Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dschungelwaller.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://dschungelwaller.de/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: dschungelwaller.de Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 30 Jan 2015 08:00:31 GMT Location: http://82.118.18.238/?80&source=dschungelwaller.de Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html | malicious |
URL: http://82.118.18.238/?80&source=dschungelwaller.de (imitation of visitor from search engine) GET /?80&source=dschungelwaller.de HTTP/1.1 Host: 82.118.18.238 Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Cache-Control: max-age=0 Connection: close Date: Fri, 30 Jan 2015 07:59:32 GMT Pragma: no-cache Location: http://myfreedownloadsnow.com/download_direct8080.php?id=2803&name=Flash Player Update Server: nginx Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 21 Jul 1977 07:30:00 GMT Last-Modified: Fri, 30 Jan 2015 07:59:32 GMT X-Powered-By: PHP/5.3.3 | malicious |
URL: http://myfreedownloadsnow.com/download_direct8080.php?id=2803&name=Flash Player Update (imitation of visitor from search engine) GET /download_direct8080.php?id=2803&name=Flash Player Update HTTP/1.1 Host: myfreedownloadsnow.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Fri, 30 Jan 2015 04:54:56 GMT Location: http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1552735799.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1552735799&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html; charset=utf-8 Set-Cookie: affid=2803; expires=Sat, 30-Jan-2016 04:54:55 GMT; path=/ Set-Cookie: httpref=http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3Ddschungelwaller.de%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252Fdschungelwaller.de%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; expires=Sat, 30-Jan-2016 04:54:55 GMT; path=/ Set-Cookie: trackaffid=2803; expires=Sat, 30-Jan-2016 04:54:56 GMT; path=/ Set-Cookie: trackhttpref=http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3Ddschungelwaller.de%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252Fdschungelwaller.de%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; expires=Sat, 30-Jan-2016 04:54:56 GMT; path=/ X-Powered-By: PHP/5.3.3 | malicious |
URL: http://www.geranium-download.com/pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1552735799.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1552735799&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess (imitation of visitor from search engine) GET /pdownload.php?version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1552735799.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1552735799&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess HTTP/1.1 Host: www.geranium-download.com Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Connection: Close Date: Fri, 30 Jan 2015 08:00:33 GMT Location: http://www.april3-dmdd-download.com/tdownload.php?s1=32f268b7bcc8efeb2fdc4b29848982a02f7e96fd&t1=1422605013&version=1.1.5.26&campid=3687&instid[appname]=Flash%20Player%20Update%20Downloader&instid[appsetupurl]=http%3A%2F%2Ffastmediadownloads.com%2Fdownload%2FPrompt-Downloader-1552735799.exe&instid[cmdline]=&instid[appimageurl]=http%3A%2F%2Fpromptdownloader.com%2Flogo.png&prefix=Flash%20Player%20Update%20Downloader&instid[interrupted]=http%3A%2F%2Fpromptdownloader.com%2F%3Fcancel&ti1=1552735799&instid[thankyoupage]=http%3A%2F%2Fpromptdownloader.com%2F%3Fsuccess Server: Apache/2.2.15 (Red Hat) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | malicious |
Scanned pages/files
Request | Server response | Status |
http://dschungelwaller.de/ | 200 OK Content-Length: 28385 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var lc = document.getElementById('qtranslate-chooser'); var s = document.createElement('select'); s.id = 'qtrans_select_qtranslate-chooser'; lc.parentNode.insertBefore(s,lc); var sb = document.getElementById('qtrans_select_qtranslate-chooser'); var o = document.createElement('option'); var l = document.createTextNode('Deutsch'); o.selected = 'selected'; o.value = 'http://dschungelwaller.de/'; o.appendChild(l); sb.appendChild(o); var sb = document.getElementById('qtrans_select_qtranslate-chooser'); var o = document.createElement('option'); var l = document.createTextNode('Français'); o.value = 'http://dschungelwaller.de/fr/'; o.appendChild(l); sb.appendChild(o); s.onchange = function() { document.location.href = this.value;} lc.style.display='none'; Antivirus reports:
| ||
http://dschungelwaller.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js?ver=4.1 | 200 OK Content-Length: 33 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/persist.js?ver=4.1 | 200 OK Content-Length: 24995 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/store.js?ver=4.1 | 200 OK Content-Length: 5337 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ngg_store.js?ver=4.1 | 200 OK Content-Length: 891 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/lightbox_context.js?ver=4.1 | 200 OK Content-Length: 890 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/jquery.min.js | 200 OK Content-Length: 238158 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/cufon-yui.js | 200 OK Content-Length: 18258 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/chaparralpro.font.js | 200 OK Content-Length: 117460 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/scripts.js | 200 OK Content-Length: 5055 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/jquery.scrollTo-min.js | 200 OK Content-Length: 2252 Content-Type: application/javascript | clean |
http://dschungelwaller.de/wp-content/themes/rayoflight/js/aktuals.js | 200 OK Content-Length: 1484 Content-Type: application/javascript | clean |