Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bursdag.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.bursdag.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Apr 2014 15:20:06 GMT Location: http://bursdag.com/ Server: nginx/1.4.7 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://bursdag.com/xmlrpc.php | clean |
http://bursdag.com/ | 200 OK Content-Length: 93194 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: diorglasses.post.my ...[106411 bytes skipped]... ass="widget widget_links"><h3 class="widget-title">Blogroll</h3> <ul class='xoxo blogroll'> <li><a href="http://appstore.post.my" title="Appstore">App Store</a></li> <li><a href="http://boots.my" title="Boots">Boots Apotek</a></li> <li><a href="http://candies.am" title="Candies">Candies</a></li> <li><a href="http://diorglasses.post.my" title="Dior Glasses & Sunglasses">Dior Glasses & Sunglasses</a></li> <li><a href="http://farsdag.post.my" title="Farsdag">Farsdag</a></li> <li><a href="http://fragrance.am" title="Fragrance">Fragrance</a></li> <li><a href="http://games.post.my" title="Free PC Games">Free PC Games</a></li> <li><a href="http://levis.post.my" title="Levis">Levi' ...[3293 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://pingomatic.com/ping/?title=happy%20birthday%20with%20flowers&blogurl=http://&rssurl=http%3a%2f%2fbursdag.com%2f%3ffeed%3dsamson-rss%26id%3d3&chk_weblogscom=on&chk_blogs=on&chk_technorati=on&chk_feedburner=on&chk_syndic8=on&chk_newsgator=on&chk_feedster=on&chk_myyahoo=on&chk_pubsubcom=on&chk_blogdigger=on&chk_blogrolling=on&chk_blogstreet=on&chk_moreover=on&chk_weblogalot=on&chk_icerocket=on&chk_audioweblogs=on&chk_rubhub=on&chk_geourl=on&chk_a2b=on&chk_blogshares=on <iframe src="http://pingomatic.com/ping/?title=happy%20birthday%20with%20flowers&blogurl=http://&rssurl=http%3a%2f%2fbursdag.com%2f%3ffeed%3dsamson-rss%26id%3d3&chk_weblogscom=on&chk_blogs=on&chk_technorati=on&chk_feedburner=on&chk_syndic8=on&chk_newsgator=on&chk_feedster=on&chk_myyahoo=on&chk_pubsubcom=on&chk_blogdigger=on&chk_blogrolling=on&chk_blogstreet=on&chk_moreover=on&chk_weblogalot=on&chk_icerocket=on&chk_audioweblogs=on&chk_rubhub=on&chk_geourl=on&chk_a2b=on&chk_blogshares=on" border="0" width="0" height="0" scrolling="no" class="hide_frame"> | ||
http://biggirlstickers.com/vHFPCTx6.php?id=53336436 | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 08 Apr 2014 15:20:10 GMT Location: http://www.biggirlstickers.com/vHFPCTx6.php?id=53336436 Server: Apache Vary: Accept-Encoding Content-Length: 263 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.biggirlstickers.com/vhfpctx6.php?id=53336436 | 404 Not Found Content-Length: 329 Content-Type: text/html | clean |
http://www.biggirlstickers.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://gonein60.hopfeed.com/script/hopfeed.js | 200 OK Content-Length: 43 Content-Type: image/gif | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bursdag.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 08 Apr 2014 15:20:08 GMT
Server: nginx/1.4.7
Content-Type: text/html; charset=UTF-8
X-Pingback: http://bursdag.com/xmlrpc.php
GET / HTTP/1.1
Host: bursdag.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 08 Apr 2014 15:20:08 GMT
Server: nginx/1.4.7
Content-Type: text/html; charset=UTF-8
X-Pingback: http://bursdag.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: bursdag.com
Referer: http://www.google.com/search?q=bursdag.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bursdag.com
Referer: http://www.google.com/search?q=bursdag.com
Result:
The result is similar to the first query. There are no suspicious redirects found.