Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=69bits.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://69bits.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 69bits.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sun, 12 Oct 2014 15:49:38 GMT
Location: http://0.picswan.com/
Server: nginx/1.2.3
Content-Length: 205
Content-Type: text/html; charset=iso-8859-1
...205 bytes of data.
GET / HTTP/1.1
Host: 69bits.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sun, 12 Oct 2014 15:49:38 GMT
Location: http://0.picswan.com/
Server: nginx/1.2.3
Content-Length: 205
Content-Type: text/html; charset=iso-8859-1
...205 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 69bits.com
Referer: http://www.google.com/search?q=69bits.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 69bits.com
Referer: http://www.google.com/search?q=69bits.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://69bits.com/ | HTTP/1.1 302 Found Connection: close Date: Sun, 12 Oct 2014 15:49:38 GMT Location: http://0.picswan.com/ Server: nginx/1.2.3 Content-Length: 205 Content-Type: text/html; charset=iso-8859-1 | clean |
http://0.picswan.com/ | 200 OK Content-Length: 2040 Content-Type: text/html | clean |
http://mobikano.com/68sb0msho9i7jwx23b9xqd4fxf2hjz | 200 OK Content-Length: 9358 Content-Type: text/javascript | clean |
http://adspaces.ero-advertising.com/adspace/142572.js | 200 OK Content-Length: 853 Content-Type: application/javascript | clean |
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
http://69bits.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 12 Oct 2014 15:49:40 GMT Location: http://0.picswan.com/test404page.js Server: nginx/1.2.3 Content-Length: 219 Content-Type: text/html; charset=iso-8859-1 | clean |
http://0.picswan.com/test404page.js | 404 Not Found Content-Length: 2295 Content-Type: text/html | clean |
http://ads.juicyads.com/jsclients/jac.js | 200 OK Content-Length: 91344 Content-Type: application/x-javascript | clean |
http://69bits.com/report.php?img_id={id}&type=1 | HTTP/1.1 302 Found Connection: close Date: Sun, 12 Oct 2014 15:49:42 GMT Location: http://0.picswan.com/report.php?img_id=%7Bid%7D&type=1 Server: nginx/1.2.3 Content-Length: 242 Content-Type: text/html; charset=iso-8859-1 | clean |
http://0.picswan.com/report.php?img_id=%7bid%7d&type=1 | 404 Not Found Content-Length: 2295 Content-Type: text/html | clean |
http://0.picswan.com/report.php?img_id={id}&type=1 | 404 Not Found Content-Length: 2295 Content-Type: text/html | clean |