Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pksf520.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.pksf520.com/ | 200 OK Content-Length: 239 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: d687ef1ed80f97de.0075.cdn.78302.com <meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<script language="javascript" type="text/javascript" src="http://d687ef1ed80f97de.0075.cdn.78302.com/nipaiyi/cdn/js/20150220174437001.js?d=www.pksf520.com"></script> | ||
http://d687ef1ed80f97de.0075.cdn.78302.com/nipaiyi/cdn/js/20150220174437001.js?d=www.pksf520.com | 200 OK Content-Length: 21855 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.pksf520.com ...[120 bytes skipped]... xhtml1-transitional.dtd\">"); document.writeln("<html xmlns=\"http://www.w3.org/1999/xhtml\">"); document.writeln("<head>"); document.writeln("<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\" />"); document.writeln("<title>åÐÒ£ÁúµÛÖб䡤µÚÈý¼¾¡¤ýÐÐÌìÏÂ</title>"); document.writeln("<link href=\"http://d687ef1ed80f97de.0075.cdn.78302.com/images/index.css?d=www.pksf520.com\" rel=\"stylesheet\" type=\"text/css\" />"); document.writeln("<style type=\"text/css\"> "); document.writeln("<!--"); document.writeln(".STYLE1 {color:#999999}"); document.writeln(".STYLE2 {color:#00FF00}"); document.writeln(".STYLE3 {color:#FF0000}"); document.writeln(".STYLE4 {color:#33FF99}"); document.writeln(".STYLE5 {"); document.writeln(" font-size:14px;"); document.writeln(" font-weight:bold;"); document.write ...[3517 bytes skipped]... Decoded script: <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>åÐÒ£ÁúµÛÖб䡤µÚÈý¼¾¡¤ýÐÐÌìÏÂ</title> <link href="http://d687ef1ed80f97de.0075.cdn.78302.com/images/index.css?d=www.pksf520.com" rel="stylesheet" type="text/css" /> <style type="text/css"> <!-- .STYLE1 {color:#999999} .STYLE2 {color:#00FF00} .STYLE3 {color:#FF0000} .STYLE4 {color:#33FF99} .STYLE5 { font-size:14px; font-weight:bold; color:#FFFF00; } .STYLE7 {color:#FF00FF} .STYLE8 { color:#000000; font-weight:bold; } .STYLE9 { font-size:14px; font-weight:bold; color:#00 ...[18185 bytes skipped]... | ||
http://www.pksf520.com/test404page.js | 404 Not Found Content-Length: 5217 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pksf520.com
Result:
GET / HTTP/1.1
Host: pksf520.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: pksf520.com
Referer: http://www.google.com/search?q=pksf520.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pksf520.com
Referer: http://www.google.com/search?q=pksf520.com
Result:
The result is similar to the first query. There are no suspicious redirects found.