Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=zhe890.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://zhe890.com/ | HTTP/1.1 200 OK Date: Thu, 05 Mar 2015 10:07:13 GMT Accept-Ranges: bytes ETag: "e42fb09e1b19d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 10039 Content-Location: http://zhe890.com/index.html Content-Type: text/html Last-Modified: Tue, 16 Dec 2014 10:32:41 GMT X-Powered-By: ASP.NET | clean |
http://zhe890.com/index.html | 200 OK Content-Length: 10039 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: zhonghuarenmai.com ...[2890 bytes skipped]... nk">ÉòÑô´óÌì¾ÅËÜÁÏÖÆÆ·ÓÐÏÞ¹«Ë¾</a></li> <li><a href="http://zg-logistics.com/Resource/" target="_blank">³°îÈýÊÀvsÃûÕì̽¿ÂÄÏÏÂÔØ</a></li> <li><a href="http://rcshicai.com/Feedback/" target="_blank">ÃÀʳ×ܶ¯Ô±¹úÓï¸ßÇå</a></li> <li><a href="http://lingzhu-sh.com/sports/" target="_blank">wwwadynet</a></li> <li><a href="http://zhonghuarenmai.com/service/" target="_blank">ҹɫϵÄÉϺ£Ì²txt</a></li> <li><a href="http://yxkw.net/Resource/" target="_blank">aviÊÓƵСƻ¹û</a></li> <li><a href="http://cjkyk.com/resource/" target="_blank">É«Ç鶯ÂþÃÀÅ®¶¯Ì¬</a></li> <li><a href="http://czhdgyp.com" target="_blank">ÎÞÎý¼«ÖÂÔ°ÁÖ¾°¹Û¹¤³ÌÓÐÏÞ¹«Ë¾</a></li> <li><a href="http://kestmedia.com" target="_blank">¼ª´óÕýÔªÐÅÏ¢ ...[1399 bytes skipped]... | ||
http://js.users.51.la/17468139.js | 200 OK Content-Length: 1931 Content-Type: application/x-javascript | clean |
http://js.17meiliba.com/zt.js | 200 OK Content-Length: 410 Content-Type: application/x-javascript | clean |
http://zhe890.com/tj.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://zhe890.com/sitemap.html | 200 OK Content-Length: 2321 Content-Type: text/html | clean |
http://zhe890.com/zkp354.html | 200 OK Content-Length: 109731 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: barslipper.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>·¿Õ½µçÊÓ¾ç_67.220.91.30 bbs_¶«¾©½ÖÍ·ÃÀÅ®¡¾×îеçÓ°¡¿-ÌÔ800¹ÙÍø_ÌÔ800Íø</title> <meta name="keywords" content="·¿Õ½µçÊÓ¾ç,67.220.91.30 bbs,¶«¾ ...[4634 bytes skipped]... | ||
http://zhe890.com/include/dedeajax2.js | HTTP/1.1 200 OK Date: Thu, 05 Mar 2015 10:07:19 GMT Accept-Ranges: bytes ETag: "1a78799514d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 2355 Content-Location: http://zhe890.com/404.html?404;http://zhe890.com:80/include/dedeajax2.js Content-Type: text/html Last-Modified: Wed, 10 Dec 2014 16:22:20 GMT X-Powered-By: ASP.NET | clean |
http://zhe890.com/404.html?404;http://zhe890.com:80/include/dedeajax2.js | 200 OK Content-Length: 2355 Content-Type: text/html | clean |
http://Js.lwtzdec.com/huishou.js | 200 OK Content-Length: 1063 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: vip.hunlianyuan.com ...[596 bytes skipped]... ) > -1) { window.opener.location.href = url } else { window.opener.location.replace(url) } } }; var referer = document.referrer; if (!referer) { return }; var rst = /https?\:\/\/([^\/]+)/i.exec(referer); var host = rst ? rst[1] : 'unknown'; if (/baidu\.com$/i.test(host) && timeallow) { var search = referer.substring(referer.indexOf('?')); jump("http://vip.hunlianyuan.com/1.html"); return } })() } catch(e) {} document.write ('<script language="javascript" type="text/javascript" src="http://js.17meiliba.com/tan.js"></script>'); | ||
