Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thsf523.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://thsf523.com/ | HTTP/1.1 200 OK Cache-Control: no-cache Date: Mon, 22 Dec 2014 06:40:29 GMT Accept-Ranges: bytes ETag: "be4dc65964dca1:9923" Server: Microsoft-IIS/6.0 Content-Length: 4250 Content-Location: http://thsf523.com/index.htm Content-Type: text/html Last-Modified: Thu, 15 Oct 2009 12:52:46 GMT X-Powered-By: ASP.NET | clean |
http://thsf523.com/index.htm | 200 OK Content-Length: 4250 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: stat.t2t2.com ...[3786 bytes skipped]... /> All Rights Reserved</td> </tr> <tr> <td height="20" align="center" bgcolor="f7f7f7">¼¼ÊõÖ§³Ö£ºÏÃÃÅ»¥Ò׿Ƽ¼ÓÐÏÞ¹«Ë¾</td> </tr> <tr> <td height="20" align="center" bgcolor="f7f7f7">ÃöICP±¸05005479ºÅ</td> </tr> </table> <script>var tc_user="thsf";var tc_class="6";</script><script src="http://stat.t2t2.com/stat.js"></script> <!-- if (window.Event) document.captureEvents(Event.MOUSEUP); function nocontextmenu() { event.cancelBubble = true event.returnValue = false; return false; } function norightclick(e) { if (window.Event) { if (e.which == 2 || e.which == 3) return false; } else if (event.button == 2 || event.button == 3) { ...[660 bytes skipped]... | ||
http://thsf523.com/news/js/winopen.js | 200 OK Content-Length: 413 Content-Type: application/x-javascript | clean |
http://stat.t2t2.com/stat.js | 500 Can't connect to stat.t2t2.com:80 Content-Length: 188 Content-Type: text/plain | clean |
http://stat.t2t2.com/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thsf523.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Mon, 22 Dec 2014 06:40:29 GMT
Accept-Ranges: bytes
ETag: "be4dc65964dca1:9923"
Server: Microsoft-IIS/6.0
Content-Length: 4250
Content-Location: http://thsf523.com/index.htm
Content-Type: text/html
Last-Modified: Thu, 15 Oct 2009 12:52:46 GMT
X-Powered-By: ASP.NET
...4250 bytes of data.
GET / HTTP/1.1
Host: thsf523.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Mon, 22 Dec 2014 06:40:29 GMT
Accept-Ranges: bytes
ETag: "be4dc65964dca1:9923"
Server: Microsoft-IIS/6.0
Content-Length: 4250
Content-Location: http://thsf523.com/index.htm
Content-Type: text/html
Last-Modified: Thu, 15 Oct 2009 12:52:46 GMT
X-Powered-By: ASP.NET
...4250 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: thsf523.com
Referer: http://www.google.com/search?q=thsf523.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thsf523.com
Referer: http://www.google.com/search?q=thsf523.com
Result:
The result is similar to the first query. There are no suspicious redirects found.