Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hljcre.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: falvsz.com
Result:
GET / HTTP/1.1
Host: falvsz.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: falvsz.com
Referer: http://www.google.com/search?q=falvsz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: falvsz.com
Referer: http://www.google.com/search?q=falvsz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.hljcre.com/ | HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2015 19:29:03 GMT Location: http://www.yisouxs.com/ Server: Apache/2.2.3 (CentOS) Content-Length: 146 Content-Type: text/html; charset=UTF-8 | malicious |
http://www.yisouxs.com/ | 200 OK Content-Length: 28863 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.19xs.com ...[2996 bytes skipped]... gt;<em>12</em><a target="_blank" href="/hljcre/53/53268/">³¬¼¶ÌáÈ¡</a></li> <li><em>13</em><a target="_blank" href="/hljcre/53/53267/">ÎÞË«ÂÖ»Ø</a></li> </ul> </div> </div> </div> <div class="clear"></div> <div class="youlink"><ul><li>ÓÑÇéÁ´½Ó£º<a href="http://www.19xs.com" target="_blank">19С˵Íø</a> <a href="http://www.yfzgw.com" target="_blank">¶¼ÊÐС˵Íø</a> <a href="http://www.sxtvi.com" target="_blank">ɽÎ÷С˵Íø</a> <a href="http://www.yxzmd.com" target="_blank">Ó¢ÐÛС˵Íø</a> <a href="http://www.fkkxs.com" target="_blank">·è¿ñ¿´Ð¡Ëµ</a> <a href="http://www.77119.com" target="_blank">µç×ÓÊéÏÂÔØ</a> <a href="http://www.9wh.net" target="_blank"& ...[1454 bytes skipped]... | ||
http://www.yisouxs.com/dcr/js/fc.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.hljcre.com/dcr/js/jquery.js | HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2015 19:29:08 GMT Location: http://www.yisouxs.com/dcr/js/jquery.js Server: Apache/2.2.3 (CentOS) Content-Length: 162 Content-Type: text/html; charset=UTF-8 | malicious |
http://www.yisouxs.com/dcr/js/jquery.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.hljcre.com/dcr/js/common.js | HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2015 19:29:10 GMT Location: http://www.yisouxs.com/dcr/js/common.js Server: Apache/2.2.3 (CentOS) Content-Length: 162 Content-Type: text/html; charset=UTF-8 | malicious |
http://www.yisouxs.com/dcr/js/common.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.hljcre.com/ad/ad_top.js | HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2015 19:29:14 GMT Location: http://www.yisouxs.com/ad/ad_top.js Server: Apache/2.2.3 (CentOS) Content-Length: 158 Content-Type: text/html; charset=UTF-8 | malicious |
http://www.yisouxs.com/ad/ad_top.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.yisouxs.com/test404page.js | 404 Not Found Content-Length: 0 | clean |
http://www.hljcre.com/qijixs.js | HTTP/1.1 301 Moved Permanently Date: Sun, 11 Jan 2015 19:29:21 GMT Location: http://www.yisouxs.com/qijixs.js Server: Apache/2.2.3 (CentOS) Content-Length: 155 Content-Type: text/html; charset=UTF-8 | malicious |
http://www.yisouxs.com/qijixs.js | 404 Not Found Content-Length: 0 | clean |