Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bbs.ydss.cn
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bbs.ydss.cn/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://bbs.ydss.cn/ | 200 OK Content-Length: 172041 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config={"common":{"bdSnsKey":{},"bdText":"Òƶ¯ÊåÊåÂÛ̳_MT6795_MT6595_MT6592_MT6589_MTKÊÖ»úÂÛ̳ £¨·ÖÏí×Ô @Òƶ¯ÊåÊå £©","bdMini":"2","bdMiniList":false,"bdPic":"","bdStyle":"0","bdSize":"16"},"share":{},"image":{"viewList":["qzone","tsina","tqq","renren","weixin"],"viewText":"·ÖÏíµ½£º","viewSize":"16"}};with(document)0[(getElementsByTagName('head')[0]||body).appendChild(createElement('script')).src='http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion='+~(-new Date()/36e5)]; Antivirus reports:
| ||
http://bbs.ydss.cn/static/js/common.js?VgG | 200 OK Content-Length: 67130 Content-Type: application/x-javascript | clean |
http://a.tbcdn.cn/apps/top/x/sdk.js?appkey=21291926 | 200 OK Content-Length: 30014 Content-Type: application/x-javascript | clean |
http://bbs.ydss.cn/static/js/forum.js?VgG | 200 OK Content-Length: 15196 Content-Type: application/x-javascript | clean |
http://bbs.ydss.cn/static/js/logging.js?VgG | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://bbs.ydss.cn/test404page.js | 404 Not Found Content-Length: 838 Content-Type: text/html | clean |
http://tcss.qq.com/ping.js?v=1VERHASH | 200 OK Content-Length: 8909 Content-Type: application/x-javascript | clean |
http://s132.cnzz.com/stat.php?id=1291357&web_id=1291357&show=pic | 200 OK Content-Length: 9324 Content-Type: application/javascript | clean |
http://bbs.ydss.cn/home.php?mod=misc&ac=sendmail&rand=1412322537 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://discuz.gtimg.cn/cloud/scripts/discuz_tips.js?v=1 | 200 OK Content-Length: 6173 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bbs.ydss.cn
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 03 Oct 2014 07:56:40 GMT
Vary: Accept-Encoding
Content-Type: text/html; charset=gbk
Set-Cookie: aIJe_8bbe_saltkey=d0lanTNc; expires=Sun, 02-Nov-2014 07:56:40 GMT; path=/; domain=.ydss.cn; httponly
Set-Cookie: aIJe_8bbe_lastvisit=1412319400; expires=Sun, 02-Nov-2014 07:56:40 GMT; path=/; domain=.ydss.cn
Set-Cookie: aIJe_8bbe_lastact=1412323000%09index.php%09; expires=Sat, 04-Oct-2014 07:56:40 GMT; path=/; domain=.ydss.cn
Set-Cookie: aIJe_8bbe_stats_qc_reg=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.ydss.cn
Set-Cookie: aIJe_8bbe_cloudstatpost=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.ydss.cn
X-Cache: MISS from cdn052
X-Cache-Lookup: MISS from cdn052:80
GET / HTTP/1.1
Host: bbs.ydss.cn
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 03 Oct 2014 07:56:40 GMT
Vary: Accept-Encoding
Content-Type: text/html; charset=gbk
Set-Cookie: aIJe_8bbe_saltkey=d0lanTNc; expires=Sun, 02-Nov-2014 07:56:40 GMT; path=/; domain=.ydss.cn; httponly
Set-Cookie: aIJe_8bbe_lastvisit=1412319400; expires=Sun, 02-Nov-2014 07:56:40 GMT; path=/; domain=.ydss.cn
Set-Cookie: aIJe_8bbe_lastact=1412323000%09index.php%09; expires=Sat, 04-Oct-2014 07:56:40 GMT; path=/; domain=.ydss.cn
Set-Cookie: aIJe_8bbe_stats_qc_reg=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.ydss.cn
Set-Cookie: aIJe_8bbe_cloudstatpost=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.ydss.cn
X-Cache: MISS from cdn052
X-Cache-Lookup: MISS from cdn052:80
Second query (visit from search engine):
GET / HTTP/1.1
Host: bbs.ydss.cn
Referer: http://www.google.com/search?q=bbs.ydss.cn
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bbs.ydss.cn
Referer: http://www.google.com/search?q=bbs.ydss.cn
Result:
The result is similar to the first query. There are no suspicious redirects found.