Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kmdianli.com
Result:
HTTP/1.1 301 Moved Permanently
Date: Fri, 01 Aug 2014 03:05:28 GMT
Location: http://www.lajiyouxi.com/
Server: Microsoft-IIS/6.0
Content-Length: 148
Content-Type: text/html
X-Powered-By: ASP.NET
...148 bytes of data.
GET / HTTP/1.1
Host: kmdianli.com
Result:
HTTP/1.1 301 Moved Permanently
Date: Fri, 01 Aug 2014 03:05:28 GMT
Location: http://www.lajiyouxi.com/
Server: Microsoft-IIS/6.0
Content-Length: 148
Content-Type: text/html
X-Powered-By: ASP.NET
...148 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kmdianli.com
Referer: http://www.google.com/search?q=kmdianli.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kmdianli.com
Referer: http://www.google.com/search?q=kmdianli.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://kmdianli.com/ | HTTP/1.1 301 Moved Permanently Date: Fri, 01 Aug 2014 03:05:28 GMT Location: http://www.lajiyouxi.com/ Server: Microsoft-IIS/6.0 Content-Length: 148 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/ | HTTP/1.1 200 OK Date: Fri, 01 Aug 2014 03:05:29 GMT Accept-Ranges: bytes ETag: "7e89e56c31adcf1:b9d" Server: Microsoft-IIS/6.0 Content-Length: 41699 Content-Location: http://www.lajiyouxi.com/index.html Content-Type: text/html Last-Modified: Fri, 01 Aug 2014 02:36:40 GMT X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/index.html | 200 OK Content-Length: 41699 Content-Type: text/html | clean |
http://www.lajiyouxi.com/js/ads/960.js | 200 OK Content-Length: 310 Content-Type: application/x-javascript | clean |
http://s23.cnzz.com/stat.php?id=4680954&web_id=4680954 | 200 OK Content-Length: 9322 Content-Type: application/javascript | clean |
http://kmdianli.com/allmovie.html | HTTP/1.1 301 Moved Permanently Date: Fri, 01 Aug 2014 03:05:34 GMT Location: http://www.lajiyouxi.com/allmovie.html Server: Microsoft-IIS/6.0 Content-Length: 161 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/allmovie.html | 200 OK Content-Length: 103311 Content-Type: text/html | clean |
http://www.lajiyouxi.com/gbook.asp | 200 OK Content-Length: 8913 Content-Type: text/html | clean |
http://www.lajiyouxi.com/js/common.js | 200 OK Content-Length: 8501 Content-Type: application/x-javascript | clean |
http://www.lajiyouxi.com/js/function.js | 200 OK Content-Length: 14368 Content-Type: application/x-javascript | clean |
http://www.lajiyouxi.com/dongzuo/ | HTTP/1.1 200 OK Date: Fri, 01 Aug 2014 03:05:40 GMT Accept-Ranges: bytes ETag: "a4d66b45adcf1:b9d" Server: Microsoft-IIS/6.0 Content-Length: 15820 Content-Location: http://www.lajiyouxi.com/dongzuo/index.html Content-Type: text/html Last-Modified: Thu, 31 Jul 2014 21:23:43 GMT X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/dongzuo/index.html | 200 OK Content-Length: 15820 Content-Type: text/html | clean |
http://cpro.baidustatic.com/cpro/ui/c.js | 200 OK Content-Length: 82261 Content-Type: application/x-javascript | clean |
http://www.lajiyouxi.com/js/ads/duilian.js | 200 OK Content-Length: 311 Content-Type: application/x-javascript | clean |
http://www.lajiyouxi.com/js/ads/bocpv.js | 200 OK Content-Length: 85 Content-Type: application/x-javascript | clean |
http://www.lajiyouxi.com/xiju/ | HTTP/1.1 200 OK Date: Fri, 01 Aug 2014 03:05:44 GMT Accept-Ranges: bytes ETag: "5eb2cbbd5adcf1:b9d" Server: Microsoft-IIS/6.0 Content-Length: 15518 Content-Location: http://www.lajiyouxi.com/xiju/index.html Content-Type: text/html Last-Modified: Thu, 31 Jul 2014 21:23:58 GMT X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/xiju/index.html | 200 OK Content-Length: 15518 Content-Type: text/html | clean |
http://www.lajiyouxi.com/juqing/ | HTTP/1.1 200 OK Date: Fri, 01 Aug 2014 03:05:46 GMT Accept-Ranges: bytes ETag: "8271f5c95adcf1:b9d" Server: Microsoft-IIS/6.0 Content-Length: 15805 Content-Location: http://www.lajiyouxi.com/juqing/index.html Content-Type: text/html Last-Modified: Thu, 31 Jul 2014 21:24:19 GMT X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/juqing/index.html | 200 OK Content-Length: 15805 Content-Type: text/html | clean |
http://www.lajiyouxi.com/kongbu/ | HTTP/1.1 200 OK Date: Fri, 01 Aug 2014 03:05:48 GMT Accept-Ranges: bytes ETag: "64623fda5adcf1:b9d" Server: Microsoft-IIS/6.0 Content-Length: 15592 Content-Location: http://www.lajiyouxi.com/kongbu/index.html Content-Type: text/html Last-Modified: Thu, 31 Jul 2014 21:24:46 GMT X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/kongbu/index.html | 200 OK Content-Length: 15592 Content-Type: text/html | clean |
http://www.lajiyouxi.com/aiqing/ | HTTP/1.1 200 OK Date: Fri, 01 Aug 2014 03:05:49 GMT Accept-Ranges: bytes ETag: "54127e15adcf1:b9d" Server: Microsoft-IIS/6.0 Content-Length: 15325 Content-Location: http://www.lajiyouxi.com/aiqing/index.html Content-Type: text/html Last-Modified: Thu, 31 Jul 2014 21:24:57 GMT X-Powered-By: ASP.NET | clean |
http://www.lajiyouxi.com/aiqing/index.html | 200 OK Content-Length: 15325 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kmdianli.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kmdianli.com/
Result: kmdianli.com is not infected or malware details are not published yet.
Result: kmdianli.com is not infected or malware details are not published yet.