Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://lidao99.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: lidao99.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 22 Apr 2014 07:07:16 GMT Location: http://dietprescriptioninc.net/ Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 239 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://lidao99.com/ | 200 OK Content-Length: 5730 Content-Type: text/html | clean |
http://lidao99.com/liuyan | HTTP/1.1 302 Found Connection: close Date: Tue, 22 Apr 2014 07:07:17 GMT Location: http://dietprescriptioninc.net/ Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 | clean |
http://dietprescriptioninc.net/ | 403 Forbidden Content-Length: 168 Content-Type: text/html | clean |
http://dietprescriptioninc.net/test404page.js | 403 Forbidden Content-Length: 168 Content-Type: text/html | clean |
http://lidao99.com/lianxi/ | HTTP/1.1 302 Found Connection: close Date: Tue, 22 Apr 2014 07:07:19 GMT Location: http://dietprescriptioninc.net/ Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 | clean |
http://lidao99.com/about/ | 200 OK Content-Length: 9299 Content-Type: text/html | clean |
http://lidao99.com/templets/jiemnew/js/jquery-1.3.2.js | 200 OK Content-Length: 120763 Content-Type: application/x-javascript | clean |
http://lidao99.com/templets/jiemnew/js/kxbdMarquee.js | 200 OK Content-Length: 4397 Content-Type: application/x-javascript | clean |
http://lidao99.com/templets/jiemnew/js/MSClass1.65.js | 200 OK Content-Length: 11165 Content-Type: application/x-javascript | clean |
http://s20.cnzz.com/stat.php?id=3997252&web_id=3997252&show=pic | 200 OK Content-Length: 9624 Content-Type: application/javascript | clean |
http://lidao99.com/about/200.html | HTTP/1.1 302 Found Connection: close Date: Tue, 22 Apr 2014 07:07:27 GMT Location: http://dietprescriptioninc.net/ Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 | clean |
http://lidao99.com/rongyu/ | 200 OK Content-Length: 23744 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) onload = function(){var title = document.getElementsByTagName("title").item(0);var tArr = (title.innerHTML).split("_");tArr = tArr.slice(1);title.innerHTML=tArr.join("_"); var jae = document.getElementsByClassName("jae");for(var i in jae)jae[i].style.display="none";} Antivirus reports:
| ||
http://lidao99.com/swt/swt.js | HTTP/1.1 302 Found Connection: close Date: Tue, 22 Apr 2014 07:07:30 GMT Location: http://dietprescriptioninc.net/ Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 | clean |
http://lidao99.com/liaofa/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:34 GMT Accept-Ranges: bytes ETag: "f28baa-5ce2-4ea55a5a4bfc0" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23778 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:39 GMT | clean |
http://www.ijc8.cc/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://lidao99.com/zhuanjia/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:41 GMT Accept-Ranges: bytes ETag: "f291a6-5cba-4ea55a5d28680" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23738 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:42 GMT | clean |
http://lidao99.com/baodao/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:42 GMT Accept-Ranges: bytes ETag: "eeb074-584d-4de7a9c176d40" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 22605 Content-Type: text/html Last-Modified: Thu, 06 Jun 2013 11:28:13 GMT | clean |
http://lidao99.com/kfbl/ | 200 OK Content-Length: 23715 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) onload = function(){var title = document.getElementsByTagName("title").item(0);var tArr = (title.innerHTML).split("_");tArr = tArr.slice(1);title.innerHTML=tArr.join("_"); var jae = document.getElementsByClassName("jae");for(var i in jae)jae[i].style.display="none";} Antivirus reports:
| ||
http://lidao99.com/shebei/ | 200 OK Content-Length: 23646 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) onload = function(){var title = document.getElementsByTagName("title").item(0);var tArr = (title.innerHTML).split("_");tArr = tArr.slice(1);title.innerHTML=tArr.join("_"); var jae = document.getElementsByClassName("jae");for(var i in jae)jae[i].style.display="none";} Antivirus reports:
| ||
http://lidao99.com/news/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:47 GMT Accept-Ranges: bytes ETag: "f28ed3-64e7-4ea563c9f4300" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 25831 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 09:06:52 GMT | clean |
http://lidao99.com/swt/ | HTTP/1.1 302 Found Connection: close Date: Tue, 22 Apr 2014 07:07:49 GMT Location: http://dietprescriptioninc.net/ Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 | clean |
http://lidao99.com/qiguanyan/qgyby/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:49 GMT Accept-Ranges: bytes ETag: "f28fe7-5e12-4ea55a5c34440" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 24082 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:41 GMT | clean |
http://lidao99.com/qiguanyan/qgyzz/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:51 GMT Accept-Ranges: bytes ETag: "f28ff4-5e13-4ea55a5c34440" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 24083 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:41 GMT | clean |
http://lidao99.com/qiguanyan/qgyzl/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:53 GMT Accept-Ranges: bytes ETag: "f28ff1-5c75-4ea55a5c34440" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23669 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:41 GMT | clean |
http://lidao99.com/qiguanyan/qgycs/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:54 GMT Accept-Ranges: bytes ETag: "f28fef-6085-4de7a9c26af80" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 24709 Content-Type: text/html Last-Modified: Thu, 06 Jun 2013 11:28:14 GMT | clean |
http://lidao99.com/zhiqiguanyan/zqgyby/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:56 GMT Accept-Ranges: bytes ETag: "f2919b-5d1c-4de7a9c63b880" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23836 Content-Type: text/html Last-Modified: Thu, 06 Jun 2013 11:28:18 GMT | clean |
http://lidao99.com/zhiqiguanyan/zqgyzz/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:57 GMT Accept-Ranges: bytes ETag: "f291a4-5c66-4ea55a5d28680" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23654 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:42 GMT | clean |
http://lidao99.com/zhiqiguanyan/zqgyzl/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:07:59 GMT Accept-Ranges: bytes ETag: "f291a2-5c7c-4ea55a5d28680" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23676 Content-Type: text/html Last-Modified: Mon, 04 Nov 2013 08:24:42 GMT | clean |
http://lidao99.com/zhiqiguanyan/zqgycs/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Apr 2014 07:08:01 GMT Accept-Ranges: bytes ETag: "f291a0-5b51-4de7a9c63b880" Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding Content-Length: 23377 Content-Type: text/html Last-Modified: Thu, 06 Jun 2013 11:28:18 GMT | clean |
http://lidao99.com/mxzqgy/mxzqgyby/ | 200 OK Content-Length: 22914 Content-Type: text/html | clean |
http://lidao99.com/mxzqgy/mxzqgyzz/ | 200 OK Content-Length: 23358 Content-Type: text/html | clean |
http://lidao99.com/mxzqgy/mxzqgyzl/ | 200 OK Content-Length: 23608 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) onload = function(){var title = document.getElementsByTagName("title").item(0);var tArr = (title.innerHTML).split("_");tArr = tArr.slice(1);title.innerHTML=tArr.join("_"); var jae = document.getElementsByClassName("jae");for(var i in jae)jae[i].style.display="none";} Antivirus reports:
|
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lidao99.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://lidao99.com/
Result: lidao99.com is not infected or malware details are not published yet.
Result: lidao99.com is not infected or malware details are not published yet.