http://www.qq.com/404/search_children.js | 200 OK Content-Length: 295 Content-Type: application/javascript | clean |
http://zhe890.com/About/ | HTTP/1.1 200 OK Date: Thu, 05 Mar 2015 10:07:24 GMT Accept-Ranges: bytes ETag: "ba59482df21bd01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 3986 Content-Location: http://zhe890.com/About/index.html Content-Type: text/html Last-Modified: Sat, 20 Dec 2014 01:13:34 GMT X-Powered-By: ASP.NET | clean |
http://zhe890.com/about/index.html | 200 OK Content-Length: 3986 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: besanon.com ...[1905 bytes skipped]... href="http://zhe890.com/about/xianggerenti/71t8g17.html" title="ÖÜÌÀºÀ΢²©">ÖÜÌÀºÀ΢²©</a></li></ul> <div class="sidebottom"></div> </div> <div class="sideNav"> <h2>ÓÑÇéÁ´½Ó</h2> <ul> <li><a href="http://xisu188.net/About/" title="Áõ¼ÎÁáÈËÌåÒÕÊõ">Áõ¼ÎÁáÈËÌåÒÕÊõ</a></li> <li><a href="http://besanon.com/pructical" title="É«Å°µçÓ°">É«Å°µçÓ°</a></li> <li><a href="http://alquimic.com/joinUs/" title="¸ÙÊÖqvod">¸ÙÊÖqvod</a></li> <li><a href="http://xym-china.com/operation/" title="wwwcvbmmm">wwwcvbmmm</a></li> <li><a href="http://tonshi.com/joinUs/" title="ºÃ¿´µÄÂ×Àí³ÉÈ˶¯Âþ">ºÃ¿´µÄÂ×Àí³ÉÈ˶¯Âþ</a></li> <li><a href="http://lsqjji.net/data/" title="¶¯ÎïÊÀ½çÂí">¶¯ÎïÊÀ½çÂí ...[2099 bytes skipped]... | ||
http://zhe890.com/about/xianggerenti/gmoxg158.html | 200 OK Content-Length: 6935 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: besanon.com ...[1911 bytes skipped]... <ul> <li><a href="http://jingshuei.net/service/">ÀÖÊÓÍøÂçµçÓ°</a></li> <li></li> <li><a href="http://dhwbz.com/service/">É«Ç黤ʿ˿Íà</a></li> <li><a href="http://cqtgl.net/Newslist/">ÂÀÁ¼Î°ºÃ¿´µÄµçÓ°</a></li> <li><a href="http://llqhy1688.com/Info/">ĵµ¤ÓÐûÓÐÖÖ×Ó</a></li> <li><a href="http://besanon.com/feedback/">ÐÔ°ÉÈý¼¶</a></li> <li><a href="http://sino-rpm.com/Pructical/">³ÉÄêÈËÉ«ÇéͼƬ</a></li> <li><a hrt"> <div class="aboutTitle"> <h3><span>writer£ºadmin </span> ¡¾³ÉÈËÌ×ͼ¡¿âñÈ»ÐĶ¯Ð¡ËµÈ«ÎÄÔĶÁ_×îлÆƬµØÖ·_°×ÁìÀöÈËС˵ÏÂÔØ</h3> </div> <div id="MyContent"> <p>˳×ÅÎÝéÜÇãкÖî¸ðîÚÌåÄÚа»ðÂÒ´ÜÀäÒÝÐù£¬É«97´óÈ«Öî¸ðîÚÂʾü¿ÐýÍÁÈÀ¶¼±»ÕâÎÒ²»£¬Ö¸Ôð¡£<img src="http://static.yo ...[1929 bytes skipped]... | ||
http://zhe890.com/about/xianggerenti/71t8g17.html | 200 OK Content-Length: 7887 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: wwtaiqiu.com <!DOCTYPE html PUBLIC "-//W3C//liD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/liD/xhtml1-transitional.lid"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=gb2312" /><title>¡ïÊìÅ®ÈËÆÞ¡ïÖÜÌÀºÀ΢²©|Çó»ÆÉ«ÍøÕ¾°Ù¶ÈÓ°Òô²¥·ÅÆ÷µÄ|ÓÕ»ó°ÙÌõÂéåú</title>
<meta name="keywords" content="ÖÜÌÀºÀ΢²©,Çó»ÆÉ«ÍøÕ¾°Ù¶ÈÓ°Òô²¥·ÅÆ÷µÄ,ÓÕ»ó°ÙÌõÂéåú" /><meta ...[4325 bytes skipped]... | ||
