Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ranshao.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://ranshao.com/ | 200 OK Content-Length: 110383 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: xjyinyue.ranshao.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>É˸Р¸ãЦ ·ÇÖ÷Á÷ ¾µä ÀøÖ¾ ÈÕÖ¾´óÈ«,¾µäÓï¼˵˵ÐÄÇé¶ÌÓï,QQ¿Õ¼äÈÕÖ¾</title> <meta name="keywords" content="2014É˸Ð,¸ãЦ,·ÇÖ÷Á÷,¾µä,ÀøÖ¾,ÈÕÖ¾´óÈ«,ÐÄÇ ...[4333 bytes skipped]... | ||
http://ranshao.com/template/qire123/images/js/jquery-1.7.1.min.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:09 GMT Accept-Ranges: bytes ETag: "eea72b8d398fcd1:36f" Server: IIS Content-Length: 93868 Content-Location: http://ranshao.com/template/qire123/images/js/jquery-1.7.1.min.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:49:20 GMT X-Powered-By: WAF/2.0 | clean |
http://ranshao.com/test404page.js | 404 Not Found Content-Length: 4732 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: xjyinyue.ranshao.com ...[2462 bytes skipped]... ellSpacing=0 cellPadding=0 width=780 align=center bgColor=#f7fbff border=0> <TBODY> <TR> <TD height=20>| <STRONG>ÈÈÃÅƵµÀ-> - <a title="н®ÒôÀÖÍø" href="http://3gpmp4.ranshao.com" target="_blank"><font color="#000000">3GPMP4ÏÂÔØ</font></a> | <a title="н®ÒôÀÖÍø" href="http://xjyinyue.ranshao.com" target="_blank"><font color="#000000">н®ÒôÀÖÍø</font></a> | <a title="ȼÉÕÒôÀÖ°É" href="http://music.ranshao.com" target="_blank"><font color="#000000">ȼÉÕÒôÀÖ°É</font></a> | <a title="ÈȲ¥¾ç¼¯" href="http://dianying.ranshao.com" target="_blank"><font color="#000000">ÈȲ¥¾ç¼¯</font></a> | <a title="н®°ï°ì" href="http://bbs.ranshao.com" target="_blank"><font | ||
http://v1.ujian.cc/code/ujian.js?uid=1716608 | 200 OK Content-Length: 16066 Content-Type: application/x-javascript | clean |
http://www.ranshao.com/ad/ad_r_tj.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:16 GMT Accept-Ranges: bytes ETag: "8a8a363d2392cf1:36f" Server: IIS Content-Length: 733 Content-Location: http://www.ranshao.com/ad/ad_r_tj.js Content-Type: application/x-javascript Last-Modified: Fri, 27 Jun 2014 16:17:06 GMT X-Powered-By: WAF/2.0 | clean |
http://www.ranshao.com/test404page.js | 404 Not Found Content-Length: 4732 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: xjyinyue.ranshao.com ...[2462 bytes skipped]... ellSpacing=0 cellPadding=0 width=780 align=center bgColor=#f7fbff border=0> <TBODY> <TR> <TD height=20>| <STRONG>ÈÈÃÅƵµÀ-> - <a title="н®ÒôÀÖÍø" href="http://3gpmp4.ranshao.com" target="_blank"><font color="#000000">3GPMP4ÏÂÔØ</font></a> | <a title="н®ÒôÀÖÍø" href="http://xjyinyue.ranshao.com" target="_blank"><font color="#000000">н®ÒôÀÖÍø</font></a> | <a title="ȼÉÕÒôÀÖ°É" href="http://music.ranshao.com" target="_blank"><font color="#000000">ȼÉÕÒôÀÖ°É</font></a> | <a title="ÈȲ¥¾ç¼¯" href="http://dianying.ranshao.com" target="_blank"><font color="#000000">ÈȲ¥¾ç¼¯</font></a> | <a title="н®°ï°ì" href="http://bbs.ranshao.com" target="_blank"><font | ||
http://www.ranshao.com/sjmovie/ | 200 OK Content-Length: 122598 Content-Type: text/html | clean |
http://www.ranshao.com/ad/dibu1.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:22 GMT Accept-Ranges: bytes ETag: "38c84da2cefbcf1:36f" Server: IIS Content-Length: 1046 Content-Location: http://www.ranshao.com/ad/dibu1.js Content-Type: application/x-javascript Last-Modified: Sun, 09 Nov 2014 03:38:32 GMT X-Powered-By: WAF/2.0 | clean |
http://www.ranshao.com/ | 200 OK Content-Length: 110383 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: xjyinyue.ranshao.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>É˸Р¸ãЦ ·ÇÖ÷Á÷ ¾µä ÀøÖ¾ ÈÕÖ¾´óÈ«,¾µäÓï¼˵˵ÐÄÇé¶ÌÓï,QQ¿Õ¼äÈÕÖ¾</title> <meta name="keywords" content="2014É˸Ð,¸ãЦ,·ÇÖ÷Á÷,¾µä,ÀøÖ¾,ÈÕÖ¾´óÈ«,ÐÄÇ ...[4333 bytes skipped]... | ||
http://www.ranshao.com/template/qire123/images/js/jquery-1.7.1.min.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:29 GMT Accept-Ranges: bytes ETag: "eea72b8d398fcd1:36f" Server: IIS Content-Length: 93868 Content-Location: http://www.ranshao.com/template/qire123/images/js/jquery-1.7.1.min.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:49:20 GMT X-Powered-By: WAF/2.0 | clean |
http://www.ranshao.com/template/qire123/images/js/jquery.base.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:32 GMT Accept-Ranges: bytes ETag: "84c72fa24596cd1:36f" Server: IIS Content-Length: 2771 Content-Location: http://www.ranshao.com/template/qire123/images/js/jquery.base.js Content-Type: application/x-javascript Last-Modified: Wed, 19 Sep 2012 09:03:28 GMT X-Powered-By: WAF/2.0 | clean |
http://www.ranshao.com/template/qire123/images/js/playclass.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:33 GMT Accept-Ranges: bytes ETag: "66bd567a7198cd1:36f" Server: IIS Content-Length: 8400 Content-Location: http://www.ranshao.com/template/qire123/images/js/playclass.js Content-Type: application/x-javascript Last-Modified: Sat, 22 Sep 2012 03:22:21 GMT X-Powered-By: WAF/2.0 | clean |
