Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yz-hldy.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yz-hldy.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://yz-hldy.com/ | 200 OK Content-Length: 19412 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var speed=20; var marquee_product2IcS7Hg = document.getElementById("marquee_product2IcS7Hg"); var marquee_product1IcS7Hg = document.getElementById("marquee_product1IcS7Hg"); var marquee_demoIcS7Hg = document.getElementById("marquee_demoIcS7Hg"); marquee_product2IcS7Hg.innerHTML=marquee_product1IcS7Hg.innerHTML; function MarqueeIcS7Hg(){ if(marquee_demoIcS7Hg.scrollLeft>=marquee_product1IcS7Hg.scrollWidth){ marquee_demoIcS7Hg.scrollLeft=0; } else{ marquee_demoIcS7Hg.scrollLeft++; } } var MyMarIcS7Hg=setInterval(MarqueeIcS7Hg,speed); marquee_demoIcS7Hg.onmouseover=function(){clearInterval(MyMarIcS7Hg);} marquee_demoIcS7Hg.onmouseout=function(){MyMarIcS7Hg=setInterval(MarqueeIcS7Hg,speed);} Antivirus reports:
| ||
http://s4.cnzz.com/stat.php?id=3845297&web_id=3845297&show=pic | 200 OK Content-Length: 9324 Content-Type: application/javascript | clean |
http://yz-hldy.com/products_category.asp?id=45 | 200 OK Content-Length: 14383 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=44 | 200 OK Content-Length: 13773 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=46 | 200 OK Content-Length: 13174 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=47 | 200 OK Content-Length: 15007 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=48 | 200 OK Content-Length: 13178 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=49 | 200 OK Content-Length: 15013 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=51 | 200 OK Content-Length: 14415 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=50 | 200 OK Content-Length: 13178 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=52 | 200 OK Content-Length: 13178 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=53 | 200 OK Content-Length: 13806 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=54 | 200 OK Content-Length: 13175 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=55 | 200 OK Content-Length: 13173 Content-Type: text/html | clean |
http://yz-hldy.com/products_category.asp?id=56 | 200 OK Content-Length: 17047 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yz-hldy.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 04 Oct 2014 16:40:13 GMT
Server: Microsoft-IIS/6.0
Content-Length: 19412
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSSSDDBCR=JGNPCABACJLCMCFLBCEBALOC; path=/
X-Powered-By: ASP.NET
...19412 bytes of data.
GET / HTTP/1.1
Host: yz-hldy.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 04 Oct 2014 16:40:13 GMT
Server: Microsoft-IIS/6.0
Content-Length: 19412
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSSSDDBCR=JGNPCABACJLCMCFLBCEBALOC; path=/
X-Powered-By: ASP.NET
...19412 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: yz-hldy.com
Referer: http://www.google.com/search?q=yz-hldy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yz-hldy.com
Referer: http://www.google.com/search?q=yz-hldy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.