Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=doktor-baumgartner.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://doktor-baumgartner.com/ | 200 OK Content-Length: 10087 Content-Type: text/html | clean |
http://doktor-baumgartner.com/animate.js | 200 OK Content-Length: 21693 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- dynamicanimAttr = "dynamicanimation" animCancel = "skipanim" fpanimationPrefix = "fpAnim" animateElements = new Array() currentElement = 0 speed = 1 stepsZoom = 8 stepsWord = 8 stepsFly = 17 stepsSpiral = 16 stepsSpiralWord = 19 stepsElastic = 32 steps = stepsZoom step = 0 cornerPhase=0 outEffect=0 function remSuffix(str) { ind=str.indexOf("FP") str = str.substring(0,ind) return s Antivirus reports:
| ||
http://doktor-baumgartner.com/nicola/index.htm | 200 OK Content-Length: 6649 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/taufe.htm | 200 OK Content-Length: 6969 Content-Type: text/html | clean |
http://doktor-baumgartner.com/test404page.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 08 Jan 2015 08:55:58 GMT Accept-Ranges: bytes Server: Apache Content-Length: 124 Content-Type: text/html | clean |
http://templates.doteasy.com/errorpages/error404/ | 200 OK Content-Length: 10599 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js | 200 OK Content-Length: 93435 Content-Type: text/javascript | clean |
http://doktor-baumgartner.com/js/selectBox/jquery.selectBox.min.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 08 Jan 2015 08:56:00 GMT Accept-Ranges: bytes Server: Apache Content-Length: 124 Content-Type: text/html | clean |
http://templates.doteasy.com/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://doktor-baumgartner.com/js/jquery.watermark.min.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 08 Jan 2015 08:56:01 GMT Accept-Ranges: bytes Server: Apache Content-Length: 124 Content-Type: text/html | clean |
http://doktor-baumgartner.com/js/fancybox/jquery.fancybox.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 08 Jan 2015 08:56:01 GMT Accept-Ranges: bytes Server: Apache Content-Length: 124 Content-Type: text/html | clean |
http://doktor-baumgartner.com/js/fancybox/helpers/jquery.fancybox-media.js | HTTP/1.1 404 Not Found Connection: close Date: Thu, 08 Jan 2015 08:56:02 GMT Accept-Ranges: bytes Server: Apache Content-Length: 124 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/drei_monate.htm | 200 OK Content-Length: 7216 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/index.htm | 200 OK Content-Length: 7320 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/crazy.htm | 200 OK Content-Length: 7701 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/Karotte.avi | 200 OK Content-Length: 302417 Content-Type: video/x-msvideo | clean |
http://doktor-baumgartner.com/nicola/../cornelia/ein_jahr.htm | 200 OK Content-Length: 7031 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/Salzburg.htm | 200 OK Content-Length: 6681 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/../index.htm | 200 OK Content-Length: 10087 Content-Type: text/html | clean |
http://doktor-baumgartner.com/nicola/../cornelia/../animate.js | 200 OK Content-Length: 21693 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- dynamicanimAttr = "dynamicanimation" animCancel = "skipanim" fpanimationPrefix = "fpAnim" animateElements = new Array() currentElement = 0 speed = 1 stepsZoom = 8 stepsWord = 8 stepsFly = 17 stepsSpiral = 16 stepsSpiralWord = 19 stepsElastic = 32 steps = stepsZoom step = 0 cornerPhase=0 outEffect=0 function remSuffix(str) { ind=str.indexOf("FP") str = str.substring(0,ind) return s Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: doktor-baumgartner.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 08:55:55 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 10087
Content-Type: text/html
Last-Modified: Mon, 05 Jan 2015 17:45:03 GMT
...10087 bytes of data.
GET / HTTP/1.1
Host: doktor-baumgartner.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 08 Jan 2015 08:55:55 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 10087
Content-Type: text/html
Last-Modified: Mon, 05 Jan 2015 17:45:03 GMT
...10087 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: doktor-baumgartner.com
Referer: http://www.google.com/search?q=doktor-baumgartner.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: doktor-baumgartner.com
Referer: http://www.google.com/search?q=doktor-baumgartner.com
Result:
The result is similar to the first query. There are no suspicious redirects found.