Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=57dda.qh.eefav.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://57dda.qh.eefav.com/ | 200 OK Content-Length: 9708 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.93854.netbar.eefav.com ...[691 bytes skipped]... css" media="screen" /> </head> <body> <div id="header"> <div id="logo"> <h1>1.76¸´¹Å´«ÆæÍøͨ</h1> <p>ΪÄãÍƼö</p> </div> <div id="menu"> <ul> <li class="current_page_item"><a href="http://57dda.qh.eefav.com/">1.76¸´¹Å´«ÆæÍøͨÊ×Ò³</a></li> <li><a href="http://www.93854.netbar.eefav.com/">ºüÔÂɽ</a></li> <li><a href="http://www.bh.eefav.com/">½«¾üÖбä</a></li> <li><a href="http://www.sec.eefav.com/">·ÂÊ¢´óÓ¢ÐÛÐÄ·¨</a></li> <li><a href="http://57dda.qh.eefav.com.map.html/">ÍøÕ¾µØͼ</a></li> </ul> </div> </div> <!-- end header --> <!-- start page --> <div id="page"> <!-- st ...[11890 bytes skipped]... | ||
http://57dda.qh.eefav.com/tj.js | 200 OK Content-Length: 144 Content-Type: text/javascript | clean |
http://57dda.qh.eefav.com/news2014-4-15/8180.html | 200 OK Content-Length: 1887 Content-Type: text/html | clean |
http://57dda.qh.eefav.com/map.htm | 200 OK Content-Length: 4257 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: qinshui.eefav.com ...[1649 bytes skipped]... -TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://qinshui.eefav.com" target=_blank>1.95´ÌÓ°´«Ææ</A> 2014-4-15</LI> <LI><A href="http://beian.eefav.com" target=_blank>Çá±äÉñ;</A> 2014-4-15</LI> <LI><A href="http://guyuan.huamaotong.com" target=_blank>ÕÒ´«Ææ</A> </LI> <LI><A href="http://earth.b-yongxing.com" target=_blank>wanmeisifu</A>&am ...[2832 bytes skipped]... | ||
http://57dda.qh.eefav.com/0map.html | 200 OK Content-Length: 4293 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: lbsyun.eefav.com ...[1648 bytes skipped]... N-TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://lbsyun.eefav.com" target=_blank>Ê®²Ê´«Ææ</A> 2014-4-15</LI> <LI><A href="http://lzdq.eefav.com" target=_blank>´«Ææ1.80×°±¸</A> 2014-4-15</LI> <LI><A href="http://shaiya.qxrzhg.com" target=_blank>1.85Íøͨ´«Ææ</A> </LI> <LI><A href="http://cjbtcqsf.3gjlb10010.com" target=_blank>À¶Ä§ð©ÔÂ</A>&a ...[2868 bytes skipped]... | ||
http://57dda.qh.eefav.com/2map.html | 200 OK Content-Length: 4333 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: camera.eefav.com ...[1648 bytes skipped]... N-TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://camera.eefav.com" target=_blank>1.76ÌìÏ»ÙÃð¾«Æ·</A> 2014-4-15</LI> <LI><A href="http://weigou.eefav.com" target=_blank>½ñÈÕпªÍøͨ´«Ææ</A> 2014-4-15</LI> <LI><A href="http://zlyl.baijia.zzhzl.com" target=_blank>ÎäÒ×Ò»ÌõÁú</A> </LI> <LI><A href="http://linhai.concrete-mix-plant.com" target=_blank&g ...[2908 bytes skipped]... | ||
http://57dda.qh.eefav.com/4map.html | 200 OK Content-Length: 4261 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: tongchuan.eefav.com ...[1650 bytes skipped]... TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://tongchuan.eefav.com" target=_blank>ÃðÊÀð©ÔÂ</A> 2014-4-15</LI> <LI><A href="http://cy.eefav.com" target=_blank>°ÁÊÓÇá±ä</A> 2014-4-15</LI> <LI><A href="http://xiangji.jiamenkou88.com" target=_blank>´«Ææ176¾«Æ·</A> </LI> <LI><A href="http://wtcq23ok.zzbskj.com" target=_blank>´¿Íøͨ´«Ææ</A>&am ...[2835 bytes skipped]... | ||
