New scan:

Malware Scanner report for xganjue.com

Malicious/Suspicious/Total urls checked
2/7/27
9 pages have malicious or suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "xganjue.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
2/0/2
2 malicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=xganjue.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://www.xganjue.com/
200 OK
Content-Length: 33492
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.265com.net


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link href="images/style2.css" rel="stylesheet" type="text/css">
<META NAME="keywords"·¨¹úиоõìî°ß˪רÂô£¬Ð¸оõìî°ß˪¼Û¸ñ£¬Ð¸оõìî°ß˪Ч¹û">
<meta name="description" content="·¨¹úиоõ
...[4566 bytes skipped]...

Malicious iFrame found.
size: 100x100     
src: http://www.265com.net/selladmin/dgjl_l.asp
This URL is marked by Google as suspicious

<iframe src="http://www.265com.net/selladmin/dgjl_l.asp" width="100%" height="100%" frameborder="0" scrolling="no">

http://www.xganjue.com/cpzs/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:16 GMT
Accept-Ranges: bytes
ETag: "6ac1c8efab8cf1:2d98b"
Server: IIS
Content-Length: 21510
Content-Location: http://www.xganjue.com/cpzs/index.html
Content-Type: text/html
Last-Modified: Sat, 16 Aug 2014 02:30:34 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/test404page.js
404 Not Found
Content-Length: 83
Content-Type: text/html
clean
http://www.xganjue.com/mrcs/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:19 GMT
Accept-Ranges: bytes
ETag: "265743d1fb7acd1:2d98b"
Server: IIS
Content-Length: 13793
Content-Location: http://www.xganjue.com/mrcs/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:02 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/cgal/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:20 GMT
Accept-Ranges: bytes
ETag: "2420ebd0fb7acd1:2d98b"
Server: IIS
Content-Length: 22524
Content-Location: http://www.xganjue.com/cgal/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:02 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/qbcs/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:22 GMT
Accept-Ranges: bytes
ETag: "f0f17ed1fb7acd1:2d98b"
Server: IIS
Content-Length: 13664
Content-Location: http://www.xganjue.com/qbcs/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:03 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/hzwd/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:24 GMT
Accept-Ranges: bytes
ETag: "f432fed0fb7acd1:2d98b"
Server: IIS
Content-Length: 19396
Content-Location: http://www.xganjue.com/hzwd/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:02 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/jfss/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:25 GMT
Accept-Ranges: bytes
ETag: "dc52a0d1fb7acd1:2d98b"
Server: IIS
Content-Length: 13723
Content-Location: http://www.xganjue.com/jfss/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:03 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/ppjs/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:27 GMT
Accept-Ranges: bytes
ETag: "c44511d1fb7acd1:2d98b"
Server: IIS
Content-Length: 19199
Content-Location: http://www.xganjue.com/ppjs/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:02 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/mfkt/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:29 GMT
Accept-Ranges: bytes
ETag: "3e64d2d1fb7acd1:2d98b"
Server: IIS
Content-Length: 12187
Content-Location: http://www.xganjue.com/mfkt/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:03 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/lxwm/index.html
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:30 GMT
Accept-Ranges: bytes
ETag: "e0931fd1fb7acd1:2d98b"
Server: IIS
Content-Length: 16498
Content-Location: http://www.xganjue.com/lxwm/index.html
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:37:02 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/index.asp
200 OK
Content-Length: 33492
Content-Type: text/html
malicious
Page code contains blacklisted domain: www.265com.net


<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link href="images/style2.css" rel="stylesheet" type="text/css">
<META NAME="keywords"·¨¹úиоõìî°ß˪רÂô£¬Ð¸оõìî°ß˪¼Û¸ñ£¬Ð¸оõìî°ß˪Ч¹û">
<meta name="description" content="·¨¹úиоõ
...[4566 bytes skipped]...

Malicious iFrame found.
size: 100x100     
src: http://www.265com.net/selladmin/dgjl_l.asp
This URL is marked by Google as suspicious

<iframe src="http://www.265com.net/selladmin/dgjl_l.asp" width="100%" height="100%" frameborder="0" scrolling="no">

http://www.xganjue.com/inc/input2.asp?cp=£¨·¨¹úиоõìî°ß˪ºÍÏ´ÃæÄÌ£©1Ì×&num=1
200 OK
Content-Length: 6828
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.265com.net

...[1803 bytes skipped]...
[a-zA-Z0-9_-]{2,3}){1,2})$/;
var flag = reg.test(document.form1.email.value);
if(!flag){
errors+='- '+'ÄúÊäÈëµÄEmailµØÖ·ÓÐÎó£¬Çë¼ì²é¡£\n\n';
}}
if(document.form1.address.value==""){
errors+='- '+'ÇëÌîдÄúµÄÏêϸµØÖ·¡£\n\n';
alert(errors);
return false;
}
}
</script>


