Free Online Website Malware Scanner
check website for malware and vulnerability exploits online

Alert: Suspicious Content Detected On This Website!

Secure Your Website Now!

website security plans and features
Normalized URL:  http://mail.wibizu.de:80
Submission date: Thu Jul 22 15:35:15 2021
Server IP address: 40.97.116.82
Country: United States
Server: Microsoft-IIS/10.0
CMS: WordPress
Malicious files: 0
Suspicious files: 1
Potentially Suspicious files: 3
Clean files: 5
External links detected: 23
Iframes scanned: 0
Blacklisted: No
SSL Certificate details: Available via API only.

Alert: Suspicious Content Detected On This Website!

Secure Your Website Now!

website security plans and features
.redir-test
Severity:
Suspicious
Threat:
S.HttpRedir.gen
Reason:
Detected unconditional redirection
Details:
Detected unconditional redirection to https://outlook.office365.com/owa/?realm=wibizu.de&vd=mail
Threat dump:
View code
Threat dump MD5:
35062cf07cb510e70f60c418ee850cbc
File size[byte]:
N/A
File type:
ASCII
Page/File MD5:
35062cf07cb510e70f60c418ee850cbc
Scan duration[sec]:
0.15
https://outlook.office365.com/owa/?realm=wibizu.de&vd=mail&.redir-url-test
Severity:
Suspicious
Threat:
S.HttpRedir.gen
Reason:
Detected unconditional redirection during website load
Details:
Detected unconditional redirection to outlook.office365.com
Threat dump:
View code
Threat dump MD5:
35062cf07cb510e70f60c418ee850cbc
File size[byte]:
N/A
File type:
ASCII
Page/File MD5:
35062cf07cb510e70f60c418ee850cbc
Scan duration[sec]:
0.15
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&msaredir=0&client-request-id=28d1c377-6bdb-5825-f5b9-4222af3a605a&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wibizu.de&nonce=637625829248064162.061c64e3-8e5d-44cc-b889-190ab067e588&state=Dcs9DoQgEEBh0HPYbocOOAxDYTwLP1OQaDYxcU329FJ8r3taKTV2Q6ehRwVaAznPLjpkILTkZiBbCGU1LL4axFJMZo7GRkgZKIhn1v2dlu-Tlv2SdJzb03L733OVz69uZ2rHCw&.redir-url-test
Severity:
Suspicious
Threat:
S.HttpRedir.gen
Reason:
Detected unconditional redirection during website load
Details:
Detected unconditional redirection to login.microsoftonline.com
Threat dump:
View code
Threat dump MD5:
1a09c0454c5dbad145508135300ae1df
File size[byte]:
N/A
File type:
ASCII
Page/File MD5:
1a09c0454c5dbad145508135300ae1df
Scan duration[sec]:
0.15
/index
Severity:
Suspicious
Threat:
S.HttpRedir.gen
Reason:
Detected suspicious redirection to external web resources at HTTP level. [What's this?]
Details:
Detected HTTP redirection to https://outlook.office365.com/owa/?realm=wibizu.de%26vd=mail.
File size[byte]:
0
File type:
Unknown
Page/File MD5:
0
Scan duration[sec]:
0.001
login.microsoftonline.com/jsdisabled
Severity:
Potentially Suspicious
Threat:
Heur.CSS.Hidden.gen
Reason:
Detected hidden CSS declaration
Details:
Detected hidden potentially suspicious instructions
Line:
25
Offset:
4
Threat dump:
View code
Threat dump MD5:
09F3467864A3E4EEC404B3238EE99A93
File size[byte]:
117603
File type:
ASCII
Page/File MD5:
774AEB45E26A8C13CF060525621FA55D
Scan duration[sec]:
0.522
/#
Severity:
Potentially Suspicious
Threat:
Heur.CSS.Hidden.gen
Reason:
Detected hidden CSS declaration
Details:
Detected hidden potentially suspicious instructions
Line:
73
Offset:
4
Threat dump:
View code
Threat dump MD5:
09F3467864A3E4EEC404B3238EE99A93
File size[byte]:
190443
File type:
HTML
Page/File MD5:
637D03774EFA53D2878D63A99F45D21E
Scan duration[sec]:
3.16
/error.aspx?err=504
Severity:
Potentially Suspicious
Threat:
Heur.CSS.Hidden.gen
Reason:
Detected hidden CSS declaration
Details:
Detected hidden potentially suspicious instructions
Line:
73
Offset:
4
Threat dump:
View code
Threat dump MD5:
09F3467864A3E4EEC404B3238EE99A93
File size[byte]:
190647
File type:
HTML
Page/File MD5:
0F478394AF67F78E540152784291941F
Scan duration[sec]:
3.21
aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_Mo4A0Fxm-KbAvsKDen15VQ2.js
Severity:
Clean
Reason:
No significant issues detected.
Details:
File is clean.
File size[byte]:
466060
File type:
ASCII
Page/File MD5:
328E00D05C66F8A6C0BEC2837A7D7955
Scan duration[sec]:
103.476
aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_Mo4A0Fxm-KbAvsKDen15VQ2.js
Severity:
Clean
Reason:
No significant issues detected.
Details:
File is clean.
File size[byte]:
127371
File type:
GZIP
Page/File MD5:
C0FDD4B7F547BA0B09431CC5617055E6
Scan duration[sec]:
0.043

