Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yori1.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://yori1.com/ | 200 OK Content-Length: 532 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: ddrggun.com <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"> <title>ì±ì¸ì²êµ</title> </head> <frameset rows="100%,*" frameborder="NO" border="0" framespacing="0"> <frame src="http://ddrggun.com" name="mainpage" frameborder=no framespacing="0" noresize marginwidth="0" marginheight="0" title="" /> </frameset> <body> </body> </html> | ||
http://yori1.com/test404page.js | 200 OK Content-Length: 532 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: ddrggun.com <!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no"> <title>ì±ì¸ì²êµ</title> </head> <frameset rows="100%,*" frameborder="NO" border="0" framespacing="0"> <frame src="http://ddrggun.com" name="mainpage" frameborder=no framespacing="0" noresize marginwidth="0" marginheight="0" title="" /> </frameset> <body> </body> </html> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yori1.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 05 Jun 2014 05:14:06 GMT
Server: Apache
Content-Length: 532
Content-Type: text/html
P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
Set-Cookie: visit_today=done; expires=Thu, 05-Jun-2014 15:00:00 GMT
X-Powered-By: PHP/5.2.17
...532 bytes of data.
GET / HTTP/1.1
Host: yori1.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 05 Jun 2014 05:14:06 GMT
Server: Apache
Content-Length: 532
Content-Type: text/html
P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA"
Set-Cookie: visit_today=done; expires=Thu, 05-Jun-2014 15:00:00 GMT
X-Powered-By: PHP/5.2.17
...532 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yori1.com
Referer: http://www.google.com/search?q=yori1.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yori1.com
Referer: http://www.google.com/search?q=yori1.com
Result:
The result is similar to the first query. There are no suspicious redirects found.