Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=anwendungs-entwickler.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://anwendungs-entwickler.de/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://anwendungs-entwickler.de/test404page.js | 200 OK Content-Length: 15943 Content-Type: text/html | clean |
http://static.winfuture.de/feeds/WinFuture-News-feed.js?bg=ffffff&li=_blank&te=1&tf=Verdana&tw=normal&ts=9&tc=000000&de=1&df=Arial&dw=normal&ds=8&dc=999999&hf=Arial&hw=normal&hs=12&hc=0000cc&we=1&wf=Arial&ww=normal&ws=15&wc=990000&ec=10&be=0&dm=text | 200 OK Content-Length: 29387 Content-Type: application/javascript | clean |
http://www.computerwoche.de/_misc/newsfeed/news.cfm?count=10&width=200&fontsize=2&fontcolor=blue | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Dec 2014 11:44:46 GMT Via: 1.1 varnish-v4 Age: 0 Location: http://www.computerwoche.de/ Server: nginx Vary: Accept-Encoding Content-Length: 212 Content-Type: text/html; charset=iso-8859-1 X-AccessDev: stat X-Banhost: www.computerwoche.de X-Banurl: /_misc/newsfeed/news.cfm?count=10&width=200&fontsize=2&fontcolor=blue X-Cache: MISS (bus-cw-vrn-01) X-Varnish: 30176000 | clean |
http://www.computerwoche.de/ | 200 OK Content-Length: 168295 Content-Type: text/html | clean |
http://www.computerwoche.de/advert/advert.js | 200 OK Content-Length: 27 Content-Type: text/javascript | clean |
https://script.ioam.de/iam.js | 200 OK Content-Length: 14390 Content-Type: application/x-javascript | clean |
http://www.computerwoche.de/includes/compiled/core.min.js | 200 OK Content-Length: 300642 Content-Type: text/javascript | clean |
http://www.computerwoche.de/includes/compiled/clients.cwo.min.js | 200 OK Content-Length: 22123 Content-Type: text/javascript | clean |
http://www.computerwoche.de/includes/compiled/pages.253.min.js | 200 OK Content-Length: 6056 Content-Type: text/javascript | clean |
http://www.computerwoche.de/ueb/17870 | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Dec 2014 11:44:48 GMT Via: 1.1 varnish-v4 Age: 0 Location: http://ibmexperts.computerwoche.de/ Server: nginx Vary: X-AccessDev,Accept-Encoding,User-Agent Content-Type: text/html; charset=UTF-8 X-AccessDev: stat X-Banhost: www.computerwoche.de X-Banurl: /ueb/17870 X-Cache: MISS (bus-cw-vrn-02) X-Robots-Tag: noindex X-Varnish: 85015196 | clean |
http://ibmexperts.computerwoche.de/ | 200 OK Content-Length: 86053 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var axel = Math.random() + ""; var a = axel * 10000000000000; document.write('<iframe src="http://2174437.fls.doubleclick.net/activityi;src=2174437;type=cowoi040;cat=compu212;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://2174437.fls.doubleclick.net/activityi;src=2174437;type=cowoi040;cat=compu212;ord= <iframe src="http://2174437.fls.doubleclick.net/activityi;src=2174437;type=cowoi040;cat=compu212;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"> Hidden iFrame found. size: 1x1 style: hidden src: http://2174437.fls.doubleclick.net/activityi;src=2174437;type=cowoi040;cat=compu212;ord=1? <iframe src="http://2174437.fls.doubleclick.net/activityi;src=2174437;type=cowoi040;cat=compu212;ord=1?" width="1" height="1" frameborder="0" style="display:none"> | ||
http://ibmexperts.computerwoche.de/sites/default/files/js/js_456c84ee286604b8dbe609aaf598fd1a.js | 200 OK Content-Length: 151071 Content-Type: application/x-javascript | clean |
http://www.computerwoche.de/sites/all/themes/ibm/javascript/jquery.fancybox-1.3.4.pack.js | 404 Not Found Content-Length: 26559 Content-Type: text/html | clean |
http://www.computerwoche.de/p/newsletter,272 | 200 OK Content-Length: 39025 Content-Type: text/html | clean |
http://www.computerwoche.de/v | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 21 Dec 2014 11:44:51 GMT Via: 1.1 varnish-v4 Age: 0 Location: /v/hermann-scherer-digitales-denken-vermeiden,769151 Server: nginx Vary: X-AccessDev,Accept-Encoding,User-Agent Content-Type: text/html; charset=UTF-8 X-AccessDev: stat X-Banhost: www.computerwoche.de X-Banurl: /v X-Cache: MISS (bus-cw-vrn-02) X-Varnish: 90653696 | clean |
http://www.computerwoche.de/v/hermann-scherer-digitales-denken-vermeiden,769151 | 200 OK Content-Length: 28844 Content-Type: text/html | clean |
http://edge-cdn.net/videojs_769151?&&player=v2&playerskin=42014 | 200 OK Content-Length: 29063 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: anwendungs-entwickler.de
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
GET / HTTP/1.1
Host: anwendungs-entwickler.de
Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
Second query (visit from search engine):
GET / HTTP/1.1
Host: anwendungs-entwickler.de
Referer: http://www.google.com/search?q=anwendungs-entwickler.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: anwendungs-entwickler.de
Referer: http://www.google.com/search?q=anwendungs-entwickler.de
Result:
The result is similar to the first query. There are no suspicious redirects found.