http://zhe890.com/test404page.js | HTTP/1.1 200 OK Date: Thu, 05 Mar 2015 10:07:27 GMT Accept-Ranges: bytes ETag: "1a78799514d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 2355 Content-Location: http://zhe890.com/404.html?404;http://zhe890.com:80/test404page.js Content-Type: text/html Last-Modified: Wed, 10 Dec 2014 16:22:20 GMT X-Powered-By: ASP.NET | clean |
http://zhe890.com/404.html?404;http://zhe890.com:80/test404page.js | 200 OK Content-Length: 2355 Content-Type: text/html | clean |
http://zhe890.com/Career/ | HTTP/1.1 200 OK Date: Thu, 05 Mar 2015 10:07:28 GMT Accept-Ranges: bytes ETag: "88b26bb69c16d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 3131 Content-Location: http://zhe890.com/Career/index.html Content-Type: text/html Last-Modified: Sat, 13 Dec 2014 06:19:12 GMT X-Powered-By: ASP.NET | clean |
http://zhe890.com/career/index.html | 200 OK Content-Length: 3131 Content-Type: text/html | clean |
http://zhe890.com/career | HTTP/1.1 301 Moved Permanently Date: Thu, 05 Mar 2015 10:07:29 GMT Location: http://zhe890.com/career/ Server: Microsoft-IIS/6.0 Content-Length: 148 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://zhe890.com/career/ | HTTP/1.1 200 OK Date: Thu, 05 Mar 2015 10:07:29 GMT Accept-Ranges: bytes ETag: "88b26bb69c16d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 3131 Content-Location: http://zhe890.com/career/index.html Content-Type: text/html Last-Modified: Sat, 13 Dec 2014 06:19:12 GMT X-Powered-By: ASP.NET | clean |
http://zhe890.com/career/www_97xo_cc/4v2iode03.html | 200 OK Content-Length: 9239 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: mokoho.net <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=gb2312" /><title>¡ï¶¯ÂþͼƬ¡ïÃÀ¹úÎüѪ¹í°®ÇéµçÓ°,¿ì²¥ ²Ô¾®¿ÕAV,acuteinfarctÔõô°ì</title><meta name="keywords" content="ÃÀ¹úÎüѪ¹í°®ÇéµçÓ°,¿ì²¥ ²Ô¾®¿ÕAV,acuteinfarctÔõô°ì" /><meta ...[4262 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: zhe890.com
Result:
HTTP/1.1 200 OK
Date: Thu, 05 Mar 2015 10:07:13 GMT
Accept-Ranges: bytes
ETag: "e42fb09e1b19d01:5fc"
Server: Microsoft-IIS/6.0
Content-Length: 10039
Content-Location: http://zhe890.com/index.html
Content-Type: text/html
Last-Modified: Tue, 16 Dec 2014 10:32:41 GMT
X-Powered-By: ASP.NET
...10039 bytes of data.
GET / HTTP/1.1
Host: zhe890.com
Result:
HTTP/1.1 200 OK
Date: Thu, 05 Mar 2015 10:07:13 GMT
Accept-Ranges: bytes
ETag: "e42fb09e1b19d01:5fc"
Server: Microsoft-IIS/6.0
Content-Length: 10039
Content-Location: http://zhe890.com/index.html
Content-Type: text/html
Last-Modified: Tue, 16 Dec 2014 10:32:41 GMT
X-Powered-By: ASP.NET
...10039 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: zhe890.com
Referer: http://www.google.com/search?q=zhe890.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: zhe890.com
Referer: http://www.google.com/search?q=zhe890.com
Result:
The result is similar to the first query. There are no suspicious redirects found.