</head>
<body>
<form ACTION="http://www.265com.net/selladmin/saveinput.asp" METHOD="POST" name="form1" onSubmit="return checkForm();">
<table width="800" border="0"v></td>
<td colspan="3"><textarea name="remark" cols="51" rows="3" id="remark"></textarea></td>
</tr>
<tr bgcolor="#FFFFFF">
<td width="19%"><div align="right"> <!--ÑéÖ¤Â룺--></div></td>
<td
...[2180 bytes skipped]...

http://www.xganjue.com/inc/pccs.js
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:35 GMT
Accept-Ranges: bytes
ETag: "88e47088fa7acd1:2d98b"
Server: IIS
Content-Length: 58588
Content-Location: http://www.xganjue.com/inc/pccs.js
Content-Type: application/x-javascript
Last-Modified: Wed, 15 Aug 2012 15:27:51 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/inc/input2.asp?cp=£¨·¨¹úиоõìî°ß˪ºÍÏ´ÃæÄÌ£©2Ì×&num=1
200 OK
Content-Length: 6828
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.265com.net

...[1803 bytes skipped]...
[a-zA-Z0-9_-]{2,3}){1,2})$/;
var flag = reg.test(document.form1.email.value);
if(!flag){
errors+='- '+'ÄúÊäÈëµÄEmailµØÖ·ÓÐÎó£¬Çë¼ì²é¡£\n\n';
}}
if(document.form1.address.value==""){
errors+='- '+'ÇëÌîдÄúµÄÏêϸµØÖ·¡£\n\n';
alert(errors);
return false;
}
}
</script>


</head>
<body>
<form ACTION="http://www.265com.net/selladmin/saveinput.asp" METHOD="POST" name="form1" onSubmit="return checkForm();">
<table width="800" border="0"v></td>
<td colspan="3"><textarea name="remark" cols="51" rows="3" id="remark"></textarea></td>
</tr>
<tr bgcolor="#FFFFFF">
<td width="19%"><div align="right"> <!--ÑéÖ¤Â룺--></div></td>
<td
...[2180 bytes skipped]...

http://www.xganjue.com/inc/hdfk.htm
HTTP/1.1 200 OK
Date: Fri, 05 Sep 2014 10:52:39 GMT
Accept-Ranges: bytes
ETag: "9093a088fa7acd1:2d98b"
Server: IIS
Content-Length: 2374
Content-Location: http://www.xganjue.com/inc/hdfk.htm
Content-Type: text/html
Last-Modified: Wed, 15 Aug 2012 15:27:51 GMT
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/inc/input2.asp?cp=£¨·¨¹úиоõìî°ß˪ºÍÏ´ÃæÄÌ£©3Ì×&num=1
200 OK
Content-Length: 6828
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.265com.net

...[1803 bytes skipped]...
[a-zA-Z0-9_-]{2,3}){1,2})$/;
var flag = reg.test(document.form1.email.value);
if(!flag){
errors+='- '+'ÄúÊäÈëµÄEmailµØÖ·ÓÐÎó£¬Çë¼ì²é¡£\n\n';
}}
if(document.form1.address.value==""){
errors+='- '+'ÇëÌîдÄúµÄÏêϸµØÖ·¡£\n\n';
alert(errors);
return false;
}
}
</script>


</head>
<body>
<form ACTION="http://www.265com.net/selladmin/saveinput.asp" METHOD="POST" name="form1" onSubmit="return checkForm();">
<table width="800" border="0"v></td>
<td colspan="3"><textarea name="remark" cols="51" rows="3" id="remark"></textarea></td>
</tr>
<tr bgcolor="#FFFFFF">
<td width="19%"><div align="right"> <!--ÑéÖ¤Â룺--></div></td>
<td
...[2180 bytes skipped]...

http://www.xganjue.com/book.asp
200 OK
Content-Length: 33775
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.qiqinx.com

...[3217 bytes skipped]...
"_blank">³Ý°×½ð</a>&nbsp;&nbsp;<a href="http://www.aiyaba.com/" target="_blank">ÑÀ°×½ð</a>&nbsp;&nbsp;<a href="http://www.jiyin01.com/" target="_blank">Èý¾Å»ùÒðÒ¼ºÅ</a>&nbsp;&nbsp;<a href="http://www.ysd8.com" target="_blank">ÓùÊ浤</a>&nbsp;&nbsp;<a href="http://www.qiqisc.com/" target="_blank">Ê«±ÌÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.qiqinx.com/" target="_blank">Þ±æÃÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.yangchaow.com/" target="_blank">Ò»ÔªÌó²Ö®°²</a>&nbsp;&nbsp;<a href=" http://www.blth8.com/ " target="_blank">Àöһ͡°×Àï͸ºììî°ß˪</a>&nbsp;&nbsp;<a href="http://www.xixibai.com/ " target="_blank">º«¹úÏ´Ï´°×</a>&nbsp;&nbsp;<a href="http://www.dfskmd.com/" target="_blank">¿µÃÀµ¤</a>&nbsp;&nbsp;<a href="http://www.hot
...[902 bytes skipped]...

http://www.xganjue.com/book1.asp
200 OK
Content-Length: 10642
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.qiqinx.com

