PHPSESSID=5vv17thujs4bu2rcc60rdvv2p5; path=/
X-Pingback: http://rainbowguide.eu/xmlrpc.php
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: rainbowguide.eu
Referer: http://www.google.com/search?q=rainbowguide.eu
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rainbowguide.eu
Referer: http://www.google.com/search?q=rainbowguide.eu
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://rainbowguide.eu/ | 200 OK Content-Length: 74770 Content-Type: text/html | clean |
http://rainbowguide.eu/warenkorb/ | 200 OK Content-Length: 37948 Content-Type: text/html | clean |
http://rainbowguide.eu/?ptype=login&page1=sign_in | 200 OK Content-Length: 39360 Content-Type: text/html | clean |
http://rainbowguide.eu/places/bars/ | 200 OK Content-Length: 55197 Content-Type: text/html | clean |
http://rainbowguide.eu/places/shops/ | 200 OK Content-Length: 55336 Content-Type: text/html | clean |
http://rainbowguide.eu/places/saunas/ | 200 OK Content-Length: 54967 Content-Type: text/html | clean |
http://rainbowguide.eu/places/cruising/ | 200 OK Content-Length: 54813 Content-Type: text/html | clean |
http://rainbowguide.eu/places/clubs/ | 200 OK Content-Length: 55361 Content-Type: text/html | clean |
http://rainbowguide.eu/places/cafes/ | 200 OK Content-Length: 54911 Content-Type: text/html | clean |
http://rainbowguide.eu/events | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 18 Oct 2015 14:11:30 GMT Pragma: no-cache Location: http://rainbowguide.eu/events/ Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT CF-RAY: 2374d52ae1c92afd-WAW Set-Cookie: __cfduid=dea212b9c295344abb7c56316a81255561445177489; expires=Mon, 17-Oct-16 14:11:29 GMT; path=/; domain=.rainbowguide.eu; HttpOnly Set-Cookie: PHPSESSID=1evpptlpi9rus1qkhhnd75a2e4; path=/ X-Pingback: http://rainbowguide.eu/xmlrpc.php X-Powered-By: PleskLin | clean |
http://rainbowguide.eu/events/ | 200 OK Content-Length: 63587 Content-Type: text/html | clean |
http://rainbowguide.eu/events/kategorie/csd-pride/ | 200 OK Content-Length: 61586 Content-Type: text/html | clean |
http://rainbowguide.eu/events/kategorie/party/ | 200 OK Content-Length: 65231 Content-Type: text/html | clean |
http://rainbowguide.eu/events/kategorie/sexy/ | 200 OK Content-Length: 40995 Content-Type: text/html | clean |
http://rainbowguide.eu/events/kategorie/specials/ | 200 OK Content-Length: 41059 Content-Type: text/html | clean |
http://rainbowguide.eu/partyfotos/ | 200 OK Content-Length: 41123 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rainbowguide.eu
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rainbowguide.eu/
Result: rainbowguide.eu is not infected or malware details are not published yet.
Result: rainbowguide.eu is not infected or malware details are not published yet.