Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=51zhuicai.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://51zhuicai.com/ | 200 OK Content-Length: 11248 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[10821 bytes skipped]... æ详ç»çä»ç»ãæ¨æ«æ¥ååç </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxacrxvqa/">梦幻西å¨çº¿è®¡ç®å¨</a></li><li><a href="http://www.5118wz.com/5118wz-awcwcvcqv/">è¿ é·ä¸è½½å®æåææ¾</a></li><li><a href="http://www.scbx1949.com/scbx1949-awawzvrqi/">主æ¿æ¸©åº¦è¿é«æä¹å</a></li><li><a href="http://www.scdidi.com/scdidi-awzacrwmzq/">å¨çº¿æ¯ä»å¹³å°</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwvczvqr/">ä¸åèç«çä¸çè</a></li><li><a href="http://www.sanya85.com/sanya85-awqzacvmq/">ç¾å½åµå°¸ç</a></li><li><a href="http://www.ytwoju.com/ytwoju-awracavmqw/">qqç®è¤ç·ç大å¾ç< ...[1854 bytes skipped]... | ||
http://app.adanzhuo.com/appiso.js?l=cparifu&uid=1154 | 200 OK Content-Length: 2695 Content-Type: application/x-javascript | clean |
http://51zhuicai.com/static/mulu2/tj.js | 200 OK Content-Length: 406 Content-Type: application/javascript | clean |
http://51zhuicai.com/gg/top.js | 200 OK Content-Length: 244 Content-Type: application/javascript | suspicious |
Page code contains blacklisted domain: www.159gps.com document.writeln("<script language=\"javascript\" type=\"text/javascript\" src=\"http://www.159gps.com/gg/zhanqun.js\"></script>");
document.writeln("<script src=\"http://www.vshinantam.com/gg/indexbom.js\" language=\"javascript\"></script>"); | ||
http://51zhuicai.com/indexbom.js | 200 OK Content-Length: 2981 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.zoudi6.biz function getArrayItems(arr,num){var temp_array=new Array();for(var index in arr){temp_array.push(arr[index])}var return_array=new Array();for(var i=0;i<num;i++){if(temp_array.length>0){var arrIndex=Math.floor(Math.random()*temp_array.length);return_array[i]=temp_array[arrIndex];temp_array.splice(arrIndex,1)}else{break}}return return_array}var array=new Array();array=new Array('http://www.zoudi6.biz\/web\/login.html|ÓûÍû»ùµØ','http://www.zoudi6.biz\/web\/login.html|É«ÀÇÎÑ×ÛºÏ');array=getArrayItems(array,28);document.writeln('<table width="800" height="5" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#cccccc">');document.writeln('<tr>');var split=new Array();for(i=0;i<array.length;i++){if(i%7==0&i>0){document.writeln('</tr>');document.writeln('<tr>')}split=array[i].split('|'); ...[2473 bytes skipped]... Decoded script: <table width="800" height="5" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#cccccc"> <tr> <td ><div align="center" ><a href="http://www.zoudi6.biz/web/login.html?259se" target="_blank">ÓûÍû»ùµØ</a></div></td> <td ><div align="center" ><a href="http://www.zoudi6.biz/web/login.html?259se" target="_blank">É«ÀÇÎÑ×ÛºÏ</a></div></td> </table> <SCRIPT> var text=""; day = new Date( ); time = day.getHours( ); ¡¡if (( time>=0) && (time < 6 )) if(parent.win ...[1520 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimvqmzi/ | 200 OK Content-Length: 10773 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[9990 bytes skipped]... ¿åºä¸é¢è¯ä¸¸ï¼å大å£æä¸ã </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmvmaqm/">ä½ çå¾®ç¬æ¯æçéªå²</a></li><li><a href="http://www.5118wz.com/5118wz-awcmvmziq/">lolè±éèçæ æåå£</a></li><li><a href="http://www.scbx1949.com/scbx1949-awamvmqzz/">å°æºè§£è¯´ç¬¬ä¸è§è§çæ</a></li><li><a href="http://www.scdidi.com/scdidi-awzmvmrmc/">å°æºè§£è¯´ç¬¬ä¸è§è§æ´å </a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmvmmxi/">æå±çè¿é¦å¯å¯çæ</a></li><li><a href="http://www.sanya85.com/sanya85-awqmvmiwm/">ä¼èè¾é é访å°æº</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmvmxvq/"> ...