Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=baoxinbuy.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.baoxinbuy.com/ | 200 OK Content-Length: 99991 Content-Type: text/html | clean |
http://www.baoxinbuy.com/Content/JS/jquery-1.8.3.min.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:06 GMT Accept-Ranges: bytes ETag: "1b805ade13ad01:1014" Server: IIS Content-Length: 93639 Content-Location: http://www.baoxinbuy.com/Content/JS/jquery-1.8.3.min.js Content-Type: application/x-javascript Last-Modified: Wed, 28 Jan 2015 10:03:33 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/jquery-1.8.3.min.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:09 GMT Accept-Ranges: bytes ETag: "1b805ade13ad01:1014" Server: IIS Content-Length: 93639 Content-Location: http://www.baoxinbuy.com/content/js/jquery-1.8.3.min.js Content-Type: application/x-javascript Last-Modified: Wed, 28 Jan 2015 10:03:33 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/test404page.js | 200 OK Content-Length: 3173 Content-Type: text/html | clean |
http://www.baoxinbuy.com/Content/JS/slide.min.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:16 GMT Accept-Ranges: bytes ETag: "abdb7523ab51d01:1014" Server: IIS Content-Length: 2269 Content-Location: http://www.baoxinbuy.com/Content/JS/slide.min.js Content-Type: application/x-javascript Last-Modified: Thu, 26 Feb 2015 10:01:06 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/slide.min.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:17 GMT Accept-Ranges: bytes ETag: "abdb7523ab51d01:1014" Server: IIS Content-Length: 2269 Content-Location: http://www.baoxinbuy.com/content/js/slide.min.js Content-Type: application/x-javascript Last-Modified: Thu, 26 Feb 2015 10:01:06 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Content/JS/weibo.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:18 GMT Accept-Ranges: bytes ETag: "d95253ba9e3bd01:1014" Server: IIS Content-Length: 6937 Content-Location: http://www.baoxinbuy.com/Content/JS/weibo.js Content-Type: application/x-javascript Last-Modified: Thu, 29 Jan 2015 08:36:51 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/weibo.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:19 GMT Accept-Ranges: bytes ETag: "d95253ba9e3bd01:1014" Server: IIS Content-Length: 6937 Content-Location: http://www.baoxinbuy.com/content/js/weibo.js Content-Type: application/x-javascript Last-Modified: Thu, 29 Jan 2015 08:36:51 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Content/JS/tqq.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:20 GMT Accept-Ranges: bytes ETag: "b8453ba9e3bd01:1014" Server: IIS Content-Length: 641 Content-Location: http://www.baoxinbuy.com/Content/JS/tqq.js Content-Type: application/x-javascript Last-Modified: Thu, 29 Jan 2015 08:36:51 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/tqq.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:21 GMT Accept-Ranges: bytes ETag: "b8453ba9e3bd01:1014" Server: IIS Content-Length: 641 Content-Location: http://www.baoxinbuy.com/content/js/tqq.js Content-Type: application/x-javascript Last-Modified: Thu, 29 Jan 2015 08:36:51 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Login/UserInfos/?type=1&ve=1718 | 200 OK Content-Length: 318 Content-Type: text/html | clean |
http://www.baoxinbuy.com/login/login | 200 OK Content-Length: 18377 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function addFav() { if (document.all) { window.external.addFavorite('http://www.baidu.com', 'Ò»ÔªÔƹº'); } else if (window.sidebar) { window.sidebar.addPanel('Ò»ÔªÔƹº', 'http://www.baidu.com', ''); } } Antivirus reports:
| ||
http://www.baoxinbuy.com/Content/JS/global.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:24 GMT Accept-Ranges: bytes ETag: "5d5117cc1b41d01:1014" Server: IIS Content-Length: 112009 Content-Location: http://www.baoxinbuy.com/Content/JS/global.js Content-Type: application/x-javascript Last-Modified: Thu, 05 Feb 2015 08:14:43 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/global.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:27 GMT Accept-Ranges: bytes ETag: "5d5117cc1b41d01:1014" Server: IIS Content-Length: 112009 Content-Location: http://www.baoxinbuy.com/content/js/global.js Content-Type: application/x-javascript Last-Modified: Thu, 05 Feb 2015 08:14:43 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Content/JS/head.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:31 GMT Accept-Ranges: bytes ETag: "c9d8a23ac553d01:1014" Server: IIS Content-Length: 9891 Content-Location: http://www.baoxinbuy.com/Content/JS/head.js Content-Type: application/x-javascript Last-Modified: Sun, 01 Mar 2015 02:12:55 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/head.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:31 GMT Accept-Ranges: bytes ETag: "c9d8a23ac553d01:1014" Server: IIS Content-Length: 9891 Content-Location: http://www.baoxinbuy.com/content/js/head.js Content-Type: application/x-javascript Last-Modified: Sun, 01 Mar 2015 02:12:55 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Login/UserInfos?type=1&ve=2812 | 200 OK Content-Length: 318 Content-Type: text/html | clean |