http://www.ranshao.com/template/qire123/images/js/searchtip.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:37 GMT Accept-Ranges: bytes ETag: "7c883511338fcd1:36f" Server: IIS Content-Length: 341 Content-Location: http://www.ranshao.com/template/qire123/images/js/searchtip.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:02:55 GMT X-Powered-By: WAF/2.0 | clean |
http://cbjs.baidu.com/js/o.js | 200 OK Content-Length: 30392 Content-Type: application/x-javascript | clean |
http://s5.cnzz.com/stat.php?id=2804602&web_id=2804602&show=pic | 200 OK Content-Length: 10074 Content-Type: application/javascript | clean |
http://static.scanv.com/static/js/scanv_verify.js | 404 Not Found Content-Length: 523 Content-Type: text/html | clean |
http://static.jiasule.com/static/js/http_error.js?20130724 | 200 OK Content-Length: 1952 Content-Type: application/javascript | clean |
http://www.ranshao.com/template/qire123/images/js/language.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:45 GMT Accept-Ranges: bytes ETag: "128053398fcd1:36f" Server: IIS Content-Length: 18089 Content-Location: http://www.ranshao.com/template/qire123/images/js/language.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:47:43 GMT X-Powered-By: WAF/2.0 | clean |
http://www.ranshao.com/template/qire123/images/js/jquery.autocomplete.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:46 GMT Accept-Ranges: bytes ETag: "d0ba3b83398fcd1:36f" Server: IIS Content-Length: 17316 Content-Location: http://www.ranshao.com/template/qire123/images/js/jquery.autocomplete.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:49:04 GMT X-Powered-By: WAF/2.0 | clean |
http://ranshao.com/template/qire123/images/js/jquery.base.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:47 GMT Accept-Ranges: bytes ETag: "84c72fa24596cd1:36f" Server: IIS Content-Length: 2771 Content-Location: http://ranshao.com/template/qire123/images/js/jquery.base.js Content-Type: application/x-javascript Last-Modified: Wed, 19 Sep 2012 09:03:28 GMT X-Powered-By: WAF/2.0 | clean |
http://ranshao.com/template/qire123/images/js/playclass.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:48 GMT Accept-Ranges: bytes ETag: "66bd567a7198cd1:36f" Server: IIS Content-Length: 8400 Content-Location: http://ranshao.com/template/qire123/images/js/playclass.js Content-Type: application/x-javascript Last-Modified: Sat, 22 Sep 2012 03:22:21 GMT X-Powered-By: WAF/2.0 | clean |
http://ranshao.com/template/qire123/images/js/searchtip.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:50 GMT Accept-Ranges: bytes ETag: "7c883511338fcd1:36f" Server: IIS Content-Length: 341 Content-Location: http://ranshao.com/template/qire123/images/js/searchtip.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:02:55 GMT X-Powered-By: WAF/2.0 | clean |
http://ranshao.com/template/qire123/images/js/language.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:50 GMT Accept-Ranges: bytes ETag: "128053398fcd1:36f" Server: IIS Content-Length: 18089 Content-Location: http://ranshao.com/template/qire123/images/js/language.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:47:43 GMT X-Powered-By: WAF/2.0 | clean |
http://ranshao.com/template/qire123/images/js/jquery.autocomplete.js | HTTP/1.1 200 OK Date: Thu, 08 Jan 2015 21:10:51 GMT Accept-Ranges: bytes ETag: "d0ba3b83398fcd1:36f" Server: IIS Content-Length: 17316 Content-Location: http://ranshao.com/template/qire123/images/js/jquery.autocomplete.js Content-Type: application/x-javascript Last-Modified: Mon, 10 Sep 2012 09:49:04 GMT X-Powered-By: WAF/2.0 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ranshao.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 08 Jan 2015 21:10:05 GMT
Server: IIS
Content-Length: 110383
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCATRRQDD=CCPILCHDIJOIMOFCMKGPCCIB; path=/
Set-Cookie: safedog-flow-item=84809DBC34B4617C5643BF0BAA7AB80E; expires=Mon, 15-Feb-2151 00:21:21 GMT; domain=ranshao.com; path=/
X-Powered-By: WAF/2.0
...110383 bytes of data.
GET / HTTP/1.1
Host: ranshao.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 08 Jan 2015 21:10:05 GMT
Server: IIS
Content-Length: 110383
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCATRRQDD=CCPILCHDIJOIMOFCMKGPCCIB; path=/
Set-Cookie: safedog-flow-item=84809DBC34B4617C5643BF0BAA7AB80E; expires=Mon, 15-Feb-2151 00:21:21 GMT; domain=ranshao.com; path=/
X-Powered-By: WAF/2.0
...110383 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ranshao.com
Referer: http://www.google.com/search?q=ranshao.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ranshao.com
Referer: http://www.google.com/search?q=ranshao.com
Result:
The result is similar to the first query. There are no suspicious redirects found.