Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=helaozhangrenxingjiao.k5k3.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://helaozhangrenxingjiao.k5k3.com/ | 200 OK Content-Length: 29224 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: lbaab.k5k3.com ...[3903 bytes skipped]... ŵ÷²éÎʾíµÈ·½Ê½¡£ ºÍÀÏÕÉÈËÐÔ½»3G¼ÓÇ¿°æÖÇÄÜ´¥¿Øϵͳ-Ö§³Öwwwä¯ÀÀÆ÷£¬GPSÖÇÄܵ¼º½. ʱÉÐÓÅÑÅ£¬ÉÌÎñÖÇÕß-ʱÉÐÓÅÑÅ£¬ÐÂÔöÁË´Ê×éÈ¡´ÊºÍMini´°¿Ú¹¦ÄÜ£¬ Ëü¸ù±¾¾Í²»ÊÇ°®ÇéС˵£¬ËüÊÇÒ»±¾·´°®ÇéµÄС˵£¬Ð½üʵʩµÄÎ÷²ØÈøåÈË¡°¾Êéǽ¡±¾Êé°áǨ¹¤³ÌÇ£¶¯ÁËÊÀ½çµÄÄ¿¹â¡£ Ò²ÐíÔÚÿ¸öÁµÈËÑÛÀï¶Ô·½¶¼ÊÇÃÀµÄ£¬µ«Õâ¸öÃÀÄÜά³Ö¶à¾Ã£¬ À뿪¾¿¾¹ÊÇÒ»ÖÖ½âÍÑ£¬»¹ÊÇÄãÁô¸øÎÒµÄÕÛÄ¥£¬ÀáˮĪÃûµÄµÎÂ䣬µÎÈë¼ÇÒäµÄäöÎС£ se6666xbcom ÓÐÈË˵£ºÇïÌìûÓÐͯ»°£¬ÄÇôÏÖÔÚÊǶ¬Ì죬 <a href="http://lbaab.k5k3.com/">w£×w881277CO£Í</a>Õâ¸öʱºòËäÈ»¸ÐÇ黹ÔÚ£¬µ«ÊǺܶàÊÂÇé·¢ÉúÁË£¬ ¾ÍÊÇĪÃûµÄÊèÔ¶¡£ËûºÍËýÐĵ׶¼ÓÐÉË£¬ÕâÉ˺ۺÜÄÑĨȥ£¬¾¡¹ÜºÜŬÁ¦£¡ ż¶û»¹Ï໥µ÷Ù©£¬ÏëÆðÀ´Ò»±¾ÊéÉÏÓÐÕâôһ¾ä»°£º¹ýÈ¥µÄ»Ø²»È¥£¬»ØÈ¥µÄ²»ÔÚÃÀºÃ¡£ ÈÈÃÅÁôѧ¹úµÄÁôѧ°ìÀíÒµÎñ£¬ <strong>ÐÂģ˽ÅÄ</strong>3G¼ÓÇ¿°æÖÇÄÜ´¥¿Øϵͳ-Ö§³Öwwwä¯ÀÀÆ÷£¬GPSÖÇÄܵ¼º½. ʱÉÐÓÅÑÅ£¬ÉÌÎñÖÇÕß-ʱÉÐÓÅÑÅ£¬ÐÂÔöÁË´Ê×éÈ¡´ÊºÍMini´°¿Ú¹¦ÄÜ£¬ ¸ù¾ÝʡίÐû´«²¿ºÍÊÐίÐû´«²¿µÄ°²ÅÅ£¬½üÈÕ£¬Èý̨ÏØίÐû´«²¿Í¨¹ý×ß·Ã×ù̸¡¢·¢·Åµ÷²éÎʾíµÈ·½Ê½¡£ ¿ÉÄÜ»áÓÐЩÂÒ£¬ ...[29362 bytes skipped]... | ||
http://js.users.51.la/4043529.js | 200 OK Content-Length: 1945 Content-Type: application/x-javascript | clean |
http://helaozhangrenxingjiao.k5k3.com/jump.js | HTTP/1.1 200 OK Date: Tue, 24 Jun 2014 19:49:14 GMT Accept-Ranges: bytes ETag: "0b36187c333cf1:1459" Server: IIS Content-Length: 1704 Content-Location: http://helaozhangrenxingjiao.k5k3.com/jump.js Content-Type: application/x-javascript Last-Modified: Thu, 27 Feb 2014 13:55:10 GMT X-Powered-By: WAF/2.0 | clean |
http://helaozhangrenxingjiao.k5k3.com/test404page.js | 404 Not Found Content-Length: 670 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: helaozhangrenxingjiao.k5k3.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 24 Jun 2014 19:49:12 GMT
Server: IIS
Content-Type: text/html; charset=gbk
X-Powered-By: WAF/2.0
X-Powered-By: WAF/2.0
GET / HTTP/1.1
Host: helaozhangrenxingjiao.k5k3.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 24 Jun 2014 19:49:12 GMT
Server: IIS
Content-Type: text/html; charset=gbk
X-Powered-By: WAF/2.0
X-Powered-By: WAF/2.0
Second query (visit from search engine):
GET / HTTP/1.1
Host: helaozhangrenxingjiao.k5k3.com
Referer: http://www.google.com/search?q=helaozhangrenxingjiao.k5k3.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: helaozhangrenxingjiao.k5k3.com
Referer: http://www.google.com/search?q=helaozhangrenxingjiao.k5k3.com
Result:
The result is similar to the first query. There are no suspicious redirects found.