http://www.baoxinbuy.com/login/Register | 200 OK Content-Length: 20374 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function addFav() { if (document.all) { window.external.addFavorite('http://www.baidu.com', 'Ò»ÔªÔƹº'); } else if (window.sidebar) { window.sidebar.addPanel('Ò»ÔªÔƹº', 'http://www.baidu.com', ''); } } Antivirus reports:
| ||
http://www.baoxinbuy.com/Login/UserInfos?type=1&ve=3906 | 200 OK Content-Length: 318 Content-Type: text/html | clean |
http://www.baoxinbuy.com/Helper/HelperCenter | 200 OK Content-Length: 21077 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function addFav() { if (document.all) { window.external.addFavorite('http://www.baidu.com', 'Ò»ÔªÔƹº'); } else if (window.sidebar) { window.sidebar.addPanel('Ò»ÔªÔƹº', 'http://www.baidu.com', ''); } } Antivirus reports:
| ||
http://www.baoxinbuy.com/Content/JS/jquery-1.5.1.min.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:36 GMT Accept-Ranges: bytes ETag: "766c1f90e23ad01:1014" Server: IIS Content-Length: 85259 Content-Location: http://www.baoxinbuy.com/Content/JS/jquery-1.5.1.min.js Content-Type: application/x-javascript Last-Modified: Wed, 28 Jan 2015 10:09:54 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/jquery-1.5.1.min.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:39 GMT Accept-Ranges: bytes ETag: "766c1f90e23ad01:1014" Server: IIS Content-Length: 85259 Content-Location: http://www.baoxinbuy.com/content/js/jquery-1.5.1.min.js Content-Type: application/x-javascript Last-Modified: Wed, 28 Jan 2015 10:09:54 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Login/UserInfos?type=1&ve=4531 | 200 OK Content-Length: 318 Content-Type: text/html | clean |
http://www.baoxinbuy.com/Login/ | 200 OK Content-Length: 3173 Content-Type: text/html | clean |
http://www.baoxinbuy.com/Content/JS/zzsc.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:43 GMT Accept-Ranges: bytes ETag: "ec3fb332445d01:1014" Server: IIS Content-Length: 1671 Content-Location: http://www.baoxinbuy.com/Content/JS/zzsc.js Content-Type: application/x-javascript Last-Modified: Tue, 10 Feb 2015 07:35:52 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/zzsc.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:43 GMT Accept-Ranges: bytes ETag: "ec3fb332445d01:1014" Server: IIS Content-Length: 1671 Content-Location: http://www.baoxinbuy.com/content/js/zzsc.js Content-Type: application/x-javascript Last-Modified: Tue, 10 Feb 2015 07:35:52 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Scripts/Common.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:44 GMT Accept-Ranges: bytes ETag: "9f76e1136552d01:1014" Server: IIS Content-Length: 3332 Content-Location: http://www.baoxinbuy.com/Scripts/Common.js Content-Type: application/x-javascript Last-Modified: Fri, 27 Feb 2015 08:12:07 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/scripts/common.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:45 GMT Accept-Ranges: bytes ETag: "9f76e1136552d01:1014" Server: IIS Content-Length: 3332 Content-Location: http://www.baoxinbuy.com/scripts/common.js Content-Type: application/x-javascript Last-Modified: Fri, 27 Feb 2015 08:12:07 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/Login/UserInfos/ | 200 OK Content-Length: 23 Content-Type: text/html | clean |
http://www.baoxinbuy.com/Content/JS/slide.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:46 GMT Accept-Ranges: bytes ETag: "2ba75ade13ad01:1014" Server: IIS Content-Length: 4198 Content-Location: http://www.baoxinbuy.com/Content/JS/slide.js Content-Type: application/x-javascript Last-Modified: Wed, 28 Jan 2015 10:03:33 GMT X-Powered-By: WAF/2.0 | clean |
http://www.baoxinbuy.com/content/js/slide.js | HTTP/1.1 200 OK Date: Sat, 07 Mar 2015 00:11:47 GMT Accept-Ranges: bytes ETag: "2ba75ade13ad01:1014" Server: IIS Content-Length: 4198 Content-Location: http://www.baoxinbuy.com/content/js/slide.js Content-Type: application/x-javascript Last-Modified: Wed, 28 Jan 2015 10:03:33 GMT X-Powered-By: WAF/2.0 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: baoxinbuy.com
Result:
GET / HTTP/1.1
Host: baoxinbuy.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: baoxinbuy.com
Referer: http://www.google.com/search?q=baoxinbuy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: baoxinbuy.com
Referer: http://www.google.com/search?q=baoxinbuy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.