Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=meevenburg.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.meevenburg.de/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sat, 10 Jan 2015 01:13:30 GMT Pragma: no-cache Location: http://meevenburg.de/ Server: Apache/2.2.22 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=53737500e5686e81c5792a47632caf59; path=/ X-Pingback: http://meevenburg.de/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://meevenburg.de/ | 200 OK Content-Length: 14458 Content-Type: text/html | clean |
http://meevenburg.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js?ver=4.1 | 200 OK Content-Length: 33 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/themes/mevenburgv1/jquery.js?ver=4.1 | 200 OK Content-Length: 92629 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/persist.js?ver=4.1 | 200 OK Content-Length: 24995 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/store.js?ver=4.1 | 200 OK Content-Length: 5337 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ngg_store.js?ver=4.1 | 200 OK Content-Length: 891 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/download-manager/bootstrap/js/bootstrap.min.js?ver=4.1 | 200 OK Content-Length: 27913 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/download-manager/js/front.js?ver=4.1 | 200 OK Content-Length: 774 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/lightbox_context.js?ver=4.1 | 200 OK Content-Length: 890 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/plugins/nextgen-gallery-pro/modules/nextgen_pro_lightbox_legacy/static/jquery.velocity.min.js?ver=4.1 | 200 OK Content-Length: 21529 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/themes/mevenburgv1/jquery-migrate-1.1.1.js?ver=4.1 | 200 OK Content-Length: 16174 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function( jQuery, window, undefined ) { var warnedAbout = {}; jQuery.migrateWarnings = []; jQuery.migrateMute = true; if ( !jQuery.migrateMute && window.console && console.log ) { console.log("JQMIGRATE: Logging is active"); } if ( jQuery.migrateTrace === undefined ) { jQuery.migrateTrace = true; } jQuery.migrateReset = function() { warnedAbout = {}; jQuery.migrateWarnings.length = 0; }; function migrateWarn( msg) { jQuery.event.add( document, name + "." + jQuery.guid, function() { jQuery.event.trigger( name, null, elem, true ); }); jQuery._data( this, name, jQuery.guid++ ); } return false; }, teardown: function() { if ( this !== document ) { jQuery.event.remove( document, name + "." + jQuery._data( this, name ) ); } return false; } }; } ); })( jQuery, window ); Antivirus reports:
| ||
http://meevenburg.de/wp-content/themes/mevenburgv1/script.js?ver=4.1 | 200 OK Content-Length: 53390 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-content/themes/mevenburgv1/script.responsive.js?ver=4.1 | 200 OK Content-Length: 23209 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-includes/js/comment-reply.min.js?ver=4.1 | 200 OK Content-Length: 757 Content-Type: application/x-javascript | clean |
http://meevenburg.de/wp-includes/js/jquery/jquery.form.min.js?ver=3.37.0 | 200 OK Content-Length: 14720 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: meevenburg.de
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 10 Jan 2015 01:13:33 GMT
Pragma: no-cache
Server: Apache/2.2.22
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://meevenburg.de/>; rel=shortlink
Set-Cookie: PHPSESSID=95abda99c5a2f3238869c4a9f1efe066; path=/
X-Pingback: http://meevenburg.de/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: meevenburg.de
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 10 Jan 2015 01:13:33 GMT
Pragma: no-cache
Server: Apache/2.2.22
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://meevenburg.de/>; rel=shortlink
Set-Cookie: PHPSESSID=95abda99c5a2f3238869c4a9f1efe066; path=/
X-Pingback: http://meevenburg.de/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: meevenburg.de
Referer: http://www.google.com/search?q=meevenburg.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: meevenburg.de
Referer: http://www.google.com/search?q=meevenburg.de
Result:
The result is similar to the first query. There are no suspicious redirects found.