Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xhfcxx.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://xhfcxx.com/ | HTTP/1.1 200 OK Date: Sun, 11 Jan 2015 00:30:55 GMT Accept-Ranges: bytes ETag: "b4f9e57f88ad01:60ae" Server: Microsoft-IIS/6.0 Content-Length: 23981 Content-Location: http://xhfcxx.com/index.html Content-Type: text/html Last-Modified: Thu, 27 Nov 2014 21:24:17 GMT X-Powered-By: ASP.NET | clean |
http://xhfcxx.com/index.html | 200 OK Content-Length: 23981 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: zhongdekt.com ...[3317 bytes skipped]... ¢Î¢Æð·ü?" target="_blank">ÎÒËûÄïÀîåÐÒ£Ò»ÑÛÐØ¿Ú΢΢Æð·ü?</a></li></br> </ul> </dt> </dl> <dl class="widget link-list"> <dd><h3>ÓÑÇéÁ´½Ó</h3></dd> <dt> <ul> <a href="http://uniquebaby.com.cn" title="ÉϺ£³¬Î¢¿Æ¼¼ÓÐÏÞ¹«Ë¾">ÉϺ£³¬Î¢¿Æ¼¼ÓÐÏÞ¹«Ë¾</a> <a href="http://zhongdekt.com" title="µÂÖÝÖе¿յ÷¼¯ÍÅÓÐÏÞ¹«Ë¾">µÂÖÝÖе¿յ÷¼¯ÍÅÓÐÏÞ¹«Ë¾</a> <a href="http://jxgz888.cn" title="¹ãÖÝÊмáÏèóÒ×ÓÐÏÞ¹«Ë¾ÍøÕ¾">¹ãÖÝÊмáÏèóÒ×ÓÐÏÞ¹«Ë¾ÍøÕ¾</a> <a href="http://yanghuangwine.com" title="ÉϺ£ì¾»Í¾ÆÒµÓÐÏÞ¹«Ë¾">ÉϺ£ì¾»Í¾ÆÒµÓÐÏÞ¹«Ë¾</a> <a href="http://idojiayi.cn" title="°®¶¼¼ÞÒÂÉãÓ°¹¤×÷ÊÒ">°®¶¼¼ÞÒÂÉãÓ°¹¤×÷ÊÒ</a> </ul> </dt> </dl> </div> </div> </div& ...[1096 bytes skipped]... | ||
http://js.users.51.la/17468139.js | 200 OK Content-Length: 1931 Content-Type: application/x-javascript | clean |
http://js.17meiliba.com/zt.js | 200 OK Content-Length: 406 Content-Type: application/x-javascript | clean |
http://xhfcxx.com/tj.js | 200 OK Content-Length: 122 Content-Type: application/x-javascript | clean |
http://xhfcxx.com/la1m6/ | HTTP/1.1 200 OK Date: Sun, 11 Jan 2015 00:31:00 GMT Accept-Ranges: bytes ETag: "d81ca41ac2dbcf1:60ae" Server: Microsoft-IIS/6.0 Content-Length: 11662 Content-Location: http://xhfcxx.com/la1m6/index.html Content-Type: text/html Last-Modified: Mon, 29 Sep 2014 08:48:13 GMT X-Powered-By: ASP.NET | clean |
http://xhfcxx.com/la1m6/index.html | 200 OK Content-Length: 11662 Content-Type: text/html | clean |
http://xhfcxx.com/zeoke/ | HTTP/1.1 200 OK Date: Sun, 11 Jan 2015 00:31:01 GMT Accept-Ranges: bytes ETag: "8ce1a81ac2dbcf1:60ae" Server: Microsoft-IIS/6.0 Content-Length: 15019 Content-Location: http://xhfcxx.com/zeoke/index.html Content-Type: text/html Last-Modified: Mon, 29 Sep 2014 08:48:13 GMT X-Powered-By: ASP.NET | clean |
http://xhfcxx.com/zeoke/index.html | 200 OK Content-Length: 15019 Content-Type: text/html | clean |
http://xhfcxx.com/j4jwr/ | HTTP/1.1 200 OK Date: Sun, 11 Jan 2015 00:31:03 GMT Accept-Ranges: bytes ETag: "5cf4bb1ac2dbcf1:60ae" Server: Microsoft-IIS/6.0 Content-Length: 12930 Content-Location: http://xhfcxx.com/j4jwr/index.html Content-Type: text/html Last-Modified: Mon, 29 Sep 2014 08:48:13 GMT X-Powered-By: ASP.NET | clean |
http://xhfcxx.com/j4jwr/index.html | 200 OK Content-Length: 12930 Content-Type: text/html | clean |
