Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=1mk.cqcounter.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://1mk.cqcounter.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://1mk.cqcounter.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 25 Aug 2014 21:58:21 GMT Location: http://cqcounter.com/ Server: Apache Content-Type: text/html; charset=ISO-8859-1 | clean |
http://cqcounter.com/ | 200 OK Content-Length: 10167 Content-Type: text/html | clean |
http://cqcounter.com/?reg | 200 OK Content-Length: 19357 Content-Type: text/html | clean |
http://cqcounter.com/?settings | 200 OK Content-Length: 10272 Content-Type: text/html | clean |
http://cqcounter.com/?faq | 200 OK Content-Length: 18586 Content-Type: text/html | clean |
http://cqcounter.com/siteinfo/ | 200 OK Content-Length: 9949 Content-Type: text/html | clean |
http://partner.googleadservices.com/gampad/google_service.js | 200 OK Content-Length: 3868 Content-Type: text/javascript | clean |
http://cqcounter.com/whois/ | 200 OK Content-Length: 10420 Content-Type: text/html | clean |
http://cqcounter.com/traceroute/ | 200 OK Content-Length: 9107 Content-Type: text/html | clean |
http://n1.dlcache.com/whois/script.js | 200 OK Content-Length: 1051 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: www.cqcounter.com ...[577 bytes skipped]... ,2,0,0,0,1,1,2); var agn = Array("left","center","right"); var tbl = document.getElementById(id); var row = tbl.tBodies[0].insertRow(tbl.tBodies[0].rows.length); for (i=0;i<10;i++) { cell = row.insertCell(i); if ((i==6) && (data[10]!="")) { node = image("http://n1.dlcache.com/flags/"+data[10]+".gif"); cell.appendChild(node); } (i==4) ? node = anchor('http://www.cqcounter.com/whois/?query='+data[i],'_blank',data[i]): node = text(data[i]); cell.appendChild(node); cell.className = 'vtrc'; cell.setAttribute('align',agn[ali[i]]); } } | ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21183 Content-Type: text/javascript | clean |
http://cqcounter.com/link/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://cqcounter.com/test404page.js | 404 Not Found Content-Length: 2584 Content-Type: text/html | clean |
http://media.fastclick.net/w/get.media?sid=5297&m=6&tp=8&d=j&t=n | HTTP/1.1 302 Found Connection: Keep-Alive Date: Mon, 25 Aug 2014 21:58:32 GMT Location: http://sjc-login.dotomi.com/commonid/match?user_token=AQENKEFR0z9rGgIBAQErAQEBAQE&rurl=http%3A%2F%2Fmedia%2Efastclick%2Enet%2Fw%2Fget%2Emedia%3Fsid%3D5297%26m%3D6%26tp%3D8%26d%3Dj%26t%3Dn%26vcpdid%3DAQENKEFR0z9rGgIBAQErAQEBAQE%26no%5Fcj%5Fc%3D1%26ccs%5Fstatus%3D0&tok=Tp4KqnCS%2FX4%3D Content-Length: 476 Content-Type: text/html; charset=iso-8859-1 Keep-Alive: timeout=5, max=19891 P3P: policyref="/w3c/p3p.xml", CP="NOI NID DEVo TAIo PSAo HISo OTPo OUR DELo BUS COM NAV INT DSP COR" Set-Cookie: cttutcid=1; domain=.fastclick.net; path=/; expires=0 | clean |
http://sjc-login.dotomi.com/commonid/match?user_token=aqenkefr0z9rggibaqeraqebaqe&rurl=http%3a%2f%2fmedia%2efastclick%2enet%2fw%2fget%2emedia%3fsid%3d5297%26m%3d6%26tp%3d8%26d%3dj%26t%3dn%26vcpdid%3daqenkefr0z9rggibaqeraqebaqe%26no%5fcj%5fc%3d1%26ccs%5fstatus%3d0&tok=tp4kqncs%2fx4%3d | HTTP/1.1 302 Found Connection: close Date: Mon, 25 Aug 2014 21:58:32 GMT Location: http://media.fastclick.net/w/get.media?sid=5297&m=6&tp=8&d=j&t=n&vcpdid=aqenkefr0z9rggibaqeraqebaqe&no_cj_c=1&ccs_status=0&status=-2 Server: nginx/1.6.0 Content-Length: 0 P3P: policyref="/w3c/p3p.xml", CP="NOI DSP NID OUR STP" | clean |
http://media.fastclick.net/w/get.media?sid=5297&m=6&tp=8&d=j&t=n&vcpdid=aqenkefr0z9rggibaqeraqebaqe&no_cj_c=1&ccs_status=0&status=-2 | 200 OK Content-Length: 190 Content-Type: application/x-javascript | clean |
http://cqcounter.com/?_id=test256&_lo=us2 | 200 OK Content-Length: 10196 Content-Type: text/html | clean |
http://cqcounter.com/?about | 200 OK Content-Length: 7389 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 1mk.cqcounter.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 25 Aug 2014 21:58:21 GMT
Location: http://cqcounter.com/
Server: Apache
Content-Type: text/html; charset=ISO-8859-1
GET / HTTP/1.1
Host: 1mk.cqcounter.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Mon, 25 Aug 2014 21:58:21 GMT
Location: http://cqcounter.com/
Server: Apache
Content-Type: text/html; charset=ISO-8859-1
Second query (visit from search engine):
GET / HTTP/1.1
Host: 1mk.cqcounter.com
Referer: http://www.google.com/search?q=1mk.cqcounter.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 1mk.cqcounter.com
Referer: http://www.google.com/search?q=1mk.cqcounter.com
Result:
The result is similar to the first query. There are no suspicious redirects found.