Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=privatpoppen.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://privatpoppen.net/ | 200 OK Content-Length: 6531 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://estratega.mx/widgets.php"></script> | ||
http://privatpoppen.net/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 07 Oct 2014 16:42:49 GMT Location: http://www.777livecams.com/?id=A91510&l=redrose Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny16 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g Vary: Accept-Encoding Content-Length: 414 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.777livecams.com/?id=a91510&l=redrose | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Tue, 07 Oct 2014 16:42:50 GMT Location: http://777livecams.com/?id=a91510&l=redrose Server: Apache Content-Length: 0 Content-Type: text/html; charset=iso-8859-1 Expires: Tue, 07 Oct 2014 16:42:51 GMT P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE" | clean |
http://777livecams.com/?id=a91510&l=redrose | 200 OK Content-Length: 214923 Content-Type: text/html | clean |
http://777livecams.com/js/prototype_1_7.js | 200 OK Content-Length: 169393 Content-Type: application/x-javascript | clean |
http://privatpoppen.net/js/prototype_1_7.js | HTTP/1.1 302 Found Connection: close Date: Tue, 07 Oct 2014 16:42:55 GMT Location: http://www.777livecams.com/?id=A91510&l=redrose Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny16 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g Vary: Accept-Encoding Content-Length: 414 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.777livecams.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 07 Oct 2014 16:42:55 GMT Location: http://777livecams.com/test404page.js Server: Apache Content-Length: 0 Content-Type: text/html; charset=iso-8859-1 P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE" | clean |
http://777livecams.com/test404page.js | 404 Not Found Content-Length: 214280 Content-Type: text/html | clean |
http://777livecams.com/js/scriptaculous.js?load=effects | 200 OK Content-Length: 2654 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/tools.js?v=1.1 | 200 OK Content-Length: 5309 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/flowplayer/flowplayer-3.1.2.js | 200 OK Content-Length: 42178 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/js/postit/getinstance.php | 200 OK Content-Length: 103 Content-Type: text/javascript | clean |
http://www.777livecams.com/js/refresh.js | 200 OK Content-Length: 863 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/js/overlay.js?v=1.4 | 200 OK Content-Length: 14625 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/?setup_language=en | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Tue, 07 Oct 2014 16:42:59 GMT Location: http://777livecams.com/?setup_language=en Server: Apache Content-Length: 0 Content-Type: text/html; charset=iso-8859-1 Expires: Tue, 07 Oct 2014 16:43:00 GMT P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE" | clean |
http://777livecams.com/?setup_language=en | 200 OK Content-Length: 207171 Content-Type: text/html | clean |
http://777livecams.com/tools.js?v=1.1 | 200 OK Content-Length: 5309 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/?setup_language=de | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Tue, 07 Oct 2014 16:43:01 GMT Location: http://777livecams.com/?setup_language=de Server: Apache Content-Length: 0 Content-Type: text/html; charset=iso-8859-1 Expires: Tue, 07 Oct 2014 16:43:02 GMT P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE" | clean |
http://777livecams.com/?setup_language=de | 200 OK Content-Length: 214787 Content-Type: text/html | clean |
http://777livecams.com/flowplayer/flowplayer-3.1.2.js | 200 OK Content-Length: 42178 Content-Type: application/x-javascript | clean |
http://www.777livecams.com/?setup_language=nl | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Tue, 07 Oct 2014 16:43:03 GMT Location: http://777livecams.com/?setup_language=nl Server: Apache Content-Length: 0 Content-Type: text/html; charset=iso-8859-1 Expires: Tue, 07 Oct 2014 16:43:04 GMT P3P: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE" | clean |
http://777livecams.com/?setup_language=nl | 200 OK Content-Length: 202014 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: privatpoppen.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 07 Oct 2014 16:42:48 GMT
Accept-Ranges: bytes
ETag: "20807d-1983-501dda703d640"
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny16 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g
Vary: Accept-Encoding
Content-Length: 6531
Content-Type: text/html
Last-Modified: Sat, 30 Aug 2014 19:19:45 GMT
...6531 bytes of data.
GET / HTTP/1.1
Host: privatpoppen.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 07 Oct 2014 16:42:48 GMT
Accept-Ranges: bytes
ETag: "20807d-1983-501dda703d640"
Server: Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny16 with Suhosin-Patch mod_python/3.3.1 Python/2.5.2 mod_ssl/2.2.9 OpenSSL/0.9.8g
Vary: Accept-Encoding
Content-Length: 6531
Content-Type: text/html
Last-Modified: Sat, 30 Aug 2014 19:19:45 GMT
...6531 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: privatpoppen.net
Referer: http://www.google.com/search?q=privatpoppen.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: privatpoppen.net
Referer: http://www.google.com/search?q=privatpoppen.net
Result:
The result is similar to the first query. There are no suspicious redirects found.