Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hainanwf.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://hainanwf.com/ | 200 OK Content-Length: 28519 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.0898rmth.com ...[24513 bytes skipped]... =archive&act=search&keyword=-E4-BA-A7-E5-93-81&ule=1">产å</a> <a href="/index.php?case=archive&act=search&keyword=-E4-BB-B7-E6-A0-BC-0D-0Aatestu-3A+atestu&ule=1">ä»·æ ¼ atestu: atestu</a> <div class="blank10"></div> <strong>åæ é¾æ¥ï¼</strong> <a href='http://www.hainanwf.com' target='_blank'>æµ·å红æ¨å®¶å ·</a> <a href='http://www.0898rmth.com/' target='_blank'>æµ·å软è天è±</a> <a href='http://www.hkyerun.com/' target='_blank'>椰壳æ¿</a> <a href='http://www.cncyzm.com/' target='_blank'>太é³è½è·¯ç¯</a> <a href='http://www.cncyzm.com/' target='_blank'>è·¯ç¯</a> <div class="blank10"></div> <div class="clear"></div> </div> <!--bdé¨ç»æ--> <div id="footer"> <div class="footer_left ...[9526 bytes skipped]... | ||
http://s22.cnzz.com/stat.php?id=3259552&web_id=3259552 | 200 OK Content-Length: 9621 Content-Type: application/javascript | clean |
http://www.hainanwf.com/celive/js/include.php?cmseasylive&text | 200 OK Content-Length: 3215 Content-Type: text/html | clean |
http://www.hainanwf.com/celive/js/\"javascript:void(0)\" | 200 OK Content-Length: 3169 Content-Type: text/html | clean |
http://www.hainanwf.com/celive/js/ | 200 OK Content-Length: 3169 Content-Type: text/html | clean |
http://www.hainanwf.com/test404page.js | 200 OK Content-Length: 3169 Content-Type: text/html | clean |
http://www.hainanwf.com/ | 200 OK Content-Length: 28519 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.0898rmth.com ...[24513 bytes skipped]... =archive&act=search&keyword=-E4-BA-A7-E5-93-81&ule=1">产å</a> <a href="/index.php?case=archive&act=search&keyword=-E4-BB-B7-E6-A0-BC-0D-0Aatestu-3A+atestu&ule=1">ä»·æ ¼ atestu: atestu</a> <div class="blank10"></div> <strong>åæ é¾æ¥ï¼</strong> <a href='http://www.hainanwf.com' target='_blank'>æµ·å红æ¨å®¶å ·</a> <a href='http://www.0898rmth.com/' target='_blank'>æµ·å软è天è±</a> <a href='http://www.hkyerun.com/' target='_blank'>椰壳æ¿</a> <a href='http://www.cncyzm.com/' target='_blank'>太é³è½è·¯ç¯</a> <a href='http://www.cncyzm.com/' target='_blank'>è·¯ç¯</a> <div class="blank10"></div> <div class="clear"></div> </div> <!--bdé¨ç»æ--> <div id="footer"> <div class="footer_left ...[9526 bytes skipped]... | ||
http://www.hainanwf.com/index.php?case=archive&act=list&catid=1 | 200 OK Content-Length: 23607 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=2 | 200 OK Content-Length: 28769 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=15 | 200 OK Content-Length: 22365 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=16 | 200 OK Content-Length: 29042 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=3 | 200 OK Content-Length: 30493 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=14 | 200 OK Content-Length: 23993 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=13 | 200 OK Content-Length: 24387 Content-Type: text/html | clean |
http://www.hainanwf.com/index.php?case=archive&act=list&catid=11 | 200 OK Content-Length: 23352 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hainanwf.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 02 Jun 2014 12:46:20 GMT
Pragma: no-cache
Server: IIS
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=7rkn0duo3rk0bm6vp7ojpapic0; path=/
Set-Cookie: passinfo=%E5%85%8D%E8%B4%B9%E7%89%88+%3Ca+href%3D%22http%3A%2F%2Fwww.cmseasy.cn%2Fservice_1.html%22+target%3D%22_blank%22%3E%3Cfont+color%3D%22green%22%3E%28%E8%B4%AD%E4%B9%B0%E6%8E%88%E6%9D%83%29%3C%2Ffont%3E%3C%2Fa%3E; path=/
Set-Cookie: passinfo=%E5%85%8D%E8%B4%B9%E7%89%88+%3Ca+href%3D%22http%3A%2F%2Fwww.cmseasy.cn%2Fservice_1.html%22+target%3D%22_blank%22%3E%3Cfont+color%3D%22green%22%3E%28%E8%B4%AD%E4%B9%B0%E6%8E%88%E6%9D%83%29%3C%2Ffont%3E%3C%2Fa%3E; path=/
X-Powered-By: WAF/2.0
X-Powered-By: WAF/2.0
GET / HTTP/1.1
Host: hainanwf.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 02 Jun 2014 12:46:20 GMT
Pragma: no-cache
Server: IIS
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=7rkn0duo3rk0bm6vp7ojpapic0; path=/
Set-Cookie: passinfo=%E5%85%8D%E8%B4%B9%E7%89%88+%3Ca+href%3D%22http%3A%2F%2Fwww.cmseasy.cn%2Fservice_1.html%22+target%3D%22_blank%22%3E%3Cfont+color%3D%22green%22%3E%28%E8%B4%AD%E4%B9%B0%E6%8E%88%E6%9D%83%29%3C%2Ffont%3E%3C%2Fa%3E; path=/
Set-Cookie: passinfo=%E5%85%8D%E8%B4%B9%E7%89%88+%3Ca+href%3D%22http%3A%2F%2Fwww.cmseasy.cn%2Fservice_1.html%22+target%3D%22_blank%22%3E%3Cfont+color%3D%22green%22%3E%28%E8%B4%AD%E4%B9%B0%E6%8E%88%E6%9D%83%29%3C%2Ffont%3E%3C%2Fa%3E; path=/
X-Powered-By: WAF/2.0
X-Powered-By: WAF/2.0
Second query (visit from search engine):
GET / HTTP/1.1
Host: hainanwf.com
Referer: http://www.google.com/search?q=hainanwf.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hainanwf.com
Referer: http://www.google.com/search?q=hainanwf.com
Result:
The result is similar to the first query. There are no suspicious redirects found.