Alert: Suspicious Content Detected On This Website!

Secure Your Website Now!

website security plans and features
https://login.microsoftonline.com
https://aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
https://aadcdn.msauth.net/shared/1.0/content/js/convergedlogin_pcore_mo4a0fxm-kbavskden15vq2.js
https://www.google.com
https://login.live.com/Me.htm?v=3
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&msaredir=0&client-request-id=28d1c377-6bdb-5825-f5b9-4222af3a605a&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wibizu.de&nonce=637625829248064162.061c64e3-8e5d-44cc-b889-190ab067e588&state=Dcs9DoQgEEBh0HPYbocOOAxDYTwLP1OQaDYxcU329FJ8r3taKTV2Q6ehRwVaAznPLjpkILTkZiBbCGU1LL4axFJMZo7GRkgZKIhn1v2dlu-Tlv2SdJzb03L733OVz69uZ2rHCw
https://aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_Mo4A0Fxm-KbAvsKDen15VQ2.js
https://www.microsoft.com/en-us/servicesagreement/
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_lgjnfq3xbrj5zvj5ionvww2.css
https://aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
https://login.live.com/me.htm?v%3D3
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min__vnug8v1o1-mkptmkuydsg2.js
http://mail.wibizu.de/error.aspx?err%3D504
https://login.microsoftonline.com/
https://outlook.office365.com/owa/?realm=wibizu.de&vd=mail
https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
https://aadcdn.msauth.net
https://privacy.microsoft.com/en-us/privacystatement
http://mail.wibizu.de/
http://mail.wibizu.de:80
https://aadcdn.msftauth.net/shared/1.0/content/js/convergedlogin_pcore_mo4a0fxm-kbavskden15vq2.js
https://outlook.office365.com/owa/prefetch.aspx
https://aadcdn.msftauth.net

Alert: Suspicious Content Detected On This Website!

Secure Your Website Now!

