Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://offer.1688.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: offer.1688.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Mon, 28 Apr 2014 00:36:22 GMT Location: http://page.1688.com/shtml/static/wrongpage.html Server: Apache Vary: Accept-Encoding Content-Length: 232 Content-Type: text/html; charset=iso-8859-1 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://offer.1688.com/content/ | HTTP/1.1 302 Found Connection: close Date: Mon, 28 Apr 2014 00:36:23 GMT Location: http://page.1688.com/shtml/static/wrongpage.html Server: Apache Vary: Accept-Encoding Content-Length: 232 Content-Type: text/html; charset=iso-8859-1 | clean |
http://page.1688.com/shtml/static/wrongpage.html | 200 OK Content-Length: 34906 Content-Type: text/html | clean |
http://astatic.alicdn.com/js/app/operation/homepage/page/404/merge-v1.js?_v=3845766bdbf58adbc1b480aa266c5c3b.js | 200 OK Content-Length: 160326 Content-Type: application/x-javascript | clean |
http://offer.1688.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Mon, 28 Apr 2014 00:36:26 GMT Location: http://page.1688.com/shtml/static/wrongpage.html Server: Apache Vary: Accept-Encoding Content-Length: 232 Content-Type: text/html; charset=iso-8859-1 | clean |
http://page.1688.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Mon, 28 Apr 2014 00:36:26 GMT Age: 0 Location: http://page.1688.com/shtml/static/wrongpage.html Server: Tengine Vary: Accept-Encoding Content-Length: 232 Content-Type: text/html; charset=iso-8859-1 X-Cache: MISS from cm10-static-004 | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=offer.1688.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://offer.1688.com/
Result: offer.1688.com is not infected or malware details are not published yet.
Result: offer.1688.com is not infected or malware details are not published yet.