Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=giaodichnet.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://giaodichnet.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://giaodichnet.com/ | 200 OK Content-Length: 266248 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.vietbaipr.com/dich-vu-viet-bai-pr.html <iframe src="http://www.vietbaipr.com/dich-vu-viet-bai-pr.html" height="0" width="0"> | ||
http://giaodichnet.com/jquery.min.js | 200 OK Content-Length: 93815 Content-Type: application/javascript | clean |
http://giaodichnet.com/jquery.cookie.js | 200 OK Content-Length: 2320 Content-Type: application/javascript | clean |
http://giaodichnet.com/clientscript/yui/yuiloader-dom-event/yuiloader-dom-event.js?v=415 | 200 OK Content-Length: 61619 Content-Type: application/javascript | clean |
http://giaodichnet.com/clientscript/yui/connection/connection-min.js?v=415 | 200 OK Content-Length: 13257 Content-Type: application/javascript | clean |
http://giaodichnet.com/clientscript/vbulletin-core.js?v=415 | 200 OK Content-Length: 50862 Content-Type: application/javascript | clean |
http://spaworld.vn/autolike/config.js | 200 OK Content-Length: 86 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var fan_page_url='https://www.facebook.com/Suckhoemecon' var opacity=0;var time=60000; Antivirus reports:
| ||
http://giaodichnet.com/clientscript/vbulletin_md5.js?v=415 | 200 OK Content-Length: 5464 Content-Type: application/javascript | clean |
http://giaodichnet.com/forum.php?s=4f3711130fe0c84c37e99d1e54bad357 | 200 OK Content-Length: 209457 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.vietbaipr.com/dich-vu-viet-bai-pr.html <iframe src="http://www.vietbaipr.com/dich-vu-viet-bai-pr.html" height="0" width="0"> | ||
http://giaodichnet.com/register.php?s=4f3711130fe0c84c37e99d1e54bad357 | 403 Forbidden Content-Length: 333 Content-Type: text/html | clean |
http://giaodichnet.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://giaodichnet.com/faq.php?s=4f3711130fe0c84c37e99d1e54bad357 | 404 Not Found Content-Length: 324 Content-Type: text/html | clean |
http://giaodichnet.com/misc.php?do=dosendnewlm | 200 OK Content-Length: 63591 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.vietbaipr.com/dich-vu-viet-bai-pr.html <iframe src="http://www.vietbaipr.com/dich-vu-viet-bai-pr.html" height="0" width="0"> | ||
http://giaodichnet.com/clientscript/vbulletin-sidebar2.js?v=415 | 404 Not Found Content-Length: 351 Content-Type: text/html | clean |
http://giaodichnet.com/clientscript/yui/animation/animation-min.js?v=415 | 200 OK Content-Length: 14240 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: giaodichnet.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Tue, 12 Aug 2014 19:52:22 GMT
Pragma: private
Server: Apache/2.2.25 (Unix) mod_ssl/2.2.25 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 339094
Content-Type: text/html; charset=UTF-8
Set-Cookie: bb_lastvisit=1407873142; expires=Wed, 12-Aug-2015 19:52:22 GMT; path=/
Set-Cookie: bb_lastactivity=0; expires=Wed, 12-Aug-2015 19:52:22 GMT; path=/
X-Died: timeout at scan.pm line 1546.
X-Powered-By: PHP/5.3.26
...339094 bytes of data.
GET / HTTP/1.1
Host: giaodichnet.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Tue, 12 Aug 2014 19:52:22 GMT
Pragma: private
Server: Apache/2.2.25 (Unix) mod_ssl/2.2.25 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 339094
Content-Type: text/html; charset=UTF-8
Set-Cookie: bb_lastvisit=1407873142; expires=Wed, 12-Aug-2015 19:52:22 GMT; path=/
Set-Cookie: bb_lastactivity=0; expires=Wed, 12-Aug-2015 19:52:22 GMT; path=/
X-Died: timeout at scan.pm line 1546.
X-Powered-By: PHP/5.3.26
...339094 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: giaodichnet.com
Referer: http://www.google.com/search?q=giaodichnet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: giaodichnet.com
Referer: http://www.google.com/search?q=giaodichnet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.