Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xyfoodn.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 05 Oct 2014 20:29:29 GMT
Server: Microsoft-IIS/6.0
Content-Length: 10255
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...10255 bytes of data.
GET / HTTP/1.1
Host: xyfoodn.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 05 Oct 2014 20:29:29 GMT
Server: Microsoft-IIS/6.0
Content-Length: 10255
Content-Type: text/html; charset=utf-8
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...10255 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: xyfoodn.com
Referer: http://www.google.com/search?q=xyfoodn.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xyfoodn.com
Referer: http://www.google.com/search?q=xyfoodn.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://xyfoodn.com/ | 200 OK Content-Length: 10255 Content-Type: text/html | clean |
http://xyfoodn.com/scripts/jquery.min.js | 200 OK Content-Length: 71807 Content-Type: application/x-javascript | clean |
http://xyfoodn.com/flash.js | 200 OK Content-Length: 871 Content-Type: application/x-javascript | clean |
http://xyfoodn.com/scripts/MSClass.js | 200 OK Content-Length: 6902 Content-Type: application/x-javascript | clean |
http://wpa.b.qq.com/cgi/wpa.php?key=XzkzODAzNDIzOV8xMzYwNF80MDAwMDU3OTU3Xw | 200 OK Content-Length: 11425 Content-Type: text/javascript | clean |
http://static.b.qq.com/account/bizqq/js/wpa.js?wty=1&type=10&kfuin=4000057957&ws=http%3A%2F%2F&title=%E5%9C%A8%E7%BA%BF%E5%AE%A2%E6%9C%8D&btn1=%E4%BC%81%E4%B8%9AQQ%E4%BA%A4%E8%B0%88&fsty=0&fposX=2&fposY=0&csty=1&tx=1&aty=0&a=&key=%00i%0C%3DXmQd%08%3CU6%025R2U0Wd%0E7U%3BRa%00nW1V7%0Eg%074V%60%00%3C | 200 OK Content-Length: 134915 Content-Type: application/x-javascript | clean |
http://xyfoodn.com/index.aspx | 200 OK Content-Length: 10255 Content-Type: text/html | clean |
http://xyfoodn.com/about.aspx | 200 OK Content-Length: 6667 Content-Type: text/html | clean |
http://xyfoodn.com/active.aspx | 200 OK Content-Length: 6602 Content-Type: text/html | clean |
http://xyfoodn.com/brand.aspx | 200 OK Content-Length: 7928 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21308 Content-Type: text/javascript | clean |
http://xyfoodn.com/consulting.aspx | 200 OK Content-Length: 11561 Content-Type: text/html | clean |
http://xyfoodn.com/career.aspx | 200 OK Content-Length: 8819 Content-Type: text/html | clean |
http://xyfoodn.com/xin_info.aspx?mid=57 | 200 OK Content-Length: 5767 Content-Type: text/html | clean |
http://xyfoodn.com/xin_info.aspx?mid=58 | 200 OK Content-Length: 5796 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xyfoodn.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xyfoodn.com/
Result: xyfoodn.com is not infected or malware details are not published yet.
Result: xyfoodn.com is not infected or malware details are not published yet.