Scanned pages/files
| Request | Server response | Status |
http://www.inthekpop.net/ | 200 OK Content-Length: 162914 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: text/javascript | clean |
http://w.sharethis.com/gallery/shareegg/shareegg.js | 200 OK Content-Length: 4807 Content-Type: application/x-javascript | clean |
http://w.sharethis.com/button/buttons.js | 200 OK Content-Length: 144141 Content-Type: application/x-javascript | clean |
http://cdn.popcash.net/pop.js | 200 OK Content-Length: 2863 Content-Type: application/x-javascript | clean |
http://resources.infolinks.com/js/infolinks_main.js | 200 OK Content-Length: 2403 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/platform.js | 200 OK Content-Length: 36362 Content-Type: application/javascript | clean |
http://ads.cpxcenter.com/cpxcenter/showAd.php?nid=4&zone=66495&type=banner&sid=48400&pid=15942&subid=&opt1=&opt2= | 200 OK Content-Length: 688 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write("<img src=\"http://tr4.myroitracking.com/newServing/tracking_id.php?d=ads.cpxcenter.com&r=http%3A%2F%2Fads.cpxcenter.com%2FnewServing%2Ftracking_id.php%3Fb%3D1%26>ruid=1\" width=\"1\" height=\"1\" />"); private_label_prefix = "cpxcenter"; cpxcenter_service = "ads.cpxcenter.com"; cpxcenter_nid = 4; cpxcenter_pid = 15942; cpxcenter_sid = 48400; cpxcenter_zone = 66495; cpxcenter_type = "banner"; if ( typeof(CpxCenter) == "undefined" ) { document.write('<script type="text/javascript" src="http://static.hatid.com/newServing/js/cpxcenter.js"></script>'); } else { CpxCenter.bootstrap(false); } Antivirus reports:
| ||
http://www.inthekpop.net//assets.pinterest.com/js/pinit.js/ | 404 Not Found Content-Length: 93981 Content-Type: text/html | clean |
http://adspserving.com/ads.js | 200 OK Content-Length: 158 Content-Type: application/x-javascript | clean |
https://cdn.adf.ly/js/display.js | 200 OK Content-Length: 20911 Content-Type: application/x-javascript | clean |
http://www.inthekpop.net//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 94023 Content-Type: text/html | clean |
http://ads.clicksor.com/newServing/showAd.php?nid=1&pid=295991&adtype=&sid=550792 | 200 OK Content-Length: 1556 Content-Type: application/x-javascript | clean |
https://www.blogger.com/static/v1/widgets/3746315093-widgets.js | 200 OK Content-Length: 90087 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12367 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: inthekpop.net
Result:
GET / HTTP/1.1
Host: inthekpop.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: inthekpop.net
Referer: http://www.google.com/search?q=inthekpop.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: inthekpop.net
Referer: http://www.google.com/search?q=inthekpop.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=inthekpop.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://inthekpop.net/
Result: inthekpop.net is not infected or malware details are not published yet.
Result: inthekpop.net is not infected or malware details are not published yet.