Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tycl.com.cn
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tycl.com.cn
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Tue, 03 Mar 2015 14:39:22 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 30474
Content-Type: text/html; Charset=utf-8
Expires: Mon, 02 Mar 2015 14:39:22 GMT
Set-Cookie: ASPSESSIONIDCCRCADSS=CPENOBOCPFJGHAJMMDBBPFKA; path=/
Set-Cookie: safedog-flow-item=A23192F68A7B6585663B1E35FEA1F60A; expires=Fri, 9-Arp-2151 17:50:38 GMT; domain=tycl.com.cn; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: ASP.NET
...30474 bytes of data.
GET / HTTP/1.1
Host: tycl.com.cn
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Tue, 03 Mar 2015 14:39:22 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 30474
Content-Type: text/html; Charset=utf-8
Expires: Mon, 02 Mar 2015 14:39:22 GMT
Set-Cookie: ASPSESSIONIDCCRCADSS=CPENOBOCPFJGHAJMMDBBPFKA; path=/
Set-Cookie: safedog-flow-item=A23192F68A7B6585663B1E35FEA1F60A; expires=Fri, 9-Arp-2151 17:50:38 GMT; domain=tycl.com.cn; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: ASP.NET
...30474 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tycl.com.cn
Referer: http://www.google.com/search?q=tycl.com.cn
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tycl.com.cn
Referer: http://www.google.com/search?q=tycl.com.cn
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://tycl.com.cn/ | 200 OK Content-Length: 28223 Content-Type: text/html | clean |
http://61.153.197.227/stat/stat1.php | 200 OK Content-Length: 183 Content-Type: text/html | clean |
http://61.153.197.227/test404page.js | 404 Not found Content-Length: 1173 Content-Type: text/html | clean |
http://61.153.197.227/ | 200 OK Content-Length: 64691 Content-Type: text/html | clean |
http://61.153.197.227/doc/game.htm | 200 OK Content-Length: 30761 Content-Type: text/html | clean |
http://61.153.197.227/doc/../down/WinDynomite_setup.rar | 200 OK Content-Length: 91224 Content-Type: text/plain | clean |
http://61.153.197.227/doc/../down/zy.exe | 200 OK Content-Length: 11584 Content-Type: application/octet-stream | clean |
http://61.153.197.227/doc/../down/llk3.exe | 200 OK Content-Length: 117288 Content-Type: application/octet-stream | clean |
http://61.153.197.227/doc/../down/ss.zip | 200 OK Content-Length: 114392 Content-Type: application/zip | clean |
http://61.153.197.227/doc/../down/mrmatt.zip | 200 OK Content-Length: 99912 Content-Type: application/zip | clean |
http://61.153.197.227/doc/../down/mj99_301.zip | 200 OK Content-Length: 63712 Content-Type: application/zip | clean |
http://61.153.197.227/doc/../down/pmj99v301b.exe | 200 OK Content-Length: 28960 Content-Type: application/octet-stream | clean |
http://61.153.197.227/doc/../down/HA_CHMJ.exe | 404 Not found Content-Length: 1173 Content-Type: text/html | clean |
http://61.153.197.227/doc/../down/wzq.zip | 404 Not found Content-Length: 1173 Content-Type: text/html | clean |
http://61.153.197.227/doc/../down/dadai.zip | 404 Not found Content-Length: 1173 Content-Type: text/html | clean |