Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xywx.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 18:13:43 GMT
Accept-Ranges: bytes
ETag: "1208033-734c-50366fc4cea80"
Server: Apache
Content-Length: 29516
Content-Type: text/html
Last-Modified: Fri, 19 Sep 2014 08:35:38 GMT
X-UA-Compatible: IE=EmulateIE7
...29516 bytes of data.
GET / HTTP/1.1
Host: xywx.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 18:13:43 GMT
Accept-Ranges: bytes
ETag: "1208033-734c-50366fc4cea80"
Server: Apache
Content-Length: 29516
Content-Type: text/html
Last-Modified: Fri, 19 Sep 2014 08:35:38 GMT
X-UA-Compatible: IE=EmulateIE7
...29516 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: xywx.org
Referer: http://www.google.com/search?q=xywx.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xywx.org
Referer: http://www.google.com/search?q=xywx.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://xywx.org/ | 200 OK Content-Length: 29516 Content-Type: text/html | clean |
http://xywx.org/include/dedeajax2.js | 200 OK Content-Length: 7947 Content-Type: application/javascript | clean |
http://xywx.org/images/js/j.js | 200 OK Content-Length: 31008 Content-Type: application/javascript | clean |
http://xywx.org/templets/default/js/pic_scroll.js | 200 OK Content-Length: 3751 Content-Type: application/javascript | clean |
http://xywx.org/data/vote/vote_1.js | 200 OK Content-Length: 1428 Content-Type: application/javascript | clean |
http://xywx.org/plus/heightsearch.php | 200 OK Content-Length: 6384 Content-Type: text/html | clean |
http://xywx.org/test404page.js | 404 Not Found Content-Length: 1529 Content-Type: text/html | clean |
http://xywx.org/data/sitemap.html | 404 Not Found Content-Length: 1529 Content-Type: text/html | clean |
http://xywx.org/tags.php | 200 OK Content-Length: 5391 Content-Type: text/html | clean |
http://xywx.org/data/rssmap.html | 404 Not Found Content-Length: 1529 Content-Type: text/html | clean |
http://xywx.org/a/zuixinzixun/2014/0326/6.html | 200 OK Content-Length: 26970 Content-Type: text/html | clean |
http://xywx.org/plus/count.php?view=yes&aid=6&mid=2 | 200 OK Content-Length: 24 Content-Type: text/html | clean |
http://xywx.org/include/ckeditor/ckeditor.js?t=B8DJ5M3 | 200 OK Content-Length: 300894 Content-Type: application/javascript | clean |
http://xywx.org/a/zuixinzixun/ | 200 OK Content-Length: 12405 Content-Type: text/html | clean |
http://xywx.org/a/xiaoyuandongtai/ | 200 OK Content-Length: 15249 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xywx.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xywx.org/
Result: xywx.org is not infected or malware details are not published yet.
Result: xywx.org is not infected or malware details are not published yet.