Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=57see.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.57see.net/ | 200 OK Content-Length: 39774 Content-Type: text/html | clean |
http://www.57see.net/css.js | 200 OK Content-Length: 1275 Content-Type: application/x-javascript | clean |
http://www.57see.net/img/js/script.js | 200 OK Content-Length: 275 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<script type="text/javascript" src="/img/js/jquery.min.js\" ></script>');
document.write('<script type="text/javascript" src="/img/js/jquery.limittext.js\" ></script>'); document.write('<script type="text/javascript" src="/img/js/kaeylc.js\" ></script>'); Antivirus reports:
| ||
http://www.57see.net/js/max_history.js | 200 OK Content-Length: 5414 Content-Type: application/x-javascript | clean |
http://j.ihualun.com/adscpc/i7click.php?z=1764 | 500 Can't connect to j.ihualun.com:80 Content-Length: 188 Content-Type: text/plain | clean |
http://j.ihualun.com/test404page.js | 500 Can't connect to j.ihualun.com:80 Content-Length: 188 Content-Type: text/plain | clean |
http://j.ihualun.com/wangzhai/i.php?z=1400 | 500 Can't connect to j.ihualun.com:80 Content-Length: 188 Content-Type: text/plain | clean |
http://js.union.doudouguo.com/cpro.js | 200 OK Content-Length: 4834 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 0x0 src: http://qiqu.bjjhdz.com/x/app/76_522.htm?uid= <iframe src="http://qiqu.bjjhdz.com/x/app/76_522.htm?uid=' + window.ddgu_uid + '&zoneid=' + window.ddgu_zid + '" width="0" height="0" frameborder="0" scrolling="no"> Hidden iFrame found. size: 0x0 src: http://qiqu.bjjhdz.com/x/app/76_522.htm?uid= <iframe src="http://qiqu.bjjhdz.com/x/app/76_522.htm?uid=' + window.ddgu_uid + '" width="0" height="0" frameborder="0" scrolling="no"> | ||
http://www.57see.net/js/guanggao/sy300x250.js | 200 OK Content-Length: 814 Content-Type: application/x-javascript | clean |
http://www.57see.net/js/guanggao/qztl.js | 200 OK Content-Length: 737 Content-Type: application/x-javascript | clean |
http://www.57see.net/js/guanggao/qzdb.js | 200 OK Content-Length: 563 Content-Type: application/x-javascript | clean |
http://www.57see.net/js/guanggao/qzdb1.js | 200 OK Content-Length: 2458 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 57see.net
Result:
GET / HTTP/1.1
Host: 57see.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: 57see.net
Referer: http://www.google.com/search?q=57see.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 57see.net
Referer: http://www.google.com/search?q=57see.net
Result:
The result is similar to the first query. There are no suspicious redirects found.