Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ylbg888.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ylbg888.com/ | HTTP/1.1 200 OK Date: Wed, 20 Aug 2014 04:44:35 GMT Accept-Ranges: bytes ETag: "df24723e95b8cf1:c0b" Server: Microsoft-IIS/6.0 Content-Length: 33777 Content-Location: http://ylbg888.com/index.html Content-Type: text/html Last-Modified: Fri, 15 Aug 2014 14:28:55 GMT X-Powered-By: ASP.NET | clean |
http://ylbg888.com/index.html | 200 OK Content-Length: 33777 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.siwameimv.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Language" content="zh-CN"> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <meta http-equiv="X-UA-Compatible" content="IE=EmulateIE7"> <meta content="ÈËÌåÒÕÊõè,mm, ...[5035 bytes skipped]... | ||
http://ylbg888.com/img/baidumv3.js | 200 OK Content-Length: 3317 Content-Type: application/x-javascript | clean |
http://js.a3p4.net/page/?s=247462 | 200 OK Content-Length: 12 Content-Type: text/html | clean |
http://js.a3p4.net/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://js.a3p4.net/page/?s=247463 | 200 OK Content-Length: 12 Content-Type: text/html | clean |
http://www.ylbg888.com/imghz.js | 200 OK Content-Length: 7263 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.mvsp520.com ...[1354 bytes skipped]... x solid #F5F5F5;\" width=152><A "); document.writeln(" href=\"http:\/\/www.bensexs.com\" "); document.writeln(" target=_blank><img src=\"http:\/\/www.ylbg888.com\/hzimg\/hz4.jpg\" width=\"152\" height=\"198\" border=\"0\"><\/A><\/TD>"); document.writeln(" <TD style=\"TEXT-ALIGN: center;border: 1px solid #F5F5F5;\" width=152><a "); document.writeln(" href=\"http:\/\/www.mvsp520.com\" "); document.writeln(" target=_blank><img src=\"http:\/\/www.ylbg888.com\/hzimg\/hz5.jpg\" width=\"152\" height=\"198\" border=\"0\"><\/a><\/TD>"); document.writeln(" <TD style=\"TEXT-ALIGN: center;border: 1px solid #F5F5F5;\" width=152><A "); document.writeln(" href=\"http:\/\/www.168meinv.com\" "); document.writeln(" target=_blank><img src=\"http:\/\/www.ylbg888.com\/hzia><\/TD>"); document ...[2345 bytes skipped]... Decoded script: ...[894 bytes skipped]... width="152" height="198" border="0"></A></TD> <TD style="TEXT-ALIGN: center;border: 1px solid #F5F5F5;" width=152><A href="http://www.bensexs.com" target=_blank><img src="http://www.ylbg888.com/hzimg/hz4.jpg" width="152" height="198" border="0"></A></TD> <TD style="TEXT-ALIGN: center;border: 1px solid #F5F5F5;" width=152><a href="http://www.mvsp520.com" target=_blank><img src="http://www.ylbg888.com/hzimg/hz5.jpg" width="152" height="198" border="0"></a></TD> <TD style="TEXT-ALIGN: center;border: 1px solid #F5F5F5;" width=152><A href="http://www.168meinv.com" target=_blank><img src="http://www.ylbg888.com/hzimg/hz6.jpg" width="152" height="198" border="0"></A></TD> </TR> <TR> <TD height="28" style="TEXT ...[4405 bytes skipped]... | ||
http://js.users.51.la/15254622.js | 200 OK Content-Length: 1980 Content-Type: application/x-javascript | clean |
http://s15.cnzz.com/stat.php?id=5181607&web_id=5181607 | 200 OK Content-Length: 9322 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ylbg888.com
Result:
HTTP/1.1 200 OK
Date: Wed, 20 Aug 2014 04:44:35 GMT
Accept-Ranges: bytes
ETag: "df24723e95b8cf1:c0b"
Server: Microsoft-IIS/6.0
Content-Length: 33777
Content-Location: http://ylbg888.com/index.html
Content-Type: text/html
Last-Modified: Fri, 15 Aug 2014 14:28:55 GMT
X-Powered-By: ASP.NET
...33777 bytes of data.
GET / HTTP/1.1
Host: ylbg888.com
Result:
HTTP/1.1 200 OK
Date: Wed, 20 Aug 2014 04:44:35 GMT
Accept-Ranges: bytes
ETag: "df24723e95b8cf1:c0b"
Server: Microsoft-IIS/6.0
Content-Length: 33777
Content-Location: http://ylbg888.com/index.html
Content-Type: text/html
Last-Modified: Fri, 15 Aug 2014 14:28:55 GMT
X-Powered-By: ASP.NET
...33777 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ylbg888.com
Referer: http://www.google.com/search?q=ylbg888.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ylbg888.com
Referer: http://www.google.com/search?q=ylbg888.com
Result:
The result is similar to the first query. There are no suspicious redirects found.