Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=094wy.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.094wy.com/ | HTTP/1.1 200 OK Date: Fri, 09 Jan 2015 06:32:55 GMT Accept-Ranges: bytes ETag: "884dcef7b8bd01:108a" Server: Microsoft-IIS/6.0 Content-Length: 58305 Content-Location: http://www.094wy.com/index.html Content-Type: text/html Last-Modified: Sat, 29 Nov 2014 09:43:45 GMT X-Powered-By: ASP.NET | clean |
http://www.094wy.com/index.html | 200 OK Content-Length: 58305 Content-Type: text/html | clean |
http://www.094wy.com/template/skin37/js/public.js | 200 OK Content-Length: 9807 Content-Type: application/x-javascript | clean |
http://www.094wy.com/template/skin37/js/library1.0.js | 200 OK Content-Length: 10181 Content-Type: application/x-javascript | clean |
http://www.094wy.com/template/skin37/images/g_js/index_960_90.js | 200 OK Content-Length: 564 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'32654\';"); document.write(" ddgu_zid = \'12201\';"); document.write(" ddgu_type = \'2\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'90\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'4\';"); document.write(" ddgu_fd_type = \'0\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.094wy.com/template/skin37/images/g_js/index_960_90_2.js | 200 OK Content-Length: 564 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'32654\';"); document.write(" ddgu_zid = \'12204\';"); document.write(" ddgu_type = \'4\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'90\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'1\';"); document.write(" ddgu_fd_type = \'5\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.094wy.com/template/skin37/images/g_js/index_960_90_3.js | 200 OK Content-Length: 564 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'32654\';"); document.write(" ddgu_zid = \'12205\';"); document.write(" ddgu_type = \'2\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'90\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'4\';"); document.write(" ddgu_fd_type = \'0\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.094wy.com/template/skin37/images/g_js/index_960_90_4.js | 200 OK Content-Length: 564 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'32654\';"); document.write(" ddgu_zid = \'12206\';"); document.write(" ddgu_type = \'1\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'90\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'1\';"); document.write(" ddgu_fd_type = \'5\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.094wy.com/template/skin37/images/g_js/tongji.js | 200 OK Content-Length: 2 Content-Type: application/x-javascript | clean |
http://www.094wy.com/rss.xml | 200 OK Content-Length: 31852 Content-Type: text/xml | clean |
http://www.094wy.com/test404page.js | 404 Not Found Content-Length: 2888 Content-Type: text/html | clean |
http://www.094wy.com/gbook | HTTP/1.1 301 Moved Permanently Date: Fri, 09 Jan 2015 06:33:10 GMT Location: http://www.094wy.com/gbook/ Server: Microsoft-IIS/6.0 Content-Length: 150 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.094wy.com/gbook/ | 200 OK Content-Length: 5182 Content-Type: text/html | clean |
http://www.094wy.com/gbook/gbook_ajax.js | 200 OK Content-Length: 11942 Content-Type: application/x-javascript | clean |
http://www.094wy.com/./ | HTTP/1.1 200 OK Date: Fri, 09 Jan 2015 06:33:14 GMT Accept-Ranges: bytes ETag: "884dcef7b8bd01:108a" Server: Microsoft-IIS/6.0 Content-Length: 58305 Content-Location: http://www.094wy.com/index.html Content-Type: text/html Last-Modified: Sat, 29 Nov 2014 09:43:45 GMT X-Powered-By: ASP.NET | clean |
http://www.094wy.com/../ | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.094wy.com/Film/page_Movie.html | 200 OK Content-Length: 65732 Content-Type: text/html | clean |
http://www.094wy.com/Film/../template/skin37/js/public.js | 200 OK Content-Length: 9807 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 094wy.com
Result:
GET / HTTP/1.1
Host: 094wy.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: 094wy.com
Referer: http://www.google.com/search?q=094wy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 094wy.com
Referer: http://www.google.com/search?q=094wy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.