Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=www-rtys.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www-rtys.com/ | 200 OK Content-Length: 28404 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: down.jinnongshiye.com ...[6241 bytes skipped]... <td rowspan="3" valign="bottom" width="460" align="middle" background="index.files/po999.jpg">¡¡</td> <td width="193"> <p align="center"><b><font color="#800080" size="2">ÓÑÇéÁ´½Ó</font></b></p></td></tr> <tr> <td width="193"> <p align="center"><b><font color="#800080" size="2"><a href="http://down.jinnongshiye.com/new9/yuyuse_67_1438.exe" target="_blank"><font color="#800080">ÔÚÏßÃÀÅ®ÁÄÌìÊÒ</font></a></font></b></p></td></tr> <tr> <td valign="top" width="185"> <p style="margin-top: 9px;"><font color="#800080" size="2"> </font><b><font color="#800080"></font></b><font color="#800080" size="2">µçÓ°ÔÚÏß²¥·ÅÉçÇø</fo ...[27570 bytes skipped]... | ||
http://app.adanzhuo.com/appiso.js?l=cparifu&uid=1438 | 200 OK Content-Length: 2695 Content-Type: application/x-javascript | clean |
http://js.users.51.la/4425881.js | 200 OK Content-Length: 1977 Content-Type: application/x-javascript | clean |
http://www-rtys.com/play.htm | 200 OK Content-Length: 4937 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: down.jinnongshiye.com ...[1153 bytes skipped]... tyle> </head><body> <table width="770" align="center" border="0"> <tbody> <tr> <td> <table width="800" align="center" border="0" cellpadding="0" cellspacing="0"> <tbody> <tr> <td bgcolor="#ffffff"> <div id="Class_1"> <div align="center"><a href="http://down.jinnongshiye.com/new9/yuyuse_67_1438.exe" target="_blank"><img alt="www.kkkbo.com" src="cj.files/b9a1193e1cb54b10a6680265741e440d-241739.jpg" width="800" border="0" height="80"></a></div> </div></td></tr></tbody></table></td></tr></tbody></table> <table width="760" align="center" border="0" cellpadding="0" cellspacing="0"> <tbody> <tr> <td bgcolor="#ebebeb">< ...[4283 bytes skipped]... | ||
http://www-rtys.com/cj.files/get_ajax.js | 200 OK Content-Length: 3244 Content-Type: application/javascript | clean |
http://www-rtys.com/test404page.js | 404 Not Found Content-Length: 653 Content-Type: text/html | clean |
http://cdn.dsultra.com/js/registrar.js | 200 OK Content-Length: 1652 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: www-rtys.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 08 Jun 2014 02:45:06 GMT
Accept-Ranges: bytes
ETag: "51401b2-6ef4-5392acfc"
Server: Apache
Content-Length: 28404
Content-Type: text/html
Last-Modified: Sat, 07 Jun 2014 06:11:08 GMT
...28404 bytes of data.
GET / HTTP/1.1
Host: www-rtys.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 08 Jun 2014 02:45:06 GMT
Accept-Ranges: bytes
ETag: "51401b2-6ef4-5392acfc"
Server: Apache
Content-Length: 28404
Content-Type: text/html
Last-Modified: Sat, 07 Jun 2014 06:11:08 GMT
...28404 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: www-rtys.com
Referer: http://www.google.com/search?q=www-rtys.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: www-rtys.com
Referer: http://www.google.com/search?q=www-rtys.com
Result:
The result is similar to the first query. There are no suspicious redirects found.