http://xhfcxx.com/ow1u4/ | HTTP/1.1 200 OK Date: Sun, 11 Jan 2015 00:31:09 GMT Accept-Ranges: bytes ETag: "10b9c01ac2dbcf1:60ae" Server: Microsoft-IIS/6.0 Content-Length: 11950 Content-Location: http://xhfcxx.com/ow1u4/index.html Content-Type: text/html Last-Modified: Mon, 29 Sep 2014 08:48:13 GMT X-Died: timeout at scan.pm line 1566. X-Powered-By: ASP.NET | clean |
http://xhfcxx.com/ow1u4/index.html | 200 OK Content-Length: 11950 Content-Type: text/html | clean |
http://xhfcxx.com/ow1u4/h9q939.html | 200 OK Content-Length: 16897 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: yixuanhl.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-CN" lang="zh-CN"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312"> <title>ÈôÃÎ×ö°®Éú̬»·¾³»áÊܵ½ÎÛȾ¡£¹ãÎ÷Ò»¼Ò¿Æ¼¼¹«Ë¾Ñз¢µÄèñÊ÷¸ß²ú¸ßЧÖÇÄÜÊ©·Ê¾ö²ßϵͳÌìÁú°ïÖªµÀÖÜͬÉ˲»µêÀï._ÏãºÓ·¿²úÂÛ̳</title&g ...[4660 bytes skipped]... | ||
http://xhfcxx.com/ow1u4/68446.html | 200 OK Content-Length: 20192 Content-Type: text/html | clean |
http://xhfcxx.com/zeoke/q1n46.html | 200 OK Content-Length: 15309 Content-Type: text/html | clean |
http://xhfcxx.com/la1m6/bql711.html | 200 OK Content-Length: 15010 Content-Type: text/html | clean |
http://xhfcxx.com/la1m6/{longshao_url} | HTTP/1.1 200 OK Date: Sun, 11 Jan 2015 00:31:14 GMT Accept-Ranges: bytes ETag: "62b68b72ddd5cf1:60ae" Server: Microsoft-IIS/6.0 Content-Length: 1509 Content-Location: http://xhfcxx.com/404.html?404;http://xhfcxx.com:80/la1m6/{longshao_url} Content-Type: text/html Last-Modified: Sun, 21 Sep 2014 20:48:50 GMT X-Powered-By: ASP.NET | clean |
http://xhfcxx.com/404.html?404;http://xhfcxx.com:80/la1m6/{longshao_url} | 200 OK Content-Length: 1509 Content-Type: text/html | clean |
http://xhfcxx.com/common.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.qq.com/404/search_children.js | 200 OK Content-Length: 295 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xhfcxx.com
Result:
HTTP/1.1 200 OK
Date: Sun, 11 Jan 2015 00:30:55 GMT
Accept-Ranges: bytes
ETag: "b4f9e57f88ad01:60ae"
Server: Microsoft-IIS/6.0
Content-Length: 23981
Content-Location: http://xhfcxx.com/index.html
Content-Type: text/html
Last-Modified: Thu, 27 Nov 2014 21:24:17 GMT
X-Powered-By: ASP.NET
...23981 bytes of data.
GET / HTTP/1.1
Host: xhfcxx.com
Result:
HTTP/1.1 200 OK
Date: Sun, 11 Jan 2015 00:30:55 GMT
Accept-Ranges: bytes
ETag: "b4f9e57f88ad01:60ae"
Server: Microsoft-IIS/6.0
Content-Length: 23981
Content-Location: http://xhfcxx.com/index.html
Content-Type: text/html
Last-Modified: Thu, 27 Nov 2014 21:24:17 GMT
X-Powered-By: ASP.NET
...23981 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: xhfcxx.com
Referer: http://www.google.com/search?q=xhfcxx.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xhfcxx.com
Referer: http://www.google.com/search?q=xhfcxx.com
Result:
The result is similar to the first query. There are no suspicious redirects found.