Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.jinglongfuhe.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.jinglongfuhe.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 07 May 2014 10:27:01 GMT Location: http://zb.zeroredirect1.com/zcvisitor/55f8cbe1-d5cc-11e3-8dc7-0abea7b0eae2 Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.4.4-14+deb7u7 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.jinglongfuhe.com/content/ | HTTP/1.1 302 Found Connection: close Date: Wed, 07 May 2014 10:27:01 GMT Location: http://ww92.www.jinglongfuhe.com Server: nginx Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.4.4-14+deb7u8 | clean |
http://ww92.www.jinglongfuhe.com/ | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://ww92.www.jinglongfuhe.com/test404page.js | HTTP/1.1 302 Found Date: Wed, 07 May 2014 09:45:39 GMT Location: http://pagesinxt.com/?dn=ww92.www.jinglongfuhe.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close | clean |
http://pagesinxt.com/?dn=ww92.www.jinglongfuhe.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Wed, 07 May 2014 09:45:39 GMT Location: http://mypageresults.com/?dn=ww92.www.jinglongfuhe.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding Content-Length: 264 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=ww92.www.jinglongfuhe.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2645 Content-Type: text/html | clean |
http://mypageresults.com/?dn=ww92.www.jinglongfuhe.com&fp=hL5jCQm2zOJ9ddho9d%2F5p%2FzgkMJEs9Tn34U6lkDFMC5qkAoO5yPb6k8dq%2BEU8eo4LYrGS%2FAFOBGSIAEbLgnTwA%3D%3D&prvtof=5%2FTAq7gYXg4%2Bc6m%2B0pXqMctPojeBivRUc3FR%2F6WOMSM%3D&poru=qdIKHzE1uRcCr%2FJdl1fCPGJYI2E0%2BewO79aEf%2B2a8fSrhD8cIoRN9sgN7Hv0bkVTHOUp3yNvQc2PH2BTrCOs8t0WTDOjrdqkScha8foBCFNo1Mtw8bnRut1NGCPfWvmn&flrdr=yes&nxte=js | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://mypageresults.com/test404page.js | HTTP/1.1 302 Found Date: Wed, 07 May 2014 09:45:41 GMT Location: http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close | clean |
http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Wed, 07 May 2014 09:45:41 GMT Location: http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2493 Content-Type: text/html | clean |
http://mypageresults.com/?dn=mypageresults.com&fp=F6Dt4NDbSY5kCAXjGy36QoN7Pe2p6pHv23MEMq3Q%2FdEzGa6YfrV4n9zH79apUhMQvdZS1%2BipuY1dLmInDNRKzw%3D%3D&prvtof=c6PI%2BvlPJjMypdMvF621XIORYG%2FSlRjI%2FEigRkMy53g%3D&poru=C3lFJSMdOBlGMDjAJ2zxeD2qWjTVwXbHtaPRS0t3UlIbK6VhYKI7BD1hzs0F%2FVWRNKKwIKFT15ddR54MKXRhslCk8UcIkbF5iPoHSjOZL8g%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 272 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jinglongfuhe.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jinglongfuhe.com/
Result: jinglongfuhe.com is not infected or malware details are not published yet.
Result: jinglongfuhe.com is not infected or malware details are not published yet.