Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=spv355.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://spv355.com/ | 200 OK Content-Length: 238 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: d687ef1ed80f97de.0075.cdn.78302.com <meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<script language="javascript" type="text/javascript" src="http://d687ef1ed80f97de.0075.cdn.78302.com/nipaiyi/cdn/js/20150225144812001.js?d=www.spv355.com"></script> | ||
http://d687ef1ed80f97de.0075.cdn.78302.com/nipaiyi/cdn/js/20150225144812001.js?d=www.spv355.com | 200 OK Content-Length: 30968 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.spv355.com ...[1362 bytes skipped]... ; document.writeln("document.oncontextmenu=new Function(\"event.returnValue=false\");document.onselectstart=new Function(\"event.returnValue=false\");"); document.writeln(" </script>"); document.writeln(" "); document.writeln(" "); document.writeln(" <style type=\"text/css\"> "); document.writeln("body{ background:#c1dfea url(http://d687ef1ed80f97de.0075.cdn.78302.com/images/AoYoo.Com_BG.jpg?d=www.spv355.com) center top no-repeat; margin:0px; padding:0px;}"); document.writeln(".wz{ font-size:14px; font-weight:bold; color:#660101; line-height:35px;}"); document.writeln("body,td,th {color:#FFFFFF; font-size:14px; line-height:20px; font-family:Arial, Helvetica, sans-serif, \"ºÚÌå\", \"ËÎÌå\", \"ÐÂËÎÌå\"; }"); document.writeln("a:link {"); document.writeln(" color:#000000;"); document.writeln(" font-weigwriteln(" "); document.writeln(" </tbody>"); ...[2288 bytes skipped]... Decoded script: ...[399 bytes skipped]... <style type="text/css"> <!-- .STYLE1 {color:#FFFF00} --> </style> document.oncontextmenu=new Function("event.returnValue=false");document.onselectstart=new Function("event.returnValue=false"); <style type="text/css"> body{ background:#c1dfea url(http://d687ef1ed80f97de.0075.cdn.78302.com/images/AoYoo.Com_BG.jpg?d=www.spv355.com) center top no-repeat; margin:0px; padding:0px;} .wz{ font-size:14px; font-weight:bold; color:#660101; line-height:35px;} body,td,th {color:#FFFFFF; font-size:14px; line-height:20px; font-family:Arial, Helvetica, sans-serif, "ºÚÌå", "ËÎÌå", "ÐÂËÎÌå"; } a:link { color:#000000; font-weight:bold; font-size:14px; } a:hover { color:#FF0000; font-weight:bold; font-size:14px; } a:visited { color:#000000; font-weight:bo ...[22571 bytes skipped]... | ||
http://spv355.com/test404page.js | 404 Not Found Content-Length: 5206 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: spv355.com
Result:
HTTP/1.1 200 OK
Cache-Control: 604800
Connection: close
Date: Fri, 27 Feb 2015 04:39:04 GMT
Accept-Ranges: bytes
ETag: "4d5f3e6c750d01:0"
Server: nginx/1.6.2
Content-Length: 238
Content-Type: text/html
Last-Modified: Wed, 25 Feb 2015 06:48:12 GMT
X-Powered-By: ASP.NET
...238 bytes of data.
GET / HTTP/1.1
Host: spv355.com
Result:
HTTP/1.1 200 OK
Cache-Control: 604800
Connection: close
Date: Fri, 27 Feb 2015 04:39:04 GMT
Accept-Ranges: bytes
ETag: "4d5f3e6c750d01:0"
Server: nginx/1.6.2
Content-Length: 238
Content-Type: text/html
Last-Modified: Wed, 25 Feb 2015 06:48:12 GMT
X-Powered-By: ASP.NET
...238 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: spv355.com
Referer: http://www.google.com/search?q=spv355.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: spv355.com
Referer: http://www.google.com/search?q=spv355.com
Result:
The result is similar to the first query. There are no suspicious redirects found.