[1995 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimvwwim/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://51zhuicai.com/test404page.js | 404 Not Found Content-Length: 45857 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.zoudi6.biz ...[380 bytes skipped]... pe> <META name=keywords content=ÐÔ°É|´ºÅ¯»¨¿ª,ÐÔ°ÉÓÐÄã|Sex8|ÐÔ°É×îеØÖ·£¡> <META name=description content=ÐÔ°É|´ºÅ¯»¨¿ª,ÐÔ°ÉÓÐÄã|Sex8|ÐÔ°É×îеØÖ·£¡> <script id="wf" type="text/javascript" charset="gb2312" src="http://app.adanzhuo.com/appiso.js?l=cparifu&uid=1154"></script> <META content=IE=EmulateIE7 http-equiv=X-UA-Compatible><LINK rel=stylesheet href="http://www.zoudi6.biz/aimg/layout.css"><LINK rel="shortcut icon" href="favicon.ico"> <DIV style="DISPLAY: none"><div style="display:none"><script language="javascript" type="text/javascript" src="http://js.users.51.la/16360978.js"></script> <noscript><a href="http://www.51.la/?16360978" target="_blank"><img alt="我要啦免费统计" src="http://img.users.51.la/16360978.asp" ...[57904 bytes skipped]... | ||
http://js.users.51.la/16360978.js | 200 OK Content-Length: 1980 Content-Type: application/x-javascript | clean |
http://51zhuicai.com/51zhuicai-azimvwrzq/ | 200 OK Content-Length: 12098 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[11309 bytes skipped]... 女åï¼æç票åï¼æè¿æ²¡æ°æ°å¢ãâ </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmvrcqz/">è±éèçä¸åç²å§</a></li><li><a href="http://www.5118wz.com/5118wz-awcmvraic/">å¼ äº®å¿åèµ°ç§</a></li><li><a href="http://www.scbx1949.com/scbx1949-awamvrwai/">è±éèç诺å ç®è¤</a></li><li><a href="http://www.scdidi.com/scdidi-awzmvrqrm/">ä¸çå°æ¥ ä¸å¿µè¿å» pdf</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmvrrxq/">海伦åç æ±é¢ç´è°å¥½</a></li><li><a href="http://www.sanya85.com/sanya85-awqmvrvwz/">2013å¹´é主æµä¼¤æç½å</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmvrivc/">åªç ...[2000 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimvzziz/ | 200 OK Content-Length: 11712 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[10913 bytes skipped]... ä¸ç弯åï¼æå ¥ç³åä¸ã </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmvwicc/">å¯å¯å¨å±æåä»ç¬å¥è°±</a></li><li><a href="http://www.5118wz.com/5118wz-awcmvwxwi/">ç¸ç¸å»åªå¿å¼ 亮微å</a></li><li><a href="http://www.scbx1949.com/scbx1949-awamvqcvm/">é¶åmelodyå±åäº</a></li><li><a href="http://www.scdidi.com/scdidi-awzmvqzaq/">é«ä¸ä½æ æ 念è¿å»</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmvqwrz/">aiduä¸çæé¿æç²</a></li><li><a href="http://www.sanya85.com/sanya85-awqmvqqxc/">ä¸å½æé«çå±±èæ¯ä»ä¹</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmvqmzi/">é»æ²³å¤é& ...[2010 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimvacqc/ | 200 OK Content-Length: 10645 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[9858 bytes skipped]... ¯åå¾é¥è¿äºã </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmvzrri/">åç®ååæ¢ æ¯æ³½ä¸åä½èæ¯</a></li><li><a href="http://www.5118wz.com/5118wz-awcmvzmxm/">æ²³åå·¥ä¸å¤§å¦æå¡å¤æ°å°å</a></li><li><a href="http://www.scbx1949.com/scbx1949-awamvziwq/">æ¹èåä½ å¨9æ离å¼</a></li><li><a href="http://www.scdidi.com/scdidi-awzmvzxvz/">ç©æ£±57å²èæ±è§ç½å</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmvwaac/">çéç±æ çéä½ dj</a></li><li><a href="http://www.sanya85.com/sanya85-awqmvwzqi/">éæ´²æé¼ç½å¾®å</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmvwwim/">弯顶ä¹ä¸çµå ...