Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.xin8.org/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.xin8.org Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 02 Sep 2014 16:19:33 GMT Via: 1.0 WT263CDN-11152 (squid/3.0.STABLE20) Location: http://www.caribsoft-online.biz/templates/rhuk_solarflare_ii/images/index.php Server: Apache/2.2.22 (@RELEASE@) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html X-Cache: MISS from WT263CDN-11152 X-Cache-Lookup: MISS from WT263CDN-11152:80 X-Powered-By: PHP/5.2.17p1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.xin8.org/ | 200 OK Content-Length: 35270 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x120 src: http://widget.weibo.com/weiboshow/index.php?language=&width=0&height=120&fansrow=2&ptype=1&speed=0&skin=1&istitle=1&noborder=1&isweibo=0&isfans=0&uid=1569681624&verifier=64bf2e00&dpc=1 <iframe src="http://widget.weibo.com/weiboshow/index.php?language=&width=0&height=120&fansrow=2&ptype=1&speed=0&skin=1&istitle=1&noborder=1&isweibo=0&isfans=0&uid=1569681624&verifier=64bf2e00&dpc=1" width="100%" height="120" frameborder="0" scrolling="no"> | ||
http://www.xin8.org/cache/js-d41d8cd98f00b204e9800998ecf8427e.php | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.xin8.org/index.php?jat3action=gzip&jat3type=js&jat3file=t3-assets%2Fjs443de.js | 200 OK Content-Length: 300530 Content-Type: text/javascript | clean |
http://v3.jiathis.com/code/jia.js | 200 OK Content-Length: 24121 Content-Type: application/x-javascript | clean |
http://chatserver.comm100.cn/js/LiveChat.js?siteId=80028777&planId=1117&partnerId=-1 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://chatserver.comm100.cn/test404page.js | 404 Not Found Content-Length: 1163 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xin8.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xin8.org/
Result: xin8.org is not infected or malware details are not published yet.
Result: xin8.org is not infected or malware details are not published yet.