Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nbfude.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://nbfude.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 12 Sep 2014 18:32:36 GMT Location: forum.php Server: Apache/2.4.7 (Win32) PHP/5.3.28 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.28 | clean |
http://nbfude.com/forum.php | 200 OK Content-Length: 11628 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.5898.cc <iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gbk" /> <title>362ÓéÀÖÍøÖ· - Powered by Discuz!</title> <meta name="keywords" content="362ÓéÀÖÍøÖ·" /> Malicious iFrame found. size: 100x7350 src: http://www.5898.cc/ This URL is marked by Google as suspicious <iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/> | ||
http://nbfude.com/static/js/common.js?z6W | 200 OK Content-Length: 63289 Content-Type: application/javascript | clean |
http://nbfude.com/static/js/forum.js?z6W | 200 OK Content-Length: 22720 Content-Type: application/javascript | clean |
http://nbfude.com/static/js/logging.js?z6W | 200 OK Content-Length: 603 Content-Type: application/javascript | clean |
http://nbfude.com/home.php?mod=misc&ac=sendmail&rand=1410546757 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://discuz.gtimg.cn/cloud/scripts/discuz_tips.js?v=1 | 200 OK Content-Length: 6173 Content-Type: application/x-javascript | clean |
http://nbfude.com/member.php?mod=register | 200 OK Content-Length: 9517 Content-Type: text/html | clean |
http://nbfude.com/home.php?mod=misc&ac=sendmail&rand=1410546769 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://nbfude.com/./ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 12 Sep 2014 18:32:52 GMT Location: forum.php Server: Apache/2.4.7 (Win32) PHP/5.3.28 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.28 | clean |
http://nbfude.com/./forum.php | 200 OK Content-Length: 11633 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.5898.cc <iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowTransparency src=http://www.5898.cc/></iframe>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gbk" /> <title>362ÓéÀÖÍøÖ· - Powered by Discuz!</title> <meta name="keywords" content="362ÓéÀÖÍøÖ·" /> Malicious iFrame found. size: 100x7350 src: http://www.5898.cc/ This URL is marked by Google as suspicious <iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='7350' allowtransparency src=http://www.5898.cc/> | ||
http://nbfude.com/./static/js/common.js?z6W | 200 OK Content-Length: 63289 Content-Type: application/javascript | clean |
http://nbfude.com/./static/js/forum.js?z6W | 200 OK Content-Length: 22720 Content-Type: application/javascript | clean |
http://nbfude.com/./static/js/logging.js?z6W | 200 OK Content-Length: 603 Content-Type: application/javascript | clean |
http://nbfude.com/./home.php?mod=misc&ac=sendmail&rand=1410546773 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://nbfude.com/./member.php?mod=register | 200 OK Content-Length: 9521 Content-Type: text/html | clean |
http://nbfude.com/./home.php?mod=misc&ac=sendmail&rand=1410546781 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nbfude.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 12 Sep 2014 18:32:36 GMT
Location: forum.php
Server: Apache/2.4.7 (Win32) PHP/5.3.28
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.3.28
...0 bytes of data.
GET / HTTP/1.1
Host: nbfude.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 12 Sep 2014 18:32:36 GMT
Location: forum.php
Server: Apache/2.4.7 (Win32) PHP/5.3.28
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.3.28
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: nbfude.com
Referer: http://www.google.com/search?q=nbfude.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nbfude.com
Referer: http://www.google.com/search?q=nbfude.com
Result:
The result is similar to the first query. There are no suspicious redirects found.