Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 1192405.jjwxc.net
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 04 Apr 2014 18:35:58 GMT
Location: http://www.jjwxc.net/oneauthor.php?authorid=1192405
Content-Length: 160
Content-Type: text/html
...160 bytes of data.
GET / HTTP/1.1
Host: 1192405.jjwxc.net
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Fri, 04 Apr 2014 18:35:58 GMT
Location: http://www.jjwxc.net/oneauthor.php?authorid=1192405
Content-Length: 160
Content-Type: text/html
...160 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 1192405.jjwxc.net
Referer: http://www.google.com/search?q=1192405.jjwxc.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 1192405.jjwxc.net
Referer: http://www.google.com/search?q=1192405.jjwxc.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://1192405.jjwxc.net/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Apr 2014 18:35:58 GMT Location: http://www.jjwxc.net/oneauthor.php?authorid=1192405 Content-Length: 160 Content-Type: text/html | clean |
http://www.jjwxc.net/oneauthor.php?authorid=1192405 | 200 OK Content-Length: 6734 Content-Type: text/html | clean |
http://w.cnzz.com/c.php?id=30075907 | 200 OK Content-Length: 9622 Content-Type: application/javascript | clean |
http://static.jjwxc.net/scripts/jquery.blockUI.pack.js | 200 OK Content-Length: 15517 Content-Type: application/x-javascript | clean |
http://static.jjwxc.net/scripts/jjlogin.js?ver=20140328 | 200 OK Content-Length: 47041 Content-Type: application/x-javascript | clean |
http://static.jjwxc.net/scripts/main.120724.js?ver=201303312 | 200 OK Content-Length: 54977 Content-Type: application/x-javascript | clean |
http://js.adm.cnzz.net/js/abase.js | 200 OK Content-Length: 21394 Content-Type: application/x-javascript | clean |
http://1192405.jjwxc.net/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Apr 2014 18:36:10 GMT Location: http://www.jjwxc.net/oneauthor.php?authorid=1192405 Content-Length: 160 Content-Type: text/html | clean |
http://www.jjwxc.net/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Apr 2014 18:36:10 GMT Via: 1.1 qhd184.powercdn.com (PowerCDN/2.4) Location: http://www.jjwxc.net/error404.php Content-Length: 160 Content-Type: text/html PowerCDN: MISS from qhd184.powercdn.com X-Cache: MISS from CU-2-231-ZZ-JJCDN X-Cache-Lookup: MISS from CU-2-231-ZZ-JJCDN:80 | clean |
http://www.jjwxc.net/error404.php | 200 OK Content-Length: 6756 Content-Type: text/html | clean |
http://www.jjwxc.net/ | 200 OK Content-Length: 10675 Content-Type: text/html | clean |
http://www.jjwxc.net/onebook.php?novelid=1982059 | 200 OK Content-Length: 27952 Content-Type: text/html | clean |
http://www.jjwxc.net/onebook.php?novelid=1984701 | 200 OK Content-Length: 12007 Content-Type: text/html | clean |
http://www.jjwxc.net/onebook.php?novelid=1906556 | 200 OK Content-Length: 39518 Content-Type: text/html | clean |
http://www.jjwxc.net/onebook.php?novelid=2013096 | 200 OK Content-Length: 45335 Content-Type: text/html | clean |
http://www.jjwxc.net/oneauthor.php?authorid=561949 | 200 OK Content-Length: 21933 Content-Type: text/html | clean |
http://www.jjwxc.net/onebook.php?novelid=1972186 | 200 OK Content-Length: 36647 Content-Type: text/html | clean |
http://www.jjwxc.net/onebook.php?novelid=1913559 | 200 OK Content-Length: 19106 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=1192405.jjwxc.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://1192405.jjwxc.net/
Result: 1192405.jjwxc.net is not infected or malware details are not published yet.
Result: 1192405.jjwxc.net is not infected or malware details are not published yet.