Scanned pages/files
Request | Server response | Status |
http://www.bjtlth.com/ | HTTP/1.1 200 OK Date: Thu, 04 Jun 2015 18:46:09 GMT Accept-Ranges: bytes ETag: "1482db76c6eccf1:7851" Server: Microsoft-IIS/6.0 Content-Length: 13006 Content-Location: http://www.bjtlth.com/index.html Content-Type: text/html Last-Modified: Tue, 21 Oct 2014 00:32:15 GMT | clean |
http://www.bjtlth.com/index.html | 200 OK Content-Length: 13006 Content-Type: text/html | clean |
http://www.bjtlth.com/common.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.bjtlth.com/tj.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://js.users.51.la/17392567.js | 200 OK Content-Length: 1964 Content-Type: application/x-javascript | clean |
http://www.bjtlth.com/sitemap.html | 200 OK Content-Length: 2019 Content-Type: text/html | clean |
http://www.bjtlth.com/huoyuncongyezigezheng/ | HTTP/1.1 200 OK Date: Thu, 04 Jun 2015 18:46:18 GMT Accept-Ranges: bytes ETag: "4caa91fba7d1cf1:7851" Server: Microsoft-IIS/6.0 Content-Length: 2247 Content-Location: http://www.bjtlth.com/huoyuncongyezigezheng/index.html Content-Type: text/html Last-Modified: Tue, 16 Sep 2014 12:16:02 GMT | clean |
http://www.bjtlth.com/huoyuncongyezigezheng/index.html | 200 OK Content-Length: 2247 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By: Xiao <html>
<title> Hacked By: Xiao </title> <body bgcolor=Black <link href="http://4.bp.blogspot.com/-n_dV00Pl8F4/UvaFTaYfBCI/AAAAAAACNnA/ZdstbLFoCXg/s1600/Frozen-077.jpg" rel="shortcut icon"/> <body oncontextmenu='return false;' onkeydown='return false;' onmousedown='return false;'> <center><marquee behavior="scroll" direction="left" scrollamount="100" scrolldelay="100" width="100%"><font color="Red">vvvv ...[2300 bytes skipped]... | ||
http://www.bjtlth.com/test404page.js | HTTP/1.1 200 OK Date: Thu, 04 Jun 2015 18:46:19 GMT Accept-Ranges: bytes ETag: "e465dfa3afcf1:7851" Server: Microsoft-IIS/6.0 Content-Length: 1361 Content-Location: http://www.bjtlth.com/404.html?404;http://www.bjtlth.com:80/test404page.js Content-Type: text/html Last-Modified: Mon, 04 Aug 2014 05:20:57 GMT | clean |
http://www.bjtlth.com/404.html?404;http://www.bjtlth.com:80/test404page.js | 200 OK Content-Length: 1361 Content-Type: text/html | clean |
http://www.qq.com/404/search_children.js | 200 OK Content-Length: 295 Content-Type: application/javascript | clean |
http://www.bjtlth.com/huoyunzhan/ | HTTP/1.1 200 OK Date: Thu, 04 Jun 2015 18:46:21 GMT Accept-Ranges: bytes ETag: "4caa91fba7d1cf1:7851" Server: Microsoft-IIS/6.0 Content-Length: 2247 Content-Location: http://www.bjtlth.com/huoyunzhan/index.html Content-Type: text/html Last-Modified: Tue, 16 Sep 2014 12:16:02 GMT | clean |
http://www.bjtlth.com/huoyunzhan/index.html | 200 OK Content-Length: 2247 Content-Type: text/html | clean |
http://www.bjtlth.com/huoyunzigezheng/ | HTTP/1.1 200 OK Date: Thu, 04 Jun 2015 18:46:21 GMT Accept-Ranges: bytes ETag: "4caa91fba7d1cf1:7851" Server: Microsoft-IIS/6.0 Content-Length: 2247 Content-Location: http://www.bjtlth.com/huoyunzigezheng/index.html Content-Type: text/html Last-Modified: Tue, 16 Sep 2014 12:16:02 GMT | clean |
http://www.bjtlth.com/huoyunzigezheng/index.html | 200 OK Content-Length: 2247 Content-Type: text/html | clean |
http://www.bjtlth.com/huoyun/ | HTTP/1.1 200 OK Date: Thu, 04 Jun 2015 18:46:22 GMT Accept-Ranges: bytes ETag: "5296cf76c6eccf1:7851" Server: Microsoft-IIS/6.0 Content-Length: 6958 Content-Location: http://www.bjtlth.com/huoyun/index.html Content-Type: text/html Last-Modified: Tue, 21 Oct 2014 00:32:15 GMT | clean |
http://www.bjtlth.com/huoyun/index.html | 200 OK Content-Length: 6958 Content-Type: text/html | clean |
http://www.bjtlth.com/huoyun/61407910191.html | 200 OK Content-Length: 13887 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bjtlth.com
Result:
GET / HTTP/1.1
Host: bjtlth.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: bjtlth.com
Referer: http://www.google.com/search?q=bjtlth.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bjtlth.com
Referer: http://www.google.com/search?q=bjtlth.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bjtlth.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bjtlth.com/
Result: bjtlth.com is not infected or malware details are not published yet.
Result: bjtlth.com is not infected or malware details are not published yet.