Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mir52.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.mir52.net/ | 200 OK Content-Length: 237 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: d687ef1ed80f97de.0075.cdn.78302.com <meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<script language="javascript" type="text/javascript" src="http://d687ef1ed80f97de.0075.cdn.78302.com/nipaiyi/cdn/js/20150223200247001.js?d=www.mir52.net"></script> | ||
http://d687ef1ed80f97de.0075.cdn.78302.com/nipaiyi/cdn/js/20150223200247001.js?d=www.mir52.net | 200 OK Content-Length: 10274 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.mir52.net ...[429 bytes skipped]... script>"); document.writeln("<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">"); document.writeln("<html xmlns=\"http://www.w3.org/1999/xhtml\">"); document.writeln("<head>"); document.writeln("<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\" />"); document.writeln("<title>´«Ææ²»ÈÈѪ-www.mir52.net</title>"); document.writeln("<meta name=\"Keywords\" content=\"ÒÐÌìÍÀÁú,´«ÆæÍÀÁú\" />"); document.writeln("<meta name=\"Description\" content=\"´«ÆæÄ£°å,¿ªÇøÄ£°å,Ãâ·Ñ´«ÆæÄ£°å,´«ÆæÄ£°å¿â,˽·þÍøվģ°åÏÂÔØ,´«Ææ˽·þÍøվģ°åÏÂÔØ,´«Ææ˽·þÍøÕ¾ÏÂÔØ,Íøվģ°æ,¿áÕ¾,´«ÆæÄ£°æ,´«ÆæÍøÄ£,˽·þÍøÄ£,˽·þÄ£°æ,ºÃÄ£°æ,ºÃÍøÄ£,www.9youwang.com\" />"); document.writeln("<link href=\"http://d687ef1ed80f97de.0075.cdn.78302.com/30ps_ssqx/9youwang.com.css?d=www.mir52.net\" ...[3122 bytes skipped]... Decoded script: ...[132 bytes skipped]... lank'> <img src='http://8m7h68ux.tjlangyue.com/Content/User/blue/back/images/pay11.gif' border='0'></a></div> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>´«Ææ²»ÈÈѪ-www.mir52.net</title> <meta name="Keywords" content="ÒÐÌìÍÀÁú,´«ÆæÍÀÁú" /> <meta name="Description" content="´«ÆæÄ£°å,¿ªÇøÄ£°å,Ãâ·Ñ´«ÆæÄ£°å,´«ÆæÄ£°å¿â,˽·þÍøվģ°åÏÂÔØ,´«Ææ˽·þÍøվģ°åÏÂÔØ,´«Ææ˽·þÍøÕ¾ÏÂÔØ,Íøվģ°æ,¿áÕ¾,´«ÆæÄ£°æ,´«ÆæÍøÄ£,˽·þÍøÄ£,˽·þÄ£°æ,ºÃÄ£°æ,ºÃÍøÄ£,www.9youwang.com" /> <link href="http://d687ef1ed80f97de.0075.cdn.78302.com/30ps_ssqx/9youwang.com.css?d=www.mir52.net" rel="stylesheet" type="text/css" /> <style type="text/css"> ...[7735 bytes skipped]... | ||
http://www.mir52.net/test404page.js | 404 Not Found Content-Length: 5220 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mir52.net
Result:
GET / HTTP/1.1
Host: mir52.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mir52.net
Referer: http://www.google.com/search?q=mir52.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mir52.net
Referer: http://www.google.com/search?q=mir52.net
Result:
The result is similar to the first query. There are no suspicious redirects found.