Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ynpxrz.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ynpxrz.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://ynpxrz.com/ | 200 OK Content-Length: 79385 Content-Type: text/html | malicious |
Page code contains blacklisted domain: kaoshi.ynpxrz.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="gb2312"> <head> <title>Ò×ÏÍÍø¡ªÔÅàѵÈÏÖ¤Íø|¿¼ÊÔÍø|ÈËÊ¿¼ÊÔÍø|ÕÐƸÍø|È˲ÅÍø|±¨Ãû|³É¼¨²éѯ</title> <meta http-equiv="content-type" content="text/html;charset=gb2312"/> <link rel="icon" href="favicon.ico" type="image/x ...[4403 bytes skipped]... Malicious iFrame found. size: 180x155 src: http://www.ynpxrz.com/frm_adv.aspx?gid=2 This URL is marked by Yandex as suspicious <iframe align="center" width="180" height="155" src="http://www.ynpxrz.com/frm_adv.aspx?gid=2" frameborder="no" border="0" marginwidth="0" marginheight="0" scrolling="no"> | ||
http://ynpxrz.com/inc/flash.js | 200 OK Content-Length: 844 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/inc/thumbnail.js | 200 OK Content-Length: 798 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/inc/default.js | 200 OK Content-Length: 2128 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/inc/w.js | 200 OK Content-Length: 301 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/memberNewsAdd.aspx | 200 OK Content-Length: 300960 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: kaoshi.ynpxrz.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="gb2312"> <head> <title>ÍƼöÐÂÎÅ - Ò×ÏÍÍø¡ªÔÅàѵÈÏÖ¤Íø|¿¼ÊÔÍø|ÈËÊ¿¼ÊÔÍø|ÕÐƸÍø|È˲ÅÍø|±¨Ãû|³É¼¨²éѯ</title> <meta http-equiv="content-type" content="text/html;charset=gb2312"/> <link rel="icon" href="favicon.i ...[3856 bytes skipped]... | ||
http://ynpxrz.com/inc/dopost.js | 200 OK Content-Length: 1524 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/tiny_mce/tiny_mce.js | 200 OK Content-Length: 144613 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/tiny_mce/plugins/media/jscripts/embed.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://ynpxrz.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://ynpxrz.com/inc/html_preview.js | 200 OK Content-Length: 1140 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/inc/gb_big5.js | 200 OK Content-Length: 10666 Content-Type: application/x-javascript | clean |
http://ynpxrz.com/n4836c56.aspx | 200 OK Content-Length: 6114 Content-Type: text/html | clean |
http://ynpxrz.com/sitemap.aspx | 200 OK Content-Length: 223315 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: kaoshi.ynpxrz.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" lang="gb2312"> <head> <title>ÍøÕ¾µØͼ - Ò×ÏÍÍø¡ªÔÅàѵÈÏÖ¤Íø|¿¼ÊÔÍø|ÈËÊ¿¼ÊÔÍø|ÕÐƸÍø|È˲ÅÍø|±¨Ãû|³É¼¨²éѯ</title> <meta http-equiv="content-type" content="text/html;charset=gb2312"/> <link rel="icon" href="favicon.ico" ty ...[4439 bytes skipped]... | ||
http://www.81c.cn:8888/tj.js?034c16cde083287d452223bc2d2ac96d | HTTP/1.1 200 OK Date: Fri, 03 Oct 2014 10:55:15 GMT Accept-Ranges: bytes ETag: "d53d50bc55a2cf1:cfe" Server: Microsoft-IIS/6.0 Content-Length: 862 Content-Location: http://www.81c.cn:8888/tj.js?034c16cde083287d452223bc2d2ac96d Content-Type: application/x-javascript Last-Modified: Fri, 18 Jul 2014 06:58:53 GMT X-Powered-By: ASP.NET | clean |
http://s23.cnzz.com/stat.php?id=1148707&web_id=1148707 | 200 OK Content-Length: 9322 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ynpxrz.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Fri, 03 Oct 2014 10:55:04 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 80194
Content-Type: text/html; charset=gb2312
Expires: -1
X-AspNet-Version: 2.0.50727
X-Died: timeout at scan.pm line 1546.
X-Powered-By: ASP.NET
...80194 bytes of data.
GET / HTTP/1.1
Host: ynpxrz.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Fri, 03 Oct 2014 10:55:04 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 80194
Content-Type: text/html; charset=gb2312
Expires: -1
X-AspNet-Version: 2.0.50727
X-Died: timeout at scan.pm line 1546.
X-Powered-By: ASP.NET
...80194 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ynpxrz.com
Referer: http://www.google.com/search?q=ynpxrz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ynpxrz.com
Referer: http://www.google.com/search?q=ynpxrz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.