...[3217 bytes skipped]...
"_blank">³Ý°×½ð</a>&nbsp;&nbsp;<a href="http://www.aiyaba.com/" target="_blank">ÑÀ°×½ð</a>&nbsp;&nbsp;<a href="http://www.jiyin01.com/" target="_blank">Èý¾Å»ùÒðÒ¼ºÅ</a>&nbsp;&nbsp;<a href="http://www.ysd8.com" target="_blank">ÓùÊ浤</a>&nbsp;&nbsp;<a href="http://www.qiqisc.com/" target="_blank">Ê«±ÌÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.qiqinx.com/" target="_blank">Þ±æÃÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.yangchaow.com/" target="_blank">Ò»ÔªÌó²Ö®°²</a>&nbsp;&nbsp;<a href=" http://www.blth8.com/ " target="_blank">Àöһ͡°×Àï͸ºììî°ß˪</a>&nbsp;&nbsp;<a href="http://www.xixibai.com/ " target="_blank">º«¹úÏ´Ï´°×</a>&nbsp;&nbsp;<a href="http://www.dfskmd.com/" target="_blank">¿µÃÀµ¤</a>&nbsp;&nbsp;<a href="http://www.hot
...[902 bytes skipped]...

http://www.xganjue.com/ http://www.blth8.com/
404 Not Found
Content-Length: 83
Content-Type: text/html
clean
http://www.xganjue.com/admin/list1.asp
HTTP/1.1 302 Object moved
Cache-Control: private
Date: Fri, 05 Sep 2014 10:52:47 GMT
Location: login.asp
Server: IIS
Content-Length: 130
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQQRCQASQ=GFOJILLAPPHEPAPLOGMNILLG; path=/
X-Powered-By: WAF/2.0
clean
http://www.xganjue.com/admin/login.asp
200 OK
Content-Length: 1504
Content-Type: text/html
clean
http://www.xganjue.com/admin/../index.html
404 Not Found
Content-Length: 83
Content-Type: text/html
clean
http://www.xganjue.com/ÉîÛÚ
500 Internal Server Error
Content-Length: 77
Content-Type: text/html
clean
http://www.xganjue.com/280710588@qq.com
404 Not Found
Content-Length: 83
Content-Type: text/html
clean
http://www.xganjue.com/book.asp?page=1
200 OK
Content-Length: 33775
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.qiqinx.com

...[3217 bytes skipped]...
"_blank">³Ý°×½ð</a>&nbsp;&nbsp;<a href="http://www.aiyaba.com/" target="_blank">ÑÀ°×½ð</a>&nbsp;&nbsp;<a href="http://www.jiyin01.com/" target="_blank">Èý¾Å»ùÒðÒ¼ºÅ</a>&nbsp;&nbsp;<a href="http://www.ysd8.com" target="_blank">ÓùÊ浤</a>&nbsp;&nbsp;<a href="http://www.qiqisc.com/" target="_blank">Ê«±ÌÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.qiqinx.com/" target="_blank">Þ±æÃÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.yangchaow.com/" target="_blank">Ò»ÔªÌó²Ö®°²</a>&nbsp;&nbsp;<a href=" http://www.blth8.com/ " target="_blank">Àöһ͡°×Àï͸ºììî°ß˪</a>&nbsp;&nbsp;<a href="http://www.xixibai.com/ " target="_blank">º«¹úÏ´Ï´°×</a>&nbsp;&nbsp;<a href="http://www.dfskmd.com/" target="_blank">¿µÃÀµ¤</a>&nbsp;&nbsp;<a href="http://www.hot
...[902 bytes skipped]...

http://www.xganjue.com/book.asp?page=2
200 OK
Content-Length: 17440
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.qiqinx.com

...[3217 bytes skipped]...
"_blank">³Ý°×½ð</a>&nbsp;&nbsp;<a href="http://www.aiyaba.com/" target="_blank">ÑÀ°×½ð</a>&nbsp;&nbsp;<a href="http://www.jiyin01.com/" target="_blank">Èý¾Å»ùÒðÒ¼ºÅ</a>&nbsp;&nbsp;<a href="http://www.ysd8.com" target="_blank">ÓùÊ浤</a>&nbsp;&nbsp;<a href="http://www.qiqisc.com/" target="_blank">Ê«±ÌÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.qiqinx.com/" target="_blank">Þ±æÃÍÑë¸à</a>&nbsp;&nbsp;<a href="http://www.yangchaow.com/" target="_blank">Ò»ÔªÌó²Ö®°²</a>&nbsp;&nbsp;<a href=" http://www.blth8.com/ " target="_blank">Àöһ͡°×Àï͸ºììî°ß˪</a>&nbsp;&nbsp;<a href="http://www.xixibai.com/ " target="_blank">º«¹úÏ´Ï´°×</a>&nbsp;&nbsp;<a href="http://www.dfskmd.com/" target="_blank">¿µÃÀµ¤</a>&nbsp;&nbsp;<a href="http://www.hot
...[902 bytes skipped]...


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: xganjue.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: xganjue.com
Referer: http://www.google.com/search?q=xganjue.com

Result:
The result is similar to the first query. There are no suspicious redirects found.