Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: qzggzy.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 09 Oct 2014 21:25:57 GMT
Server: Microsoft-IIS/6.0
Content-Length: 79317
Content-Type: text/html; charset=utf-8
Set-Cookie: ASP.NET_SessionId=urfx4s454dgfie45jc3ewp45; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...79317 bytes of data.
GET / HTTP/1.1
Host: qzggzy.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Thu, 09 Oct 2014 21:25:57 GMT
Server: Microsoft-IIS/6.0
Content-Length: 79317
Content-Type: text/html; charset=utf-8
Set-Cookie: ASP.NET_SessionId=urfx4s454dgfie45jc3ewp45; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...79317 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: qzggzy.com
Referer: http://www.google.com/search?q=qzggzy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: qzggzy.com
Referer: http://www.google.com/search?q=qzggzy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://qzggzy.com/ | 200 OK Content-Length: 79317 Content-Type: text/html | clean |
http://qzggzy.com/js/swfobject_modified.js | 200 OK Content-Length: 22365 Content-Type: application/x-javascript | clean |
http://qzggzy.com/js/AC_RunActiveContent.js | 200 OK Content-Length: 8321 Content-Type: application/x-javascript | clean |
http://qzggzy.com/Index.aspx | 200 OK Content-Length: 79317 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=zcfg&xj=zcfg_zh | 200 OK Content-Length: 36560 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=zxzl&xj=zxzl_zxjj | 200 OK Content-Length: 33451 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=jsgc&xj=jsgc_zbgg | 200 OK Content-Length: 34267 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=zfcg&xj=zfcg_cggg | 200 OK Content-Length: 33944 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=tdjy&xj=tdjy_pmgg | 200 OK Content-Length: 32808 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=cpjy&xj=cpjy_bmgg | 200 OK Content-Length: 32977 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=qtjy&xj=qtjy_jygg | 200 OK Content-Length: 32686 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=ssdq&xj=ssdq_zbgg | 200 OK Content-Length: 32761 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=csap&xj=csap_jrcs | 200 OK Content-Length: 32688 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=zlxz&xj=zlxz_zhdh | 200 OK Content-Length: 32963 Content-Type: text/html | clean |
http://qzggzy.com/yj.aspx?xm=bszn&xj=bszn_zhdh | 200 OK Content-Length: 33089 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=qzggzy.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://qzggzy.com/
Result: qzggzy.com is not infected or malware details are not published yet.
Result: qzggzy.com is not infected or malware details are not published yet.