website security plans and features
Detected 2 HTTP redirects

Required URL:
http://mail.wibizu.de/
Required IP:
40.97.161.50 United States
Redirected URL:
https://outlook.office365.com/owa/?realm=wibizu.de&vd=mail
Redirected IP:
52.96.191.2 United States
HTTP Method:
GET
HTTP status code:
301
Required URL:
https://outlook.office365.com/owa/?realm=wibizu.de&vd=mail
Required IP:
52.96.79.82 United States
Redirected URL:
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&msaredir=0&client-request-id=93ffb749-18fc-1202-8498-b08334e347eb&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wibizu.de&nonce=637625829236907004.92785fcc-46eb-481e-932d-e213271ea4a0&state=DctBCsMgEEBRbc6RbXcm42gcXUjOMsYpCAmFQiv09HHx_u5rpdQ0PAYNI4qCo4BbxIQuJCAAvySkuL2Ow_ggxfhoxSSH1Qhah2SFPYMe77y-O6_7R_i8cm-l_b9Lleev5ovbeQM
Redirected IP:
20.190.155.67 United States
HTTP Method:
GET
HTTP status code:
302
Required URL:
https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&msaredir=0&client-request-id=93ffb749-18fc-1202-8498-b08334e347eb&protectedtoken=true&claims=%7b%22id_token%22%3a%7b%22xms_cc%22%3a%7b%22values%22%3a%5b%22CP1%22%5d%7d%7d%7d&domain_hint=wibizu.de&nonce=637625829236907004.92785fcc-46eb-481e-932d-e213271ea4a0&state=DctBCsMgEEBRbc6RbXcm42gcXUjOMsYpCAmFQiv09HHx_u5rpdQ0PAYNI4qCo4BbxIQuJCAAvySkuL2Ow_ggxfhoxSSH1Qhah2SFPYMe77y-O6_7R_i8cm-l_b9Lleev5ovbeQM
Required IP:
20.190.155.67 United States
HTTP Method:
GET
HTTP status code:
200
Required URL:
https://login.live.com/Me.htm?v=3
Required IP:
20.190.155.3 United States
HTTP Method:
GET
HTTP status code:
200
Required URL:
https://aadcdn.msftauth.net/shared/1.0/content/js/ConvergedLogin_PCore_Mo4A0Fxm-KbAvsKDen15VQ2.js
Required IP:
152.199.4.44 United States
HTTP Method:
GET
HTTP status code:
200
Required URL:
https://outlook.office365.com/owa/prefetch.aspx
Required IP:
52.96.79.34 United States
HTTP Method:
GET
HTTP status code:
200
Required URL:
https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
Required IP:
152.199.4.44 United States
HTTP Method:
GET
HTTP status code:
200
Required URL:
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_lgjnfq3xbrj5zvj5ionvww2.css
Required IP:
152.199.4.44 United States
HTTP Method:
GET
HTTP status code:
200
Required URL:
https://aadcdn.msftauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min__vnug8v1o1-mkptmkuydsg2.js
Required IP:
152.199.4.44 United States
HTTP Method:
GET
HTTP status code:
200

Alert: Suspicious Content Detected On This Website!

Secure Your Website Now!

website security plans and features
Yandex Safebrowsing - domain is Clean. more info
Phishtank - domain is Clean. more info
MalwareDomainList - domain is Clean. more info
URLhaus - domain is Clean. more info
Quttera Labs - domain is Clean.

"The malware entry is cached and may not reflect the current status of the domain. You can request re-consideration by Quttera malware research team."

Google - domain is Clean. more info
StopBadware - domain is Clean. more info
ZeusTracker - domain is Clean. more info

Website Firewall

Malware & blacklist removal

customers showcase

Have an idea or want to provide feedback? Welcome to our feedback & support site!

Is your website secure? Check yourself for Top 7 common website security bad practices on our Blog

Review Threat severity assessment classification

Report incorrect detection on helpdesk.quttera.com or send an email to support@quttera.com (expect a reply within 72 hrs)

Newsletter

Join our mailing list to receive free email updates

Subscribe now

Quttera Offers Free, Simple SSL Management for ThreatSign Usersn | Quttera

Blog: Quttera Offers Free, Simple SSL Management for ThreatSign Users

These days, maintaining an SSL certificate without letting it lapse is vital. The Quttera ThreatSign DNS WAF protects you against a broad range of threats and offers you free SSL management.

READ MORE

Using Quttera Web Malware Scanner Plugin to Clear WordPress Malware | Quttera

Blog: Using Quttera Web Malware Scanner Plugin to Clear WordPress Malware

The popularity of WordPress also makes it a target for attacks. Here’s how you can detect and clear WordPress malware with the Quttera Web Malware Scanner plugin.

READ MORE

Q1 2020 Quttera Web Application Firewall Statistics
 | Quttera

Blog: Q1 2020 Quttera Web Application Firewall Statistics

The Quttera Web Application Firewall guards your site against many kinds of cyberattacks, including ones that haven’t been seen yet. Here’s a look at Quttera’s Q1 2020 WAF statistics.

READ MORE



© 2021 Quttera Ltd. All rights reserved.