Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dfcaijing.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.dfcaijing.com/ | 200 OK Content-Length: 54504 Content-Type: text/html | clean |
http://www.dfcaijing.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/plugins/wp-polls/polls-js.js?ver=2.67 | 200 OK Content-Length: 2994 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/jquery.fancybox.pack.js | 200 OK Content-Length: 21971 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/jquery.fancybox-buttons.js | 200 OK Content-Length: 3004 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/form.min.js | 200 OK Content-Length: 20142 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/jquery.slide.js | 200 OK Content-Length: 9381 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/index.js | 200 OK Content-Length: 12403 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/wp-content/themes/QQOQ2.1/js/jquery.nicescroll.min.js | 200 OK Content-Length: 56878 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/?page_id=6 | 200 OK Content-Length: 13409 Content-Type: text/html | clean |
http://www.dfcaijing.com/?qqoq=qqlogin&r=http://dfcaijing.com/?page_id=6 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 05 Mar 2015 00:07:37 GMT Pragma: no-cache Location: https://graph.qq.com/oauth2.0/authorize?response_type=code&client_id=101114174&redirect_uri=http%3A%2F%2Fwww.dfcaijing.com%2F%3Fqqoq%3Dqqcallback&state=6aca57a0be5110ba46f49fdec4d0747d&scope=get_user_info,add_share,list_album,add_album,upload_pic,add_topic,add_one_blog,add_weibo Server: nginx Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=g7s3b936jdub1j193ak6srtpgfkil2vc; path=/; HttpOnly | clean |
https://graph.qq.com/oauth2.0/authorize?response_type=code&client_id=101114174&redirect_uri=http%3a%2f%2fwww.dfcaijing.com%2f%3fqqoq%3dqqcallback&state=6aca57a0be5110ba46f49fdec4d0747d&scope=get_user_info,add_share,list_album,add_album,upload_pic,add_topic,add_one_blog,add_weibo | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 05 Mar 2015 00:07:39 GMT Location: http://openapi.qzone.qq.com/oauth/show?which=Login&display=pc&response_type=code&client_id=101114174&redirect_uri=http%3a%2f%2fwww.dfcaijing.com%2f%3fqqoq%3dqqcallback&state=6aca57a0be5110ba46f49fdec4d0747d&scope=get_user_info,add_share,list_album,add_album,upload_pic,add_topic,add_one_blog,add_weibo Server: tws Content-Length: 0 Content-Type: text/html | clean |
http://openapi.qzone.qq.com/oauth/show?which=login&display=pc&response_type=code&client_id=101114174&redirect_uri=http%3a%2f%2fwww.dfcaijing.com%2f%3fqqoq%3dqqcallback&state=6aca57a0be5110ba46f49fdec4d0747d&scope=get_user_info,add_share,list_album,add_album,upload_pic,add_topic,add_one_blog,add_weibo | 200 OK Content-Length: 7476 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.dfcaijing.com ...[1850 bytes skipped]... or.userAgent].join("|_|")); var src = 'http://badjs.qq.com/cgi-bin/js_report?'+ [bid,mid,msg].join("&"); errorTransport = new Image; errorTransport.onerror = errorTransport.onload = function(){ errorTransport = errorTransport.onerror = errorTransport.onload = null ; }; errorTransport.src = src; se; Q.crtDomain = 'http://www.dfcaijing.com'; Q.agree = function(){ window.isAgreed = true; }; Q.logout = function(){ window.isLogouted = true; }; Q.isNeedLogin = true; Q.getParameter = function getParameter(name) { var r = new RegExp("(\\?|#|&)" + name + "=([^&#]*)(&|#|$)"), m = location.href.match(r); return decodeURIComponent(!m ? "" : m[2]); }; Q.ptlogin2 = function(){ ...[1781 bytes skipped]... | ||
http://qzonestyle.gtimg.cn/c/=/open/connect/widget/pc/login/pt_adapt.js,qlogin_v2.js?v=20140527 | 200 OK Content-Length: 24403 Content-Type: application/x-javascript | clean |
http://www.dfcaijing.com/test404page.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dfcaijing.com
Result:
GET / HTTP/1.1
Host: dfcaijing.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: dfcaijing.com
Referer: http://www.google.com/search?q=dfcaijing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dfcaijing.com
Referer: http://www.google.com/search?q=dfcaijing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.