Scanned pages/files
| Request | Server response | Status |
http://www.shopping-24h.de/ | 200 OK Content-Length: 30976 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Romantic ...[5409 bytes skipped]... Traum Dessous und flotte Mode traumhaft günstig </a> </h1> <div class="entrymeta"> Februar 6, 2013 | By admin In <a href="http://www.shopping-24h.de/?category_name=allgemein" title="Alle Artikel in Allgemein ansehen" rel="category">Allgemein</a> | <span>Kommentare deaktiviert</span> </div> <div class="entrybody"> <p>Hacked By Romantic <p> Muslim Cyber Army</p> </div> <p class="postmetadata"></p> <!-- <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:trackback="http://madskills.com/public/xml/rss/module/trackback/"> <rdf:Description rdf:about="http://www.shopping-24h.de/?p=290" dc:identifier="http://www.shopping-24h.de/?p=290" dc:t ...[31742 bytes skipped]... | ||
http://banners.webmasterplan.com/view.asp?ref=487930&site=1421&type=html&hnb=5&js=1 | HTTP/1.1 302 Found Cache-Control: private Date: Thu, 08 May 2014 19:16:16 GMT Location: http://html-links.com/banners/1421/peel/peel3.asp?ref=487930&site=1421&type=html&hnb=5&js=1 Server: Microsoft-IIS/6.0 Content-Length: 224 Content-Type: text/html; charset=utf-8 P3P: CP="STP CUR OUR" X-AspNet-Version: 4.0.30319 X-AspNetMvc-Version: 4.0 X-Powered-By: ASP.NET | clean |
http://html-links.com/banners/1421/peel/peel3.asp?ref=487930&site=1421&type=html&hnb=5&js=1 | 200 OK Content-Length: 4000 Content-Type: text/html | clean |
http://html-links.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://track3.mybloglog.com/js/jsserv.php?mblID=2007011502093135 | 500 Can't connect to track3.mybloglog.com:80 (Bad hostname) Content-Length: 172 Content-Type: text/plain | clean |
http://wms.assoc-amazon.de/20070822/DE/js/swfobject_1_5.js | 200 OK Content-Length: 9284 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 22296 Content-Type: text/javascript | clean |
http://pub.mybloglog.com/comm2.php?mblID=2007011502093135&c_width=160&c_sn_opt=y&c_rows=8&c_img_size=h&c_heading_text=&c_color_heading_bg=EFF9FF&c_color_heading=ffffff&c_color_link_bg=EFF9FF&c_color_link=BF01C5&c_color_bottom_bg=EFF9FF | 500 Can't connect to pub.mybloglog.com:80 (Bad hostname) Content-Length: 166 Content-Type: text/plain | clean |
http://localtimes.info/wp_world_clock.php?widget_number=11000&cp3_Hex=963939&cp2_Hex=FFFFFF&cp1_Hex=000000&hbg=0&ham=0&fwdt=100 | 200 OK Content-Length: 12166 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: shopping-24h.de
Result:
GET / HTTP/1.1
Host: shopping-24h.de
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: shopping-24h.de
Referer: http://www.google.com/search?q=shopping-24h.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: shopping-24h.de
Referer: http://www.google.com/search?q=shopping-24h.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=shopping-24h.de
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://shopping-24h.de/
Result: shopping-24h.de is not infected or malware details are not published yet.
Result: shopping-24h.de is not infected or malware details are not published yet.