Scanned pages/files
| Request | Server response | Status |
http://t.qq.com/content/ | 200 OK Content-Length: 17976 Content-Type: text/html | clean |
http://mat1.gtimg.com/www/mb/js/mi.Lang.en_US_121002.js | 200 OK Content-Length: 48583 Content-Type: application/x-javascript | clean |
http://mat1.gtimg.com/www/mb/js/mi_140425a.js | 200 OK Content-Length: 106162 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. style: hidden src: http://api.t.qq.com/proxy.html <iframe id="siframeproxy" name="siframeproxy" src="http://api.t.qq.com/proxy.html" onload="mi.s.exec();" style="display:none"> | ||
http://www.qq.com/404/search_children.js?edition=small | 200 OK Content-Length: 295 Content-Type: application/x-javascript | clean |
http://t.qq.com/ | 200 OK Content-Length: 26006 Content-Type: text/html | clean |
http://t.qq.com/certification | 200 OK Content-Length: 20883 Content-Type: text/html | clean |
http://t.qq.com/people?from=top | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Sun, 27 Apr 2014 03:59:39 GMT Pragma: no-cache Location: http://zhaoren.t.qq.com/people?from=top&from=top Server: nginx/1.5.7 Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 20 Content-Type: text/html; charset=utf-8 Expires: Sun, 27 Apr 2014 03:59:39 GMT | clean |
http://zhaoren.t.qq.com/people?from=top&from=top | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate Connection: close Date: Sun, 27 Apr 2014 03:59:39 GMT Pragma: no-cache Location: http://t.qq.com/login.php?url=http%3A%2F%2Fzhaoren.t.qq.com%2Fpeople%3Ffrom%3Dtop%26from%3Dtop Server: nginx/1.5.7 Content-Length: 71 Content-Type: application/json Expires: Sun, 27 Apr 2014 03:59:39 GMT | clean |
http://t.qq.com/login.php?url=http%3a%2f%2fzhaoren.t.qq.com%2fpeople%3ffrom%3dtop%26from%3dtop | 200 OK Content-Length: 26714 Content-Type: text/html | clean |
http://t.qq.com/? | 200 OK Content-Length: 25998 Content-Type: text/html | clean |
http://t.qq.com/?lang=zh_CN | 200 OK Content-Length: 26483 Content-Type: text/html | clean |
http://t.qq.com/?lang=zh_CHT | 200 OK Content-Length: 26084 Content-Type: text/html | clean |
http://t.qq.com/?lang=en_US | 200 OK Content-Length: 26012 Content-Type: text/html | clean |
http://t.qq.com/test404page.js | 404 Not Found Content-Length: 17156 Content-Type: text/html | clean |
http://t.qq.com/p/t/145478120692624 | 200 OK Content-Length: 52865 Content-Type: text/html | clean |
http://t.qq.com/login.php?type=invite&from=20 | 200 OK Content-Length: 26681 Content-Type: text/html | clean |
http://t.qq.com/rickzhuang | 200 OK Content-Length: 110808 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: t.qq.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Connection: close
Date: Sun, 27 Apr 2014 03:59:38 GMT
Pragma: no-cache
Server: nginx/1.5.7
Content-Length: 26006
Content-Type: text/html; charset=utf-8
Expires: Sun, 27 Apr 2014 03:59:38 GMT
Set-Cookie: mb_reg_from=8; path=/; domain=.t.qq.com
Set-Cookie: wbilang_10000=en_US; expires=Mon, 28-Apr-2014 03:59:38 GMT; path=/; domain=.t.qq.com
...26006 bytes of data.
GET / HTTP/1.1
Host: t.qq.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache, must-revalidate
Connection: close
Date: Sun, 27 Apr 2014 03:59:38 GMT
Pragma: no-cache
Server: nginx/1.5.7
Content-Length: 26006
Content-Type: text/html; charset=utf-8
Expires: Sun, 27 Apr 2014 03:59:38 GMT
Set-Cookie: mb_reg_from=8; path=/; domain=.t.qq.com
Set-Cookie: wbilang_10000=en_US; expires=Mon, 28-Apr-2014 03:59:38 GMT; path=/; domain=.t.qq.com
...26006 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: t.qq.com
Referer: http://www.google.com/search?q=t.qq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: t.qq.com
Referer: http://www.google.com/search?q=t.qq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=t.qq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://t.qq.com/
Result: t.qq.com is not infected or malware details are not published yet.
Result: t.qq.com is not infected or malware details are not published yet.