What is the security status of 99cfw.com?

99cfw.com has a security score of 54/100, rated as Moderate Risk. The website may have security concerns that should be addressed.

Is 99cfw.com safe to use?

Our security scan shows 99cfw.com is Moderate Risk. SSL security issues detected. Always practice safe browsing habits.

Does 99cfw.com have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 54/100, the website is rated as Moderate Risk. However, websites can change over time, so always use updated security software.

What is 99cfw.com's trust score?

99cfw.com has a security score of 54/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is 99cfw.com Safe? Security Analysis for 久久厂房网

https://99cfw.com

Check if 99cfw.com is a scam or legitimate. Free security scan and reviews.

Real EstateChinamedium

jQuery 1.12.4jQuery.cookieJavaScriptCSSHTML5

Analyzed 8/4/2025Completed 12:28:00 PM

Security Score

MEDIUM RISK

AI Summary

久久厂房网 is a Chinese industrial real estate platform specializing in providing nationwide listings for factory rentals, warehouse rentals, industrial parks, and land for lease or sale. The website targets businesses and individuals seeking industrial properties across multiple cities in China, positioning itself as a professional and comprehensive information platform in the industrial real estate sector. The platform offers free listing services and extensive city-specific subdomains to facilitate user navigation and property discovery. Technically, the website employs a traditional web stack with jQuery 1.12.4, JavaScript, and CSS, and is served over HTTPS ensuring encrypted communication. However, the use of an outdated jQuery version and absence of modern security headers indicate areas for improvement in security posture. The website integrates Baidu Analytics and third-party tracking scripts for user behavior analysis but lacks visible cookie consent mechanisms, which may impact privacy compliance. Security-wise, the site benefits from HTTPS and secure cookie flags but lacks advanced security headers and updated libraries, which could expose it to vulnerabilities. The absence of WHOIS data and domain registration details raises concerns about domain legitimacy and transparency, although the website content and branding appear consistent and professional. Overall, the site is functional and relevant for its target audience but would benefit from enhanced security measures and improved privacy compliance to strengthen trust and resilience.

Detected Technologies

jQuery 1.12.4jQuery.cookieJavaScriptCSSHTML5

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

The business operates as an important entity within the Real Estate sector, focusing on industrial properties such as factories, warehouses, and land. Its business model revolves around providing a platform for listing and connecting property owners with potential renters or buyers. The extensive city coverage and free listing service suggest a broad target market including SMEs and large enterprises seeking industrial spaces. The platform's longevity since 2006 indicates market experience, though the lack of WHOIS transparency may affect perceived credibility. The website's partnerships with multiple regional real estate and logistics sites enhance its ecosystem and market reach. Revenue streams likely include advertising, premium listings, or lead generation services. The platform's competitive advantage lies in its specialization and comprehensive geographic coverage. Strategic observations include the need to modernize technical infrastructure and improve compliance to maintain competitive positioning.

Security Posture Analysis

Comprehensive Security Assessment

The website demonstrates a moderate security maturity level with HTTPS enforced and secure cookie flags set, which are fundamental security practices. However, the use of an outdated jQuery library version 1.12.4 introduces potential vulnerabilities that could be exploited. The absence of critical security headers such as Content-Security-Policy, X-Frame-Options, and Strict-Transport-Security reduces defense-in-depth capabilities. No explicit security or incident response policies are published, and no dedicated security contact channels are visible, indicating limited incident response readiness. Privacy compliance is basic, lacking cookie consent mechanisms and GDPR indicators, which may expose the business to regulatory risks. Overall, while basic security hygiene is observed, significant improvements are needed to elevate the security posture to industry best practices and regulatory compliance standards.

Strategic Recommendations

Priority Actions for Security Improvement

Update all JavaScript libraries, especially jQuery, to the latest stable versions to mitigate known vulnerabilities.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

久久厂房网

Description:

久久厂房网提供全国性厂房出租、仓库出租、园区厂房、园区仓库、厂房/仓库/土地/出租出售等信息。哪里找厂房仓库，请到专业的工业地产信息平台久久厂房网。

Key Services:

厂房出租仓库出租园区厂房园区仓库土地出租出售信息发布服务

Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:

jQuery 1.12.4jQuery.cookieJavaScriptCSSHTML5

Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:

65/100

Best Practices:

HTTPS enforced
Secure cookie with Secure flag

Analytics & Tracking

Services:

Baidu Analyticsaizhantj.com

Tracking Level:moderate

Privacy Compliance:basic

Advertising & Marketing

Tracking Pixels:

Baidu Analytics

Marketing Tools:

aizhantj.com tracking scripts

Transparency Level:basic

Website Quality Assessment

Design Quality:basic

User Experience:basic

Content Relevance:good

Navigation Clarity:good

Professionalism:basic

Trustworthiness:moderate

Key Observations

Website is a Chinese industrial real estate listing platform with extensive city coverage.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

15/100

Score

Critical sector without clear security compliance

HIGH

Detected sectors: digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

67/100

Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 41 days

Mixed Content Detected

MEDIUM

3 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Enabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

70/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

No DMARC Record

MEDIUM

DMARC policy not configured

Domain Registration Details

Domain Age

14 years(mature)

Expiry Risk

medium(52 days)

Protection Level

basicDNSSEC OFF

DNS Records

A Records:118.123.213.55

Name Servers:

dns31.hichina.com

dns32.hichina.com

MX Records:

1: mxdomain.qq.com

SOA:Serial: 2025032613, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:394ms

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100

Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website uses a traditional web technology stack with jQuery 1.12.4, jQuery.cookie, and custom JavaScript and CSS. The site is served over HTTPS, ensuring encrypted data transmission. Performance is moderate with no explicit indicators of optimization or CDN usage beyond static resource hosting on cdn.99cfw.com. Mobile optimization is basic, with alternate mobile URLs and meta tags for handheld devices, but no responsive design framework detected. SEO is supported by meta keywords, description, canonical links, and structured data in JSON-LD format for Baidu. However, the use of outdated libraries and lack of modern frameworks or CMS indicates technical debt and modernization opportunities. The site could benefit from adopting modern JavaScript frameworks, improving accessibility features, and enhancing mobile responsiveness to improve user experience and technical robustness.

Analyze Another Website

Is 99cfw.com a Scam? Security Check Results - 久久厂房网 Reviews

Is 99cfw.com Safe? Security Analysis for 久久厂房网

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing Strict-Transport-Security header

Missing X-Frame-Options header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Policy found

No Cookie Consent Banner found

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

No email authentication configured

🏆SSL/TLS Security

SSL/TLS Security

Weak Protocols Supported

Certificate Transparency Not Implemented

SSL Certificate Expires Within 90 Days

Mixed Content Detected

Partial SSL/TLS Assessment

Protocol Support

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

Domain Delete Lock Not Enabled

No DMARC Record

Domain Registration Details

DNS Records

DNSSEC Status

DNS Performance

⚡Network Security

Network Security

Good Network Security Posture

🔧Technical Analysis

Technical Analysis

Additional Findings