Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=desksoftzursand.24.nl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://desksoftzursand.24.nl/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://desksoftzursand.24.nl/ | 200 OK Content-Length: 19492 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/images/bm000000.js | 200 OK Content-Length: 276 Content-Type: application/javascript | clean |
http://desksoftzursand.24.nl/2di8NH3Nmrm | 200 OK Content-Length: 31143 Content-Type: application/javascript | suspicious |
Page code contains blacklisted domain: 24.nl ...[1586 bytes skipped]... amp;& resolution[0] > 860 && resolution[1] > 350) || (resolution && resolution.length==2 && resolution[0] == 0 && resolution[1] == 0) || resolution == undefined ) { var check = f5448ee8daabd76b3696bf0974e55748(); var _gaq = []; _gaq.push(['_setAccount', 'UA-35990445-6']); _gaq.push(['_setDomainName', 'desksoftzursand.24.nl']); _gaq.push(['_setCustomVar', 1, 'bereich', 'Webspace', 3]); _gaq.push(['_setCustomVar', 2, 'Domain', '24.nl', 3]); _gaq.push(['_setCustomVar', 5, 'Subdomain', 'desksoftzursand.24.nl', 3]); bxrxXOnzyLknrOASb6swMUw4dip72F1pZ6W7FVC0llAvKjdbZTmzyIq9RbDTaqJTHYUyCJ1XHPQjYlPCpBGS2HKKVarJUyJBJkOyarBxlUzxE0DtCtDQ72q6S9NIlUvme06cQq9rttBlc8y25FsFl18bPd7FQ83KrGylE84+J3ZfBVk7bsoJSOHZXoP2tBleP+sI2iCpFp41iDxkW5PTSaPVR2UkShiyc1x/r7bKVRxhpbcqSUn966v8jkkVH264skSZFcRmJjScpN43se ...[1825 bytes skipped]... | ||
http://desksoftzursand.24.nl/" | HTTP/1.1 404 Not Found Connection: close Date: Wed, 20 Aug 2014 06:34:21 GMT Server: Apache Vary: Accept-Encoding Content-Length: 2255 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.14 | clean |
http://www.qualigo.de/doks/search/source/std/charge_direct.php?ds=subdomzz&subds=24.nl&fallback_url=http%3a%2f%2fwww.24.nl | HTTP/1.1 503 Service Unavailable Connection: close Date: Wed, 20 Aug 2014 06:34:22 GMT Accept-Ranges: bytes Retry-After: 604800 Server: Apache Vary: Accept-Encoding Content-Length: 286 Content-Type: text/html; charset=UTF-8 | clean |
http://www.qualigo.de/doks/search/source/std/charge_direct.php?ds=subdomzz&subds=24.nl&fallback_url=http%3a%2f%2fwww.24.nl&force_refresh=1 | HTTP/1.1 302 Found Connection: close Date: Wed, 20 Aug 2014 06:34:22 GMT Accept-Ranges: bytes Location: http://www.qualigo.de/doks/search/source/std/charge_query.php?ds=subdomzz&subds=24.nl&pid=157650231&pcid=1612593 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=ISO-8859-15 | clean |
http://www.qualigo.de/doks/search/source/std/charge_query.php?ds=subdomzz&subds=24.nl&pid=157650231&pcid=1612593 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 20 Aug 2014 06:34:22 GMT Accept-Ranges: bytes Location: https://p1.dntrck.com/tr?id=7a71d03802011f5b27331136137a37b8ef9d3146.r Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=ISO-8859-15 | clean |
https://p1.dntrck.com/tr?id=7a71d03802011f5b27331136137a37b8ef9d3146.r | 200 OK Content-Length: 1570 Content-Type: text/html | clean |
http://p1.dntrck.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: Close Date: Wed, 20 Aug 2014 06:34:23 GMT Location: https://www.dntx.com/test404page.js Server: nginx Content-Length: 178 Content-Type: text/html | clean |
https://www.dntx.com/test404page.js | 404 Not Found Content-Length: 26 Content-Type: text/plain | clean |
http://www.dntx.com/test404page.js | HTTP/1.1 301 Moved Permanently Connection: Close Date: Wed, 20 Aug 2014 06:34:24 GMT Location: https://www.dntx.com/test404page.js Server: nginx Content-Length: 178 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/69/spontanissa.html | 200 OK Content-Length: 21672 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/69/yuriy-nesterenko-rebenok-doroti-stivens-audibook-.html | 200 OK Content-Length: 20062 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/02-20122/25-06-2012626.html | 200 OK Content-Length: 21605 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/69/21-03-2012414.html | 200 OK Content-Length: 19342 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/01-20126/skachat-game-overlay-107.html | 200 OK Content-Length: 19011 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/55/77.html | 200 OK Content-Length: 18492 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/55/07-2012662.html | 200 OK Content-Length: 19538 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/55/33.html | 200 OK Content-Length: 19707 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/10/05-2012531.html | 200 OK Content-Length: 19710 Content-Type: text/html | clean |
http://desksoftzursand.24.nl/4/autocad.html | 200 OK Content-Length: 20507 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: desksoftzursand.24.nl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 20 Aug 2014 06:34:20 GMT
Accept-Ranges: bytes
ETag: "52f98be1-4b96-4c94f7c97b6e9"
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Last-Modified: Mon, 10 Sep 2012 02:12:16 GMT
GET / HTTP/1.1
Host: desksoftzursand.24.nl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 20 Aug 2014 06:34:20 GMT
Accept-Ranges: bytes
ETag: "52f98be1-4b96-4c94f7c97b6e9"
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Last-Modified: Mon, 10 Sep 2012 02:12:16 GMT
Second query (visit from search engine):
GET / HTTP/1.1
Host: desksoftzursand.24.nl
Referer: http://www.google.com/search?q=desksoftzursand.24.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: desksoftzursand.24.nl
Referer: http://www.google.com/search?q=desksoftzursand.24.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.