Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=qldgm.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://qldgm.com/ | HTTP/1.1 200 OK Date: Thu, 26 Jun 2014 05:58:06 GMT Accept-Ranges: bytes ETag: "869b45dc653cf1:c7b6" Server: Microsoft-IIS/6.0 Content-Length: 19487 Content-Location: http://qldgm.com/index.html Content-Type: text/html Last-Modified: Wed, 09 Apr 2014 07:36:05 GMT X-Powered-By: ASP.NET | clean |
http://qldgm.com/index.html | 200 OK Content-Length: 19487 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.181178.com ...[508 bytes skipped]... ½éÉÜ°Ù¼ÒÀÖµÄÊÀ½çÀúÊ·Ô¨Ô´ºÍÕæÈË°Ù¼ÒÀÖ·¢Õ¹¶¯Ì¬,¶Ô°Ù¼ÒÀÖÓÎÏ·¹æÔòºÍ°Ù¼ÒÀÖ¼¼ÇÉ֪ʶ½éÉÜ,½ôÕŴ̼¤µÄÏÖ³¡°Ù¼ÒÀÖÍøÉÏ°Ù¼ÒÀÖ£¡" /><link href="skins/2009/css/sdcms.css" rel="stylesheet" type="text/css" /><script>var webdir="/";</script><script src="/editor/jquery.js" language="javascript"></script><script src="/skins/2009/js/sdcms.js" language="javascript"></script><SCRIPT language=JavaScript src="http://www.181178.com/qq.js"></SCRIPT><style><!--.s_nav{height:45px}p{margin:0;padding:0;list-style:none}.s_nav a{color:#0000cc;font-size:14px}.s_nav .s_logo{margin-right:20px;float:left}--></style></head><body><div class="width"><div id="top_logo"><a class="s_logo" onmousedown="return c({'fm':'tab','tab':'logo'})" href="http://www.baidu.com/"><img title="µ½°Ù¶ÈÊ×Ò³" border="0" alt="µ½°Ù¶ÈÊ×Ò³" src="http://www.baidu.com/img/baidu_jgylogo3.gif" ...[22794 bytes skipped]... | ||
http://qldgm.com/editor/jquery.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://qldgm.com/skins/2009/js/sdcms.js | 200 OK Content-Length: 13293 Content-Type: application/x-javascript | clean |
http://www.181178.com/qq.js | 200 OK Content-Length: 166 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.5780.com document.writeln("<IFRAME border=0 name=I1 align=center marginWidth=0 src=\" http://www.5780.com/\" frameBorder=0 width=\"1360\" scrolling=no height=8158></IFRAME>"); Decoded script: <IFRAME border=0 name=I1 align=center marginWidth=0 src=" http://www.5780.com/" frameBorder=0 width="1360" scrolling=no height=8158></IFRAME> | ||
http://count16.51yes.com/click.aspx?id=160190615&logo=7 | 200 OK Content-Length: 1777 Content-Type: text/html | clean |
http://count16.51yes.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: qldgm.com
Result:
HTTP/1.1 200 OK
Date: Thu, 26 Jun 2014 05:58:06 GMT
Accept-Ranges: bytes
ETag: "869b45dc653cf1:c7b6"
Server: Microsoft-IIS/6.0
Content-Length: 19487
Content-Location: http://qldgm.com/index.html
Content-Type: text/html
Last-Modified: Wed, 09 Apr 2014 07:36:05 GMT
X-Powered-By: ASP.NET
...19487 bytes of data.
GET / HTTP/1.1
Host: qldgm.com
Result:
HTTP/1.1 200 OK
Date: Thu, 26 Jun 2014 05:58:06 GMT
Accept-Ranges: bytes
ETag: "869b45dc653cf1:c7b6"
Server: Microsoft-IIS/6.0
Content-Length: 19487
Content-Location: http://qldgm.com/index.html
Content-Type: text/html
Last-Modified: Wed, 09 Apr 2014 07:36:05 GMT
X-Powered-By: ASP.NET
...19487 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: qldgm.com
Referer: http://www.google.com/search?q=qldgm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: qldgm.com
Referer: http://www.google.com/search?q=qldgm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.