Suspicious SSL site flagged?

Viruses and worms
1

See: http://app.webinspector.com/public/reports/show_website?site=https%3A%2F%2Febanking.bicsa.com
I get a server1_exception.log

SRVE0255E: A WebGroup/Virtual Host to handle / has not been defined.

SRVE0255E: A WebGroup/Virtual Host to handle ebanking.bicsa.com:443 has not been defined.

IBM WebSphere Application Server

https://www.ssllabs.com/ssltest/analyze.html?d=ebanking.bicsa.com
Page meta security headers not set secure!
Good thing: This server is not vulnerable to the Heartbleed attack. (Experimental)

pol

2

Website seems to be dead.

3

This one is up and according to the Chromebleed extension vulnerable to Heartbleed: htxp://www.shamanshome.com/pages/sub/87664/De_Eik.html
→ Certificate name mismatch → Not trusted → https://www.ssllabs.com/ssltest/analyze.html?d=shamanshome.com&ignoreMismatch=on
Not following best practice for meta security headers and a warning for cache control
Also see: http://toolbar.netcraft.com/site_report?url=http://www.shamanshome.com

polonus

4

Some more scan results on the above supicious SSL site: http://www.digicert.com/help/index.htm?host=www.shamanshome.com&order_id=
https://www.sslcertificaten.nl/SSLCheck?domain=www.shamanshome.com
Again to-day still vulnerable to heartbleed!
and here we get results within 43 secs: http://www.whynopadlock.com/check.php
Domain Name: wXw.shamanshome.com
URL Tested: https://wXw.shamanshome.com
Number of items downloaded on page: 2

SSL verification issue (Possibly mis-matched URL or bad intermediate cert.). Details:

ERROR: certificate common name Parallels Panel' doesn't match requested host name wXw.shamanshome.com’.
Cert. Expired!: Feb 20 10:14:03 2014 GMT
Certificate Issuer: Parallels
Total number of items: 2
Number of insecure items: 2
Insecure URL: http://wXw.novosite.nl/uc/building.jpg
Found in: https://wXw.shamanshome.com/

Insecure URL: http://wXw.novosite.nl/uc/novosite.jpg
Found in: https://wXw.shamanshome.com/

And also this one: https://www.geocerts.com/ssl_checker → This certificate has expired.
Certificate Common Name (CN) and Hostname Match
The hostname (wXw.shamanshome.com) does NOT match the Common Name in the certificate (Parallels Panel).
This certificate is currently invalid for this host.

A valid Root CA Certificate could not be located, the certificate will likely display browser warnings.
Common name: Parallels Panel
Organization: Parallels
Valid from February 20, 2013 to February 20, 2014
Issuer: Parallels Panel

and here: https://www.sslcertificaten.nl/SSLCheck?domain=www.shamanshome.com

We could combine these findings with an additional dns check but we did not here,

polonus