Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wiki.xsqi.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 30 Apr 2014 14:03:28 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=EUC-JP
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: pukiwiki=6ct4v7bqumltcgsnmffh6gl4u7; path=/
GET / HTTP/1.1
Host: wiki.xsqi.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 30 Apr 2014 14:03:28 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=EUC-JP
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: pukiwiki=6ct4v7bqumltcgsnmffh6gl4u7; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: wiki.xsqi.net
Referer: http://www.google.com/search?q=wiki.xsqi.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wiki.xsqi.net
Referer: http://www.google.com/search?q=wiki.xsqi.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://wiki.xsqi.net/ | 200 OK Content-Length: 40203 Content-Type: text/html | clean |
http://wiki.xsqi.net/skin/default.js | 200 OK Content-Length: 8114 Content-Type: application/x-javascript | clean |
http://wiki.xsqi.net/skin/kanzaki.js | 200 OK Content-Length: 16546 Content-Type: application/x-javascript | clean |
http://wiki.xsqi.net/skin/treemenu.js | 200 OK Content-Length: 4523 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 22098 Content-Type: text/javascript | clean |
http://js1.nend.net/js/nendAdLoader.js | 200 OK Content-Length: 24074 Content-Type: application/x-javascript | clean |
http://www.assoc-amazon.jp/s/ads.js | 200 OK Content-Length: 238 Content-Type: text/javascript | clean |
http://wiki.xsqi.net/index.php?FrontPage | 200 OK Content-Length: 40203 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?cmd=list | 200 OK Content-Length: 17009 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?cmd=search | 200 OK Content-Length: 5667 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?RecentChanges | 200 OK Content-Length: 37775 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?cmd=help | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 30 Apr 2014 14:03:43 GMT Pragma: no-cache Location: http://wiki.xsqi.net/index.php?Help Server: Apache Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: pukiwiki=dqh5k1gh9qu9a6icok8t5ghmc5; path=/ | clean |
http://wiki.xsqi.net/index.php?help | 401 Unauthorized Content-Length: 5433 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?cmd=backup&page=help | 200 OK Content-Length: 5434 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?cmd=backup | 200 OK Content-Length: 14826 Content-Type: text/html | clean |
http://wiki.xsqi.net/index.php?cmd=backup&page=%3ARenameLog | 200 OK Content-Length: 7521 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wiki.xsqi.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wiki.xsqi.net/
Result: wiki.xsqi.net is not infected or malware details are not published yet.
Result: wiki.xsqi.net is not infected or malware details are not published yet.