Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=desk.159.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://desk.159.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://desk.159.com/ | 200 OK Content-Length: 75068 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.159.com ...[2152 bytes skipped]... r/> <script type="text/javascript" src="/NewAspx/indexAspx/CheckTop.aspx"></script> </div> </div> <div class="top1_1" style="margin-top:2px;"> <div class="n_top3" style="width:70px; height:20px; float:right; text-align:center; line-height:22px; overflow:hidden; padding-right:10px;"><a target="_blank" href="http://www.159.com/help/TranslateJKBSM.aspx" title="Éý¼¶VIP»áÔ±"></a></div> </div> <DIV id="site-nav"> <DIV id="site-nav-bd"> <UL class="quick-menu UL" style="padding-left:0px; " > <LI class="menu-item nav10"> <DIV c ...[86357 bytes skipped]... | ||
http://desk.159.com/js/9e3_search.js | 200 OK Content-Length: 4742 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: so.159.com function $(id)
{ return document.getElementById(id); } function show(n){ for(var i=1;i<5;i++){ if(i==n) $('r'+i).className='r b'; else $('r'+i).className='r'; } var f=document.f; if(n==1) f.action='http://so.159.com/cgi-bin/daren'; else if(n==2) f.action='http://so.159.com/cgi-bin/eget'; else if(n==3) f.action='http://so.159.com/cgi-bin/zhidao'; if(n!=4) $('menu').style.display='none'; } function show_menu(){ if($('menu').style.display!='block') $('menu').style.display='block'; else $('menu').style.display='none'; } function displaySubMenu(li) { var ...[4877 bytes skipped]... | ||
http://desk.159.com/js/BT.js | 200 OK Content-Length: 3356 Content-Type: application/x-javascript | clean |
http://desk.159.com/js/AI_js.js | 200 OK Content-Length: 79934 Content-Type: application/x-javascript | clean |
http://desk.159.com/NewJs/IndexJs/a.tbcdn.js | 200 OK Content-Length: 70564 Content-Type: application/x-javascript | clean |
http://desk.159.com/NewJs/IndexJs/del.js | 200 OK Content-Length: 470 Content-Type: application/x-javascript | clean |
http://desk.159.com/NewAspx/indexAspx/CheckTop.aspx | 200 OK Content-Length: 103 Content-Type: text/html | clean |
http://desk.159.com/test404page.js | 200 OK Content-Length: 2650 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.159.com ...[637 bytes skipped]... > text-decoration: underline; } .STYLE1 {color: #FFFFFF} .STYLE2 { font-family: "ºÚÌå"; font-size: 18px; font-weight: bold; color: #FF0000; } --> </style> </head> <body> <div align="center"> <table width="474" border="0" cellpadding="0" cellspacing="0" class="box"> <tr> <td background="http://www.159.com/images/e_02.jpg"><table width="474" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="143"><div align="left"><a href="http://www.159.com/"></a></div></td> <td width="331"><div align="left"><span class="STYLE1">·Ç³£±§Ç¸£¬ÄúÒª·ÃÎʵÄÒ³ÃæÎÞ·¨ÕÒµ½£¡</span></div></td> </tr> </table></td> </tr> ...[1877 bytes skipped]... | ||
http://count11.51yes.com/click.aspx?id=116201287&logo=12 | 200 OK Content-Length: 1694 Content-Type: text/html | clean |
http://count11.51yes.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://desk.159.com/NewAspx/indexAspx/GouWuChe.aspx | 200 OK Content-Length: 789 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.159.com document.write("<a href='http://www.159.com/NewAspx/ShopCart/Shop_cart.aspx' target='_top' rel='nofollow' class='menu-hd' id='mc-menu-hd' ><span class='mini-cart-line'></span><s></s>¹ºÎï³µ<span class='mc-count mc-pt3'>0</span>¼þ<b></b></a><div class='mini-cart-content menu-bd mini-cart-ready' role='menu' aria-hidden='true' id='menu-97' style=' width:170px;'><div style=' float:left; color:#3E3E3E; height:20px; width:1 ...[408 bytes skipped]... | ||
