Scanned pages/files
Request | Server response | Status |
http://10wood.com/ | 200 OK Content-Length: 10154 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91572 Content-Type: application/x-javascript | clean |
http://lofter.ph.126.net/ZnOaQK22NHvQLoQVeCKOmg==/6597121443702505909.js | 200 OK Content-Length: 403 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0005 | 200 OK Content-Length: 2224 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19483 Content-Type: application/x-javascript | clean |
http://10wood.com/?page=2 | 200 OK Content-Length: 10248 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://10wood.com/?page=1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:17 GMT Location: http://www.lofter.com/mydomainr.do?domain=10wood.com&path=/?page=1 Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=10wood.com&path=/?page=1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:18 GMT Location: http://10wood.lofter.com/?page=1&mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=7A2F26ED6AC9428533843453B6B3706F.blog83-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3D10wood.com%26path%3D%2F%3Fpage%3D1|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:18 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+Uo7mmUULLYLAg==; expires=Tue, 23-Jun-15 09:54:18 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/?page=1&mydomainr=true | 200 OK Content-Length: 10154 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://10wood.lofter.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 09:54:20 GMT Location: http://www.10wood.com Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=2695FFDD345F6DC3AC2E07B9D3F28CBA.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fblogindex.do%3FloftBlogName%3D10wood%26|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:20 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+Uw2FmT5LAvrAg==; expires=Tue, 23-Jun-15 09:54:20 GMT; domain=lofter.com; path=/ | clean |
http://www.10wood.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:21 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/ Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:21 GMT Location: http://10wood.lofter.com/?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=46DBC264DEE18FC44382054057394511.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.10wood.com%26path%3D%2F|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:21 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+U04PGUHK1elAg==; expires=Tue, 23-Jun-15 09:54:21 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/?mydomainr=true | 200 OK Content-Length: 10154 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://10wood.lofter.com/?page=2 | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 09:54:23 GMT Location: http://www.10wood.com/?page=2 Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=AB449E6E863863B5703D24B626DF8D25.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fblogindex.do%3FloftBlogName%3D10wood%26page%3D2|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:23 GMT; Path=/ Set-Cookie: usertrack=ZUcIhFOn+U8ydUKwKYEiAg==; expires=Tue, 23-Jun-15 09:54:23 GMT; domain=lofter.com; path=/ | clean |
http://www.10wood.com/?page=2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:24 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/?page=2 Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/?page=2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:25 GMT Location: http://10wood.lofter.com/?page=2&mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=09A1E754B25735140215CE6B0E8FD982.blog198-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.10wood.com%26path%3D%2F%3Fpage%3D2|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:25 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+VE1UmTxLLRoAg==; expires=Tue, 23-Jun-15 09:54:25 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/?page=2&mydomainr=true | 200 OK Content-Length: 10248 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://10wood.lofter.com/?page=1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 23 Jun 2014 09:54:26 GMT Location: http://www.10wood.com Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=D1B125466B2C5C03BB5F53C089348771.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fblogindex.do%3FloftBlogName%3D10wood%26page%3D1|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:26 GMT; Path=/ Set-Cookie: usertrack=ZUcIhFOn+VIsckKGKVvBAg==; expires=Tue, 23-Jun-15 09:54:26 GMT; domain=lofter.com; path=/ | clean |
http://www.10wood.com/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:28 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/test404page.js Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:28 GMT Location: http://10wood.lofter.com/test404page.js?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=120E1680FCD62B2CEDF202532109C4A6.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.10wood.com%26path%3D%2Ftest404page.js|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:28 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+VQ5SmUKLHyxAg==; expires=Tue, 23-Jun-15 09:54:28 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/test404page.js?mydomainr=true | 404 Not Found Content-Length: 5407 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://www.10wood.com/contact | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:32 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/contact Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/contact | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:33 GMT Location: http://10wood.lofter.com/contact?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=D58C4B571F7DCC87278AE6288E2047C2.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.10wood.com%26path%3D%2Fcontact|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:33 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+Vk3gmUFLBlYAg==; expires=Tue, 23-Jun-15 09:54:33 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/contact?mydomainr=true | 200 OK Content-Length: 6074 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://10