Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bbs.nxzsw.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://bbs.nxzsw.com/ | 200 OK Content-Length: 41538 Content-Type: text/html | clean |
http://bbs.nxzsw.com/static/js/common.js?SYb | HTTP/1.1 200 OK Date: Wed, 03 Sep 2014 07:13:46 GMT Accept-Ranges: bytes ETag: "0ef9d39e918cc1:2cc4b" Server: IIS Content-Length: 62755 Content-Location: http://bbs.nxzsw.com/static/js/common.js?SYb Content-Type: application/x-javascript Last-Modified: Mon, 23 May 2011 01:32:06 GMT X-Powered-By: WAF/2.0 | clean |
http://bbs.nxzsw.com/static/js/common.js?syb | HTTP/1.1 200 OK Date: Wed, 03 Sep 2014 07:13:48 GMT Accept-Ranges: bytes ETag: "0ef9d39e918cc1:2cc4b" Server: IIS Content-Length: 62755 Content-Location: http://bbs.nxzsw.com/static/js/common.js?syb Content-Type: application/x-javascript Last-Modified: Mon, 23 May 2011 01:32:06 GMT X-Powered-By: WAF/2.0 | clean |
http://bbs.nxzsw.com/test404page.js | 200 OK Content-Length: 3173 Content-Type: text/html | clean |
http://bbs.nxzsw.com/static/js/forum.js?SYb | HTTP/1.1 200 OK Date: Wed, 03 Sep 2014 07:13:53 GMT Accept-Ranges: bytes ETag: "0ef9d39e918cc1:2cc4b" Server: IIS Content-Length: 15331 Content-Location: http://bbs.nxzsw.com/static/js/forum.js?SYb Content-Type: application/x-javascript Last-Modified: Mon, 23 May 2011 01:32:06 GMT X-Powered-By: WAF/2.0 | clean |
http://bbs.nxzsw.com/static/js/forum.js?syb | HTTP/1.1 200 OK Date: Wed, 03 Sep 2014 07:13:54 GMT Accept-Ranges: bytes ETag: "0ef9d39e918cc1:2cc4b" Server: IIS Content-Length: 15331 Content-Location: http://bbs.nxzsw.com/static/js/forum.js?syb Content-Type: application/x-javascript Last-Modified: Mon, 23 May 2011 01:32:06 GMT X-Powered-By: WAF/2.0 | clean |
http://cpro.baidu.com/cpro/ui/c.js | 200 OK Content-Length: 82637 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 0x0 src: http://cpro.baidustatic.com/cpro/ui/html/appdetect.html <iframe src="http://cpro.baidustatic.com/cpro/ui/html/appdetect.html" width="0" height="0"align="center,center" marginwidth="0" marginheight="0" scrolling="no" frameborder="0" allowtransparency="true" style="margin-left:{iframmarginleft}px" > | ||
http://tcss.qq.com/ping.js?v=1SYb | 200 OK Content-Length: 8909 Content-Type: application/x-javascript | clean |
http://s109.cnzz.com/stat.php?id=1886118&web_id=1886118&show=pic | 200 OK Content-Length: 9324 Content-Type: application/javascript | clean |
http://bbs.nxzsw.com/home.php?mod=misc&ac=sendmail&rand=1409728016 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bbs.nxzsw.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 07:13:25 GMT
Server: IIS
Content-Type: text/html; charset=gbk
Set-Cookie: mcDE_2132_lastvisit=1409724805; expires=Fri, 03-Oct-2014 07:13:25 GMT; path=/
Set-Cookie: mcDE_2132_sid=4p8J0d; expires=Thu, 04-Sep-2014 07:13:25 GMT; path=/
Set-Cookie: mcDE_2132_lastact=1409728405%09forum.php%09; expires=Thu, 04-Sep-2014 07:13:25 GMT; path=/
Set-Cookie: safedog-flow-item=41D32D10B15AA5C16578FD7E14E51488; expires=Sat, 10-Oct-2150 08:46:41 GMT; domain=nxzsw.com; path=/
X-Powered-By: WAF/2.0
X-Powered-By: WAF/2.0
GET / HTTP/1.1
Host: bbs.nxzsw.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 03 Sep 2014 07:13:25 GMT
Server: IIS
Content-Type: text/html; charset=gbk
Set-Cookie: mcDE_2132_lastvisit=1409724805; expires=Fri, 03-Oct-2014 07:13:25 GMT; path=/
Set-Cookie: mcDE_2132_sid=4p8J0d; expires=Thu, 04-Sep-2014 07:13:25 GMT; path=/
Set-Cookie: mcDE_2132_lastact=1409728405%09forum.php%09; expires=Thu, 04-Sep-2014 07:13:25 GMT; path=/
Set-Cookie: safedog-flow-item=41D32D10B15AA5C16578FD7E14E51488; expires=Sat, 10-Oct-2150 08:46:41 GMT; domain=nxzsw.com; path=/
X-Powered-By: WAF/2.0
X-Powered-By: WAF/2.0
Second query (visit from search engine):
GET / HTTP/1.1
Host: bbs.nxzsw.com
Referer: http://www.google.com/search?q=bbs.nxzsw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bbs.nxzsw.com
Referer: http://www.google.com/search?q=bbs.nxzsw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.