http://desk.159.com/Lands/login.aspx?hot=n | 200 OK Content-Length: 2653 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.159.com document.write("<form action='/Lands/check_ZhiDao.aspx' method='post' name='form2' ><div id='index_top_11'><div style='width:100%;float:left;'><div id='index_top_12'>LOGIN</div><div id='index_top_13'>µÇ½</div><div id='index_top_1300' style='font-size:12px; font-weight:normal;'><ul id='navigation'><li onMouseOver='displaySubMenu(this)' onmouseout='hideSubMenu(this)'> ÆäËüÕʺŵǼ <img src='http://www.159.com/img/1.gif' border='0' /><ul><li ><a href='http://www.159.com/t/Binding.aspx?action=SinaBind'><div style='background:url(http://www.159.com/img/3.gif) 5px no-repeat; height:24px; text-align:left; width:100px;'> ÐÂÀË΢²© </div></a></li><li><a href='http://www.159.com/t/Binding.aspx?action=QQBind'><div style='backgr ...[2338 bytes skipped]... | ||
http://desk.159.com/Lands/Search_top1.aspx | 200 OK Content-Length: 2660 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: so.159.com ...[1617 bytes skipped]... v><div id='z8' style='padding-top:2px;padding-left:15px;' onMouseOver=\"this.style.background='#c9e2f8'\" onMouseOut=\"this.style.background='#fff'\" onClick=\"changeSelect('ÊÖ»ú¶ÌÐÅ','sms.aspx');\">ÊÖ»ú¶ÌÐÅ</div></div></div><div onclick=\"Change_Form(3)\"><div class=\"searc_top_3\" id=\"searc_top_3\" >΢²©Íõ</div></div><div class='searc_top_4_NHJ' id='searc_top_4'><a href='http://so.159.com'>-so.159.com</a></div></div><div class='searc_bottom'><form name='serach' method='get' action='http://so.159.com/Mobile.aspx' target='_blank'><div class='searc_bottom_1'><input type='text' id=\"keyword\" name=\"keyword\" style='color:#8e9193;font-size:12px;vertical-align:bottom;' onfocus =\"if(value!=''){value=''}\" class='search' value='ÇëÊäÈëÊÖ»úÐͺţ¬Èçŵ»ùÑÇE71£¬ÔòÊäÈëE71'/></div><div class='searc_bottom_2'><input type ...[386 bytes skipped]... | ||
http://desk.159.com/NewAspx/indexAspx/CheckLoing.aspx?Pag=3&brand=&type= | 200 OK Content-Length: 498 Content-Type: text/html | clean |
http://desk.159.com/NewJs/IndexJs/jquery-1.4.4.min.js | 200 OK Content-Length: 82353 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: desk.159.com
Result:
HTTP/1.1 200 OK
Date: Sun, 06 Apr 2014 22:17:07 GMT
Accept-Ranges: bytes
ETag: "fee0d394df34cf1:d726"
Server: Microsoft-IIS/6.0
Content-Length: 75068
Content-Location: http://desk.159.com/index.html
Content-Type: text/html
Last-Modified: Fri, 28 Feb 2014 23:48:29 GMT
X-Powered-By: ASP.NET
...75068 bytes of data.
GET / HTTP/1.1
Host: desk.159.com
Result:
HTTP/1.1 200 OK
Date: Sun, 06 Apr 2014 22:17:07 GMT
Accept-Ranges: bytes
ETag: "fee0d394df34cf1:d726"
Server: Microsoft-IIS/6.0
Content-Length: 75068
Content-Location: http://desk.159.com/index.html
Content-Type: text/html
Last-Modified: Fri, 28 Feb 2014 23:48:29 GMT
X-Powered-By: ASP.NET
...75068 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: desk.159.com
Referer: http://www.google.com/search?q=desk.159.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: desk.159.com
Referer: http://www.google.com/search?q=desk.159.com
Result:
The result is similar to the first query. There are no suspicious redirects found.