Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=landsir.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: landsir.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 11 Sep 2014 05:31:25 GMT
Location: forum.php
Server: nginx/1.0.15
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.2.17p1
...0 bytes of data.
GET / HTTP/1.1
Host: landsir.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 11 Sep 2014 05:31:25 GMT
Location: forum.php
Server: nginx/1.0.15
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/5.2.17p1
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: landsir.com
Referer: http://www.google.com/search?q=landsir.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: landsir.com
Referer: http://www.google.com/search?q=landsir.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://landsir.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 11 Sep 2014 05:31:25 GMT Location: forum.php Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.17p1 | clean |
http://landsir.com/forum.php | 200 OK Content-Length: 48244 Content-Type: text/html | clean |
http://landsir.com/data/cache/common.js?MhZ | 200 OK Content-Length: 60894 Content-Type: application/x-javascript | clean |
http://landsir.com/data/cache/forum.js?MhZ | 200 OK Content-Length: 18914 Content-Type: application/x-javascript | clean |
http://landsir.com/data/cache/logging.js?MhZ | 200 OK Content-Length: 390 Content-Type: application/x-javascript | clean |
http://c.f8272.com/code/wz_start.asp?pid=268203 | 200 OK Content-Length: 839 Content-Type: text/html | clean |
http://c.f8272.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://ck.cpcv.cc:899/clk.aspx?action=adget&ad_id=171&userid=2480 | 200 OK Content-Length: 4856 Content-Type: text/html | clean |
http://landsir.com/data/cache/forum_slide.js?MhZ | 200 OK Content-Length: 4082 Content-Type: application/x-javascript | clean |
http://lg7894.565882.com/vShow.php?id=5606 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Thu, 11 Sep 2014 05:31:36 GMT Location: vShow-2014.php?id=5606 Server: nginx/1.0.0 Content-Type: text/html P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" X-Powered-By: PHP/5.2.17 | clean |
http://lg7894.565882.com/vshow-2014.php?id=5606 | 404 Not Found Content-Length: 25 Content-Type: text/html | clean |
http://lg7894.565882.com/pShow.php?PID=5605 | 200 OK Content-Length: 107 Content-Type: text/html | clean |
http://tcss.qq.com/ping.js?v=1VERHASH | 200 OK Content-Length: 8909 Content-Type: application/x-javascript | clean |
http://s14.cnzz.com/stat.php?id=5020887&web_id=5020887&show=pic1 | 200 OK Content-Length: 9326 Content-Type: application/javascript | clean |
http://landsir.com/home.php?mod=misc&ac=sendmail&rand=1410413487 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://discuz.gtimg.cn/cloud/scripts/discuz_tips.js?v=1 | 200 OK Content-Length: 6173 Content-Type: application/x-javascript | clean |