Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tmssteelpipe.yellowpages.co.th
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tmssteelpipe.yellowpages.co.th/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://tmssteelpipe.yellowpages.co.th/ | 200 OK Content-Length: 24474 Content-Type: text/html | malicious |
Malicious iFrame found. size: 275x275 src: http://landingpage.yellowpages.co.th/yp_map.php?latitude=13.55247&longitude=100.71265&height=275&width=275 This URL is marked by Yandex as suspicious <iframe width="275" scrolling="no" height="275" frameborder="0" src="http://landingpage.yellowpages.co.th/yp_map.php?latitude=13.55247&longitude=100.71265&height=275&width=275" allowtransparency="true" marginwidth="0" marginheight="0"> | ||
http://landingpage.yellowpages.co.th/template/T11004/scripts/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/template/T11004/scripts/jquery.pikachoose.full.js | 200 OK Content-Length: 40116 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/template/T11004/scripts/jquery.idTabs.min.js | 200 OK Content-Length: 2350 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/template/T11004/scripts/jquery.template.js | 200 OK Content-Length: 151 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/template/T11004/scripts/jquery.prettyPhoto.js | 200 OK Content-Length: 31904 Content-Type: application/x-javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js | 200 OK Content-Length: 200719 Content-Type: text/javascript | clean |
http://landingpage.yellowpages.co.th/js/jquery.bgiframe-2.1.2.js | 200 OK Content-Length: 1724 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/js/jquery.cookie.js | 200 OK Content-Length: 3712 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/js/jquery.url.js | 200 OK Content-Length: 395 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/scripts/webtrends.js | 200 OK Content-Length: 57870 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/scripts/webtrends.load.js | 200 OK Content-Length: 905 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/scripts/webtrends.min.js | 200 OK Content-Length: 23770 Content-Type: application/x-javascript | clean |
http://landingpage.yellowpages.co.th/js/presensestatus.js | 200 OK Content-Length: 3381 Content-Type: application/x-javascript | clean |
http://hits.truehits.in.th/data/m0023450.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tmssteelpipe.yellowpages.co.th
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 May 2014 13:58:31 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: tmssteelpipe.yellowpages.co.th
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 May 2014 13:58:31 GMT
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: tmssteelpipe.yellowpages.co.th
Referer: http://www.google.com/search?q=tmssteelpipe.yellowpages.co.th
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tmssteelpipe.yellowpages.co.th
Referer: http://www.google.com/search?q=tmssteelpipe.yellowpages.co.th
Result:
The result is similar to the first query. There are no suspicious redirects found.