Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dyttw.cc
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.dyttw.cc/ | HTTP/1.1 200 OK Cache-Control: max-age=86400 Connection: close Date: Fri, 26 Dec 2014 03:36:05 GMT Vary: Accept-Encoding Content-Location: http://www.dyttw.cc/index.html Content-Type: text/html Last-Modified: Thu, 25 Dec 2014 13:08:35 GMT X-Cache: hit X-Server: eGlhbjAxLWNkbjA3LmZobA== | clean |
http://www.dyttw.cc/index.html | 200 OK Content-Length: 60435 Content-Type: text/html | clean |
http://www.dyttw.cc/static/js/jquery/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/static/js/jquery/jquery.lazyload.js | 200 OK Content-Length: 3205 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/static/js/jquery/jquery.autocomplete.js | 200 OK Content-Length: 14091 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/static/js/home.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.dyttw.cc/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://cbjs.baidu.com/js/m.js | 200 OK Content-Length: 30392 Content-Type: application/x-javascript | clean |
http://js.adm.cnzz.net/js/abase.js | 200 OK Content-Length: 21394 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function FixedRealShow(){return document.body?(this.init.apply(this,arguments),void 0):!1}(function(window){function FnRegister(e,t){return w[e]||(w[e]=t)}function parseParams(e){var t=map[e];return t?{id:e||e,af:t.af||!1,did:t.aid||0,slotType:t.stype,isbefore:t.pop||0,htmlcode:t._html||0,width:t._w||0,height:t._h||0,stime:1e3*t.time||5e3,ptime:1e3*t.parktime||0,loadtime:1e3*t.loadtime||0,closePosition:t.cb||0,scroll:t.sc||0,position:t.pos||0,mleft:t._m_left||0,mtop:t._m_top||0,ip:t.ip||"",isifr Antivirus reports:
| ||
http://www.dyttw.cc/Runtime/js/body_fmt.js | 200 OK Content-Length: 19 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/Runtime/js/gg.js | 200 OK Content-Length: 189 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/Runtime/js/body_dom.js | 200 OK Content-Length: 19 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/Runtime/Js/hotkey.js | 200 OK Content-Length: 558 Content-Type: application/x-javascript | clean |
http://s5.cnzz.com/stat.php?id=5835737&web_id=5835737 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://js.users.51.la/15594171.js | 200 OK Content-Length: 1989 Content-Type: application/x-javascript | clean |
http://www.dyttw.cc/Runtime/js/footerindex.js | 200 OK Content-Length: 320 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dyttw.cc
Result:
GET / HTTP/1.1
Host: dyttw.cc
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: dyttw.cc
Referer: http://www.google.com/search?q=dyttw.cc
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dyttw.cc
Referer: http://www.google.com/search?q=dyttw.cc
Result:
The result is similar to the first query. There are no suspicious redirects found.