Scanned pages/files
Request | Server response | Status |
http://yaxindoor.com/ | 200 OK Content-Length: 44394 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Ac!D ...[18352 bytes skipped]... 281154218412.jpg|http://www.yaxindoor.com/admins/UploadFile/201032811463134729.jpg|http://www.yaxindoor.com/admins/UploadFile/201032720183291618.jpg' //ͼƬ·¾¶ var links='http://www.yaxindoor.com/xinwen.asp?id=54|http://www.yaxindoor.com/xinwen.asp?id=52|http:// /xinwen.asp?id=51|http://www.yaxindoor.com/xinwen.asp?id=50|http://www.yaxindoor.com/xinwen.asp?id=49|' //Á¬½ÓÍøÖ· var texts='<script>alert("Hacked By Ac!D")</script>|ºÀ»ªÉÏ»¬µÀ³µ¿âÃÅ|ÉÏ»¬Éý³µ¿âÃÅ|ÉÏ»¬µÀ·°å³µ¿âÃÅ|¸ßµµ±ðÊû×Ô¶¯³µ¿âÃÅ' //Ïà¹ØÎÄ×Ö document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,0,0" width="'+ pic_width +'" height="'+ swf_height +'">'); document.write('<param name="allowScriptAccess" value="sameDomain"><param name="movie" value="'+swfpath+'"><param ...[34646 bytes skipped]... | ||
http://yaxindoor.com/xinwen.asp?id=54 | 200 OK Content-Length: 15507 Content-Type: text/html | clean |
http://yaxindoor.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://yaxindoor.com/xinwen.asp?id=52 | 200 OK Content-Length: 3423 Content-Type: text/html | clean |
http://yaxindoor.com/xinwen.asp?id=51 | 200 OK Content-Length: 803 Content-Type: text/html | clean |
http://yaxindoor.com/xinwen.asp?id=50 | 200 OK Content-Length: 15483 Content-Type: text/html | clean |
http://yaxindoor.com/xinwen.asp?id=49 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://yaxindoor.com/xinwen.asp?id=25 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://yaxindoor.com/admins/spt/zs/20101231724823478.jpg | 200 OK Content-Length: 2890 Content-Type: image/jpeg | clean |
http://yaxindoor.com/main.asp?k=zs&id=56 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://yaxindoor.com/main.asp?k=zs&id=55 | 200 OK Content-Length: 5519 Content-Type: text/html | clean |
http://yaxindoor.com/main.asp?k=zs&id=54 | 200 OK Content-Length: 2375 Content-Type: text/html | clean |
http://yaxindoor.com/main.asp?k=zs&id=53 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://yaxindoor.com/main.asp?k=zs&id=52 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://yaxindoor.com/main.asp?k=zs&id=50 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yaxindoor.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Mon, 20 Oct 2014 12:02:31 GMT
Server: Microsoft-IIS/6.0
Content-Length: 44394
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCQAQQSAT=CCJCEKBCBDPAIHBBDCCGEPHC; path=/
X-Powered-By: ASP.NET
...44394 bytes of data.
GET / HTTP/1.1
Host: yaxindoor.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Mon, 20 Oct 2014 12:02:31 GMT
Server: Microsoft-IIS/6.0
Content-Length: 44394
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCQAQQSAT=CCJCEKBCBDPAIHBBDCCGEPHC; path=/
X-Powered-By: ASP.NET
...44394 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yaxindoor.com
Referer: http://www.google.com/search?q=yaxindoor.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yaxindoor.com
Referer: http://www.google.com/search?q=yaxindoor.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yaxindoor.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yaxindoor.com/
Result: yaxindoor.com is not infected or malware details are not published yet.
Result: yaxindoor.com is not infected or malware details are not published yet.