Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=2852209.bizhard.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://2852209.bizhard.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://2852209.bizhard.com/ | 200 OK Content-Length: 40288 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.bizhard.com ...[15301 bytes skipped]... ; <div style="clear: both; padding-top: 3px;"> </div> <div class="gray" style="padding: 5px 0px; border-top: 1px solid #e9e8e8;"> <div style="padding-top: 5px; text-align: left; width: 100%; overflow: hidden; text-overflow: ellipsis;"> <nobr><a href='http://www.bizhard.com/center/News/Notice_Read.aspx?nid=325' target='_blank'>[ì ê²ìë£]ë¹ì¦íë ì¹ë©ì¼ ê¸´ê¸ ì ê² ìë´(06/10)</a></nobr> </div> <div style="padding-top: 5px; text-align: left; width: 100%; overflow: hidden; text-overflow: ellipsis;"> <nobr><a href='http://www.bizhard.com/center/News/Notice_Read.aspx?nid=324' target='_blank'>6/4 ~ 6/6 ë¹ì¦íë ê³ ê°ì¼í° í´ë¬´ ìë´</a> ...[29841 bytes skipped]... | ||
http://js.bizstatic.com/common/prototype-1.6.1.js | 200 OK Content-Length: 81469 Content-Type: application/x-javascript | clean |
http://js.bizstatic.com/common/scriptaculous.js?load=effects,dragdrop | 200 OK Content-Length: 920 Content-Type: application/x-javascript | clean |
http://js.bizstatic.com/common/ua.js | 200 OK Content-Length: 221 Content-Type: application/x-javascript | clean |
http://2852209.bizhard.com/Layout/js/blass.js | 200 OK Content-Length: 11399 Content-Type: application/x-javascript | clean |
http://2852209.bizhard.com/Layout/js/layout.js | 200 OK Content-Length: 7738 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: www.bizhard.com ...[3036 bytes skipped]... ayout/layer/loading.aspx";if(a){b+="?work="+encodeURIComponent(a)}if(c){b+="&cancel="+encodeURIComponent(c)}layerOn(272,120,b,false,false,false,"loading")}function loadingLayerOff(){parent.layerOff("loading")}function setTooltip(c){for(var a in c){try{if(c[a].targetid){document.getElementById(c[a].targetid).setAttribute("title",c[a].title)}}catch(b){}}}var PopManager={open:function(d,i){switch(d){case"GUIDE":var f=window.open("http://www.bizhard.com/Guide/Default.aspx","FlashGuide","location=0,status=0,scrollbars=0,resizable=0,width=902,height=625,top=20,left=20");f.focus();break;case"HELP":var e=window.open((!i)?"http://www.bizhard.com/Manual/Startup/Join.aspx":i,"Guide","location=0,status=0,scrollbars=0,resizable=0,width=902,height=625,top=20,left=20");e.focus();break;case"BILL":layerOn(904,552,"/Bill/Default.aspx",null,null,false,"Bill","no");break;case"CALC":layerOn(904,552,"/Bill/Default.aspx?mode=calc",null,null,false," ...[3837 bytes skipped]... | ||
http://2852209.bizhard.com/Layout/js/rsrcKo.js | 200 OK Content-Length: 4028 Content-Type: application/x-javascript | clean |
http://2852209.bizhard.com/./Support/SFunction.js | 200 OK Content-Length: 8169 Content-Type: application/x-javascript | clean |
http://2852209.bizhard.com/ajax/common.ashx | 200 OK Content-Length: 2991 Content-Type: text/plain | clean |
http://2852209.bizhard.com/test404page.js | 404 Not Found Content-Length: 5087 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: static.bizhard.com ...[305 bytes skipped]... ¦íë - 기ì ì© í리미ì ì¹íë, BIZHARD </title><link href="/favicon.ico" rel="shortcut icon" /><meta name="keywords" content="ì¹íë, 기ì ì© ì¹íë, ì ë¬´ì© ì¹íë, ë¹ì¦íë" /><meta name="description" content="ë¹ì¦íëë ì¹íë, ë©ì¼, ë©ì ì , ê²ìíì´ íµí©ë 기ì ì© ì¹íë ìë¹ì¤ ì ëë¤." /> <script type="text/javascript" src="http://static.bizhard.com/js/common/prototype-1.6.0.3.js"></script> <script type="text/javascript" src="http://static.bizhard.com/js/common/scriptaculous.js?load=effects,dragdrop"></script> <script type="text/javascript" src="http://2852209.bizhard.com/Error/Layout/js/blass.js"></script> <script type="text/javascript" src="http://2852209.bizhard.com/Error/Layout/js/layout.js"></script> <script type="text/javascript" src=" ...[4774 bytes skipped]... | ||
