Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://juhuashua.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: juhuashua.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=600 Connection: close Date: Sun, 06 Apr 2014 11:09:39 GMT Location: http://url.cn/JLunpo Server: DNSPod URL V2.0 Content-Length: 0 Expires: Sun, 06 Apr 2014 11:19:39 GMT | malicious |
URL: http://url.cn/JLunpo (imitation of visitor from search engine) GET /JLunpo HTTP/1.1 Host: url.cn Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Sun, 06 Apr 2014 11:09:39 GMT Pragma: no-cache Location: http://www.mugujie.com Server: QZHTTP-2.38.18 Content-Length: 0 Content-Type: text/html; charset=gb2312 | suspicious |
URL: http://www.mugujie.com (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.mugujie.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 06 Apr 2014 11:09:41 GMT Location: http://url.cn/7dJvfF Server: nginx Content-Type: text/html | malicious |
URL: http://url.cn/7dJvfF (imitation of visitor from search engine) GET /7dJvfF HTTP/1.1 Host: url.cn Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Sun, 06 Apr 2014 11:09:42 GMT Pragma: no-cache Location: http://taourl.com/0fxqa Server: QZHTTP-2.38.18 Content-Length: 0 Content-Type: text/html; charset=gb2312 | malicious |
URL: http://taourl.com/0fxqa (imitation of visitor from search engine) GET /0fxqa HTTP/1.1 Host: taourl.com Referer: http://www.google.com/search?q=redirect+check5 | HTTP/1.1 301 Moved Permanently Cache-Control: private, post-check=0, pre-check=0, max-age=0 Connection: close Date: Sun, 06 Apr 2014 11:09:40 GMT Pragma: no-cache Location: http://s.click.taobao.com/t?e=zGU34CA7K%2BPkqB05%2Bm7rfGKas1PIKp0U37pZuBotzOg7OjeU9mIWS5%2B5UROBz6sq4fiHePnGhf6UrWuOtfD2G6QGcAHIXpjhEtESpuqsRo0a&pid=mm_12454313_0_0 Server: nginx Content-Type: text/html Set-Cookie: taourl_auth=deleted; expires=Sat, 06-Apr-2013 11:09:38 GMT; path=/; domain=.taourl.com Set-Cookie: taourl_visitor_id=deleted; expires=Sat, 06-Apr-2013 11:09:38 GMT; path=/; domain=.taourl.com Set-Cookie: taourl_top_session=deleted; expires=Sat, 06-Apr-2013 11:09:38 GMT; path=/; domain=.taourl.com Set-Cookie: taourl_auth=deleted; expires=Sat, 06-Apr-2013 11:09:38 GMT; path=/; domain=.taourl.com Set-Cookie: taourl_auth=deleted; expires=Sat, 06-Apr-2013 11:09:38 GMT; path=/; domain=app.taourl.com Set-Cookie: taourl_auth=deleted; expires=Sat, 06-Apr-2013 11:09:38 GMT; path=/; domain=www.taourl.com X-Powered-By: PHP/5.3.5 | malicious |
Scanned pages/files
Request | Server response | Status |
http://juhuashua.com/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://juhuashua.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=600 Connection: close Date: Sun, 06 Apr 2014 11:09:44 GMT Location: http://url.cn/JLunpo/test404page.js Server: DNSPod URL V2.0 Content-Length: 0 Expires: Sun, 06 Apr 2014 11:19:44 GMT | clean |
http://url.cn/jlunpo/test404page.js | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Sun, 06 Apr 2014 11:09:45 GMT Pragma: no-cache Location: http://url.cn/sorry Server: QZHTTP-2.38.18 Content-Length: 0 Content-Type: text/html; charset=gb2312 | clean |
http://url.cn/sorry | 200 OK Content-Length: 3325 Content-Type: text/html | clean |
http://url.cn/test404page.js | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Sun, 06 Apr 2014 11:09:47 GMT Pragma: no-cache Location: http://url.cn/sorry Server: QZHTTP-2.38.18 Content-Length: 0 Content-Type: text/html; charset=gb2312 | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=juhuashua.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://juhuashua.com/
Result: juhuashua.com is not infected or malware details are not published yet.
Result: juhuashua.com is not infected or malware details are not published yet.