http://57dda.qh.eefav.com/5map.html | 200 OK Content-Length: 4283 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: huizhou.eefav.com ...[1649 bytes skipped]... -TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://huizhou.eefav.com" target=_blank>100·ÂÊ¢´ó´«ÆæÉñÆæ</A> 2014-4-15</LI> <LI><A href="http://jrxkqbcqsf.eefav.com" target=_blank>1.76ºÏ»÷</A> 2014-4-15</LI> <LI><A href="http://smx.zzbskj.com" target=_blank>ÎÒ±¾³ÁĬ</A> </LI> <LI><A href="http://dl.sic3s.com" target=_blank>1.75ÃÍá︴¹Å</A>& ...[2858 bytes skipped]... | ||
http://57dda.qh.eefav.com/9map.html | 200 OK Content-Length: 4272 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: cf.eefav.com ...[1646 bytes skipped]... GIN-TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://cf.eefav.com" target=_blank>1.85ÒÐÌìÈÙÒ«</A> 2014-4-15</LI> <LI><A href="http://longjing.eefav.com" target=_blank>ħ֮¹È1.95</A> 2014-4-15</LI> <LI><A href="http://yantai.newstarasia.com" target=_blank>1.85ÓñÍÃÔªËØ</A> </LI> <LI><A href="http://haiyan.dhjcn.com" target=_blank>douposifu</A> ...[2849 bytes skipped]... | ||
http://57dda.qh.eefav.com/1map.html | 200 OK Content-Length: 4324 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: danao.eefav.com ...[1648 bytes skipped]... N-TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://danao.eefav.com" target=_blank>´«Ææ176</A> 2014-4-15</LI> <LI><A href="http://houma.eefav.com" target=_blank>Öбä¸Õ¿ªÒ»Ãë</A> 2014-4-15</LI> <LI><A href="http://rexiechuanqi176.bjtpjy.com" target=_blank>1.76ËæÐÄ´ó¼«Æ·</A> </LI> <LI><A href="http://zhongshan.benshanjy.com" target=_blank>Î޵кϻ÷& ...[2900 bytes skipped]... | ||
http://57dda.qh.eefav.com/7map.html | 200 OK Content-Length: 4276 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: mg.eefav.com ...[1646 bytes skipped]... GIN-TOP: 20px } #loginform { TEXT-ALIGN: center } </STYLE> <META name=GENERATOR content="MSHTML 8.00.6001.19393"></HEAD> <BODY link=#333333 vLink=#333333> <CENTER id=header> <H2>ÍøÕ¾µØͼ</H2></CENTER> <DIV id=nav><A href="/">·µ»ØÊ×Ò³</A> </DIV> <DIV id=content> <LI><A href="http://mg.eefav.com" target=_blank>·ÂÊ¢´óÉñÉß</A> 2014-4-15</LI> <LI><A href="http://tangyuan.eefav.com" target=_blank>Íò½ÙÁ¬»÷</A> 2014-4-15</LI> <LI><A href="http://0519.lww186.com" target=_blank>°Ù·Ö°Ù·ÂÊ¢´ó</A> </LI> <LI><A href="http://tl.httxjkqc.com" target=_blank>1.95¿õÊÀ</A> &a ...[2853 bytes skipped]... | ||
http://57dda.qh.eefav.com/test404page.js | 500 Error Content-Length: 14 Content-Type: text/html | clean |
http://57dda.qh.eefav.com/news2014-4-15/8213.html | 200 OK Content-Length: 1948 Content-Type: text/html | clean |
http://57dda.qh.eefav.com/news2014-4-15/4615.html | 200 OK Content-Length: 1942 Content-Type: text/html | clean |
http://57dda.qh.eefav.com/news2014-4-15/0191.html | 200 OK Content-Length: 1849 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 57dda.qh.eefav.com
Result:
HTTP/1.1 200 OK
Date: Tue, 15 Apr 2014 14:11:07 GMT
Server: Microsoft-IIS/6.0
Content-Length: 9708
Content-Type: text/html
...9708 bytes of data.
GET / HTTP/1.1
Host: 57dda.qh.eefav.com
Result:
HTTP/1.1 200 OK
Date: Tue, 15 Apr 2014 14:11:07 GMT
Server: Microsoft-IIS/6.0
Content-Length: 9708
Content-Type: text/html
...9708 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 57dda.qh.eefav.com
Referer: http://www.google.com/search?q=57dda.qh.eefav.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 57dda.qh.eefav.com
Referer: http://www.google.com/search?q=57dda.qh.eefav.com
Result:
The result is similar to the first query. There are no suspicious redirects found.