http://static.bizhard.com/js/common/prototype-1.6.0.3.js | 200 OK Content-Length: 74969 Content-Type: application/x-javascript | clean |
http://static.bizhard.com/js/common/scriptaculous.js?load=effects,dragdrop | 200 OK Content-Length: 920 Content-Type: application/x-javascript | clean |
http://2852209.bizhard.com/Error/Layout/js/blass.js | 200 OK Content-Length: 16724 Content-Type: application/x-javascript | clean |
http://2852209.bizhard.com/Error/Layout/js/layout.js | 200 OK Content-Length: 9792 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: www.bizhard.com ...[5584 bytes skipped]... p(tooltipSet) { for (var i = 0; i < tooltipSet.length; i++) { try { document.getElementById(tooltipSet[i][0]).setAttribute('title', tooltipSet[i][1]); } catch (e) { } } } var PopManager = { open: function(type, url) { switch (type) { case "GUIDE": var g = window.open( 'http://www.bizhard.com/Guide/Default.aspx', 'FlashGuide', 'location=0,status=0,scrollbars=0,resizable=0,width=902,height=625,top=20,left=20'); g.focus(); break; case "HELP": var h = window.open( (!url) ? 'http://www.bizhard.com/Manual/Startup/Join.aspx' : url, 'Guide', 'location=0,status=0,scrollbars=0 ...[4267 bytes skipped]... | ||
http://2852209.bizhard.com/Error/Layout/js/common.js | 200 OK Content-Length: 13380 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 2852209.bizhard.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Mon, 16 Jun 2014 04:37:14 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 40288
Content-Type: text/html; charset=utf-8
Expires: -1
P3P: CP='CAO PSA CONi OTR OUR DEM ONL'
Set-Cookie: BZSITE=ZWB4jO+kiysp5YscaOBlleg347VfuPuKaWDO3SglAQsk++IduEIR5k43HGSiQ3kH4iU6I/u0hwXDMR3Bs6w7G8yFoNa1c7KPY6wu2MxRiK7gzOYm4AJMDMDw9G5Vm2cFtA15Gjx9thMbOIVmOjO9Tpaz9Wok5kU8jIYzNJq4n+JbAI2VD425yYGtaqZV09OAlliZ+KSWU19KlvGv0Kg+ILonL+3VLvMbzltrbdfSsuY+ZpuZMQuXDgrTOUO1CvfJQydNI6J+qmhqyAdN1AKAuyAoiyHoLWITnShOMpkcumjPx8X9EbvfPBvBNMP6TqTxhQYcKveowyrVdBku9rNKnyagECmzkwnXIf0SQnJz2Fufw9Rlzk3jmplBDP843QbRFAhNvDYbrY9RHfcyBLFExhdgSwBPGeKJqs0i9SaDz6qGS0DT8kiGm+dv+jDAPfXNgz1FWFLfVPzTvIvM9RmZxrMYLt7iuG4g7nNryMyYRFKVVd+gUa21jKzMcfPSOWisf3r2j2reZ3Avv/wP7qSYY12t4ltlgE5z064hpbAGr+8tNiZ2GC8B0T7J9zkSjPUR0lAvKnX/KdNm0s4syQ4axyZkG2CfOfEWEGvKoIB2AAY=; domain=.bizhard.com; path=/
Set-Cookie: BZSITEV=7a2b2721; domain=.bizhard.com; path=/
Set-Cookie: ASP.NET_SessionId=1qnrlg45dy1gfr451ixenlzh; path=/; HttpOnly
Set-Cookie: Referrer=Direct Access!; path=/
Set-Cookie: BIZTAB=skKMEB7vbyY=; expires=Mon, 16-Jun-2014 04:47:14 GMT; path=/
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
X-UA-Compatible: IE=EmulateIE7
...40288 bytes of data.
GET / HTTP/1.1
Host: 2852209.bizhard.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Mon, 16 Jun 2014 04:37:14 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 40288
Content-Type: text/html; charset=utf-8
Expires: -1
P3P: CP='CAO PSA CONi OTR OUR DEM ONL'
Set-Cookie: BZSITE=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; domain=.bizhard.com; path=/
Set-Cookie: BZSITEV=7a2b2721; domain=.bizhard.com; path=/
Set-Cookie: ASP.NET_SessionId=1qnrlg45dy1gfr451ixenlzh; path=/; HttpOnly
Set-Cookie: Referrer=Direct Access!; path=/
Set-Cookie: BIZTAB=skKMEB7vbyY=; expires=Mon, 16-Jun-2014 04:47:14 GMT; path=/
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
X-UA-Compatible: IE=EmulateIE7
...40288 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 2852209.bizhard.com
Referer: http://www.google.com/search?q=2852209.bizhard.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 2852209.bizhard.com
Referer: http://www.google.com/search?q=2852209.bizhard.com
Result:
The result is similar to the first query. There are no suspicious redirects found.