Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dastintenhaus.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: postsetcards.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 25 Jun 2014 02:30:14 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 886
Content-Type: text/html
...886 bytes of data.
GET / HTTP/1.1
Host: postsetcards.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 25 Jun 2014 02:30:14 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 886
Content-Type: text/html
...886 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: postsetcards.com
Referer: http://www.google.com/search?q=postsetcards.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: postsetcards.com
Referer: http://www.google.com/search?q=postsetcards.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://dastintenhaus.de/ | HTTP/1.1 302 Found Connection: close Date: Tue, 01 Apr 2014 21:33:12 GMT Location: http://www.das-tintenhaus.de Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny16 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g Vary: Accept-Encoding Content-Length: 391 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://www.das-tintenhaus.de/ | 200 OK Content-Length: 160097 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.das-hardwarehaus.de ...[88594 bytes skipped]... plication/x-shockwave-flash" data="carousel/Carousel.swf"> <param name="movie" value="carousel/Carousel.swf"/> <param name="bgcolor" value="#FFFFFF"/> <param name="flashvars" value="xmlfile=default.xml&loaderColor=#000000"/> </object></div> <div style="text-align: center;"><br/> <br/> Partnershop<br/> <a target="_blank" href="http://www.das-hardwarehaus.de"><img width="468" height="60" align="middle" src="images/banner_468x60_01(1).jpg" alt="www.das-tintenhaus.de" class="oyaeiwuegtdbzeuqefij"/><br/> </a> <br/> ===============================================================<br/> <br/> <a href="http://www.anrdoezrs.net/click-2628211-10919637" target="_blank"> <img width="468" height="60" border="0" src="http://www.awltovhc.com/image-2628211-10919637" alt="Avira " c ...[100764 bytes skipped]... | ||
http://www.das-tintenhaus.de/gm_javascript.js.php?XTCsid=f46811d720cd8d3246a949aa5224a35b&page=&cPath=&products_id= | 200 OK Content-Length: 160501 Content-Type: text/html | clean |
http://www.das-tintenhaus.de/test404page.js | 404 Not Found Content-Length: 396 Content-Type: text/html | clean |
http://dastintenhaus.de//siegel.ausgezeichnet.org/widgets/js/504a02370cf2d4f2d0981249/widget.js/ | HTTP/1.1 302 Found Connection: close Date: Tue, 01 Apr 2014 21:33:16 GMT Location: http://www.das-tintenhaus.desiegel.ausgezeichnet.org/widgets/js/504a02370cf2d4f2d0981249/widget.js/ Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny16 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g Vary: Accept-Encoding Content-Length: 462 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.das-tintenhaus.desiegel.ausgezeichnet.org/widgets/js/504a02370cf2d4f2d0981249/widget.js/ | 500 Can't connect to www.das-tintenhaus.desiegel.ausgezeichnet.org:80 (Bad hostname) Content-Length: 222 Content-Type: text/plain | clean |
http://fc.webmasterpro.de/counter.php?name=tintenhaus | 200 OK Content-Length: 3160 Content-Type: application/x-javascript | clean |