Scanned pages/files
Request | Server response | Status |
http://110678.com/ | 200 OK Content-Length: 80006 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Mary4m ...[97246 bytes skipped]... 社è¡ä»½æéå ¬å¸">å京éå¹´æ è¡ç¤¾è¡ä»½</a> <a href="http://www.110678.com/wd7876 " target="_blank" title="åå·çéæ ">åå·çéæ </a> <a href="http://19984012.51zfx.net/" target="_blank" title="å¼ å®¶ç康泰å½é æ è¡ç¤¾å京åäºå¤">å¼ å®¶ç康泰å½é æ è¡</a> <a href="http://www.ashiyane.org" target="_blank" title="Hacked By Mary4m">Hacked By</a> <br class="clearBoth" /> </div> </div> <div id="footer"><p style="line-height:180%;"> ç½ç«ææä¿¡æ¯ç±æ³¨åç¨æ·èªè¡åå¸ï¼ç½ç«ä¸å¯¹ä¿¡æ¯ççå®æ§æä¾æ ä¿è´£ä»» </p> <p style="line-height:180%;"> Copyright (c) 2007-2015www.110678.com Inc All Rights Reserved.<br /> T:027-88877943 FAX:88840107&nbs ...[2339 bytes skipped]... | ||
http://110678.com/js/jquery-1.8.3.min.js | 200 OK Content-Length: 93637 Content-Type: application/x-javascript | clean |
http://110678.com/js/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/x-javascript | clean |
http://110678.com/js/Kill_JS_Errors.js | 200 OK Content-Length: 94 Content-Type: application/x-javascript | clean |
http://110678.com/js/Nongli_1.js | 200 OK Content-Length: 7938 Content-Type: application/x-javascript | clean |
http://110678.com/js/yu.js | 200 OK Content-Length: 87728 Content-Type: application/x-javascript | clean |
http://110678.com/js/tb.js | 200 OK Content-Length: 9470 Content-Type: application/x-javascript | clean |
http://s4.cnzz.com/stat.php?id=4809241&web_id=4809241 | 200 OK Content-Length: 10069 Content-Type: application/javascript | clean |
http://110678.com/help/help.php | 200 OK Content-Length: 9240 Content-Type: text/html | clean |
http://110678.com/help/../index.php | 200 OK Content-Length: 79985 Content-Type: text/html | clean |
http://110678.com/help/../js/jquery-1.8.3.min.js | 200 OK Content-Length: 93637 Content-Type: application/x-javascript | clean |
http://110678.com/help/../js/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/x-javascript | clean |
http://110678.com/help/../js/Kill_JS_Errors.js | 200 OK Content-Length: 94 Content-Type: application/x-javascript | clean |
http://110678.com/help/../js/Nongli_1.js | 200 OK Content-Length: 7938 Content-Type: application/x-javascript | clean |
http://110678.com/help/../js/yu.js | 200 OK Content-Length: 87728 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 110678.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 12 May 2015 19:33:53 GMT
Server: Microsoft-IIS/6.0
Content-Type: text/html
Set-Cookie: addone_id=1; expires=Sat, 11-Jul-2015 19:33:53 GMT; path=/
Set-Cookie: addone_name=%E5%8C%97%E4%BA%AC; expires=Sat, 11-Jul-2015 19:33:53 GMT; path=/
Set-Cookie: addone_info=24%E5%B0%8F%E6%97%B6%E5%AE%A2%E6%9C%8D%EF%BC%9A18981991182; expires=Sat, 11-Jul-2015 19:33:53 GMT; path=/
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: 110678.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 12 May 2015 19:33:53 GMT
Server: Microsoft-IIS/6.0
Content-Type: text/html
Set-Cookie: addone_id=1; expires=Sat, 11-Jul-2015 19:33:53 GMT; path=/
Set-Cookie: addone_name=%E5%8C%97%E4%BA%AC; expires=Sat, 11-Jul-2015 19:33:53 GMT; path=/
Set-Cookie: addone_info=24%E5%B0%8F%E6%97%B6%E5%AE%A2%E6%9C%8D%EF%BC%9A18981991182; expires=Sat, 11-Jul-2015 19:33:53 GMT; path=/
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: 110678.com
Referer: http://www.google.com/search?q=110678.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 110678.com
Referer: http://www.google.com/search?q=110678.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=110678.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://110678.com/
Result: 110678.com is not infected or malware details are not published yet.
Result: 110678.com is not infected or malware details are not published yet.