Starting from that parked domain mentioned here:
https://urlquery.net/report/72ef4625-8b15-4356-a726-94636d3f1a0fwith parked
-http%3A%2F%2Fwanwang.aliyun.com-> Hence detected
hxtp://thafararbill.mihanblog.com/post/comment/new/14/fromtype/postone/fid/15392740575bbf75498840a/atrty/1539274057/avrvy/0/key/e993590d1c69425dadfb3f70567d6106/
Number of sources found: 13 ; number of sinks found: 273
Re: -Results from hxtp: //g.alicdn.com/ali-mod/??aliyun-channel-banner/0.0.18/index.js,wb-zc-tymod-net-domname/0.0.15/index.js,wb-zc-tymod-net-main/0.0.14/index.js,wb-zc-ybmod-net-build/0.0.16/index.js,wb-zc-ybmod-net-cloud/0.0.10/index.js,wb-zc-ybmod-net-lun/0.0.10/index.js,wb-zc-ybmod-net-mail/0.0.16/index.js,wb-zc-ybmod-net-search/0.0.63/index.js,www-aliyun-common-allinone/0.0.1/index.js,www-aliyun-common-h5-redirect/0.0.5/index.js
Number of sources found: 13 ; number of sinks found: 273
& -: -https://www.ecit.xyz/space-uid-22629.html *
Number of sources found: 13 ; number of sinks found: 273
& -: hxtp://ofk-mebel.ru/bitrix/redirect.php?event1=&event2=&event3=&goto=http://chungkhoanvn.vn/huong-dan-chi-tiet-ve-chung-khoan-phai-sinh/
Number of sources found: 0 ; number of sinks found: 3
And we clould easily go on and on...
* suspicious as given here:
https://www.virustotal.com/#/url/e9949c0857bc356d387710126afb40a6b41882915b8a46a6040f6741ab318b28/detectionbut no alerts given here:
https://urlquery.net/report/583ade49-255d-41ed-b53a-01efbbb45b6bSo you see for abusers parked sites, because they are no longer maintained, are an ongoing trove or a treasure found dull of insecurity.
polonus (volunteer website security analyst and website error-hunter)