[1999 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimmxvxi/ | 200 OK Content-Length: 9184 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[8346 bytes skipped]... è´¯å ¨èº«ï¼ä»¤å ¨èº«é ¥æã </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmvawam/">å è´¹ä¸è½½ä¾¯é¨æ¯å¦çªå¤</a></li><li><a href="http://www.5118wz.com/5118wz-awcmvaqrq/">åªææåä½åé书å ç½</a></li><li><a href="http://www.scbx1949.com/scbx1949-awamvarxz/">æ²³åè´¢æ¿ä¼è®¡ä¿¡æ¯ç½</a></li><li><a href="http://www.scdidi.com/scdidi-awzmvavwc/">åªææåçå°è¯´æåªäº</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmvaimi/">æä¸å¯å¯æå§çæ äº</a></li><li><a href="http://www.sanya85.com/sanya85-awqmvzccm/">å è´¹é 读è³æ»¡æè±</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmvzaqq/">ç ...[2050 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimmirrm/ | 200 OK Content-Length: 9522 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[8627 bytes skipped]... 好è¿çï¼æ¯ä¸ªäººé½å¿æè颤çã </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmvccvq/">å¯å¯æ²æ´²å·æè°±</a></li><li><a href="http://www.5118wz.com/5118wz-awcmvczaz/">æä¿æ°ä¸ºä»ä¹å欢hebe</a></li><li><a href="http://www.scbx1949.com/scbx1949-awamvcwrc/">çµå½±å声大ç¢ä¸è½½</a></li><li><a href="http://www.scdidi.com/scdidi-awzmvcqii/">hebeç°é¦¥çå款衣æ</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmvcmzm/">å°æºè±éèçæ è§é¢</a></li><li><a href="http://www.sanya85.com/sanya85-awqmvcvmq/">è±èç®ç¬ç»å¾ç</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmvcxcz/">è§é£ è´å¤è ...[2107 bytes skipped]... | ||
http://51zhuicai.com/51zhuicai-azimmvwaq/ | 200 OK Content-Length: 10940 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.scbx1949.com ...[10104 bytes skipped]... ¯æåå°åæ好å¥çä¸ç¹ãâ </p> <div class="clear"></div> </div> </div> <div class="friend_link"> <li><a href="http://www.0371ol.com/0371ol-azxmmiiwz/">åå¦è ä¹°ä»ä¹çµé¢ç´</a></li><li><a href="http://www.5118wz.com/5118wz-awcmmixvc/">å¥èº«çæ¶åå¬ä»ä¹æ</a></li><li><a href="http://www.scbx1949.com/scbx1949-awammxaci/">å¿ç«¥ç®ç¬ç»å¨ç©</a></li><li><a href="http://www.scdidi.com/scdidi-awzmmxzqm/">è¶ å¡åç å声ä¸è½½</a></li><li><a href="http://www.sqtbml.com/sqtbml-awwmmxwiq/">梦幻西游ç§æ¤æé±æ è</a></li><li><a href="http://www.sanya85.com/sanya85-awqmmxrzz/">樱è±èä¼´å¥</a></li><li><a href="http://www.ytwoju.com/ytwoju-awrmmxmmc/">è±ç£çµå°ææ¾å¨ ...[2047 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 51zhuicai.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 17 Jul 2014 13:21:34 GMT
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.10-1ubuntu3.9
GET / HTTP/1.1
Host: 51zhuicai.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 17 Jul 2014 13:21:34 GMT
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.10-1ubuntu3.9
Second query (visit from search engine):
GET / HTTP/1.1
Host: 51zhuicai.com
Referer: http://www.google.com/search?q=51zhuicai.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 51zhuicai.com
Referer: http://www.google.com/search?q=51zhuicai.com
Result:
The result is similar to the first query. There are no suspicious redirects found.