Scanned pages/files
Request | Server response | Status |
http://www.sdhzcq.com/ | 200 OK Content-Length: 64328 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://libs.baidu.com/jquery/1.9.0/jquery.js | 200 OK Content-Length: 119229 Content-Type: application/x-javascript | clean |
http://www.sdhzcq.com/themes/guohuai/js/jquery.hhService.js | 200 OK Content-Length: 877 Content-Type: application/x-javascript | clean |
http://www.sdhzcq.com/themes/guohuai/js/public.js | 200 OK Content-Length: 1007 Content-Type: application/x-javascript | clean |
http://www.sdhzcq.com/jidifengcai/ | 200 OK Content-Length: 32739 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/xinwenzixun/ | 200 OK Content-Length: 34069 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/chanpinzhanshi/ | 200 OK Content-Length: 36805 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/download/ | 200 OK Content-Length: 30535 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/jiage/ | 200 OK Content-Length: 33841 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/guohuaizhishi/ | 200 OK Content-Length: 33753 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/gongyingxinxi/ | 200 OK Content-Length: 34220 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/contactus/ | 200 OK Content-Length: 31199 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/zaixianliuyan/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 02 Apr 2014 09:01:17 GMT Pragma: no-cache Location: /guestbook Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: cp_language=zh; expires=Thu, 02-Apr-2015 09:01:17 GMT; path=/ Set-Cookie: PHPSESSID=82f22fc716a55c8f6528c099e122a650; path=/ | clean |
http://www.sdhzcq.com/guestbook | 200 OK Content-Length: 36554 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/guohuai/ | 200 OK Content-Length: 36501 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
| ||
http://www.sdhzcq.com/fatong/ | 200 OK Content-Length: 33627 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) window._bd_share_config = { "common": { "bdSnsKey": {}, "bdText": "", "bdMini": "2", "bdMiniList": false, "bdPic": "", "bdStyle": "0", "bdSize": "16" }, "slide": { "type": "slide", "bdImg": "1", "bdPos": "left", "bdTop": "100" }, "image": { "viewList": ["qzone", "tsina", "tqq", "weixin", "tqf", "sqq", "tieba", "copy"], "viewText": "å享å°ï¼", "viewSize": "16" } }; with(document) 0[(getElementsByTagName('head')[0] || body).appendChild(createElement('script')).src = 'http://bdimg.share.baidu.com/static/api/js/share.js?v=89860593.js?cdnversion=' + ~ ( - new Date() / 36e5)]; Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sdhzcq.com
Result:
GET / HTTP/1.1
Host: sdhzcq.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sdhzcq.com
Referer: http://www.google.com/search?q=sdhzcq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sdhzcq.com
Referer: http://www.google.com/search?q=sdhzcq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sdhzcq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sdhzcq.com/
Result: sdhzcq.com is not infected or malware details are not published yet.
Result: sdhzcq.com is not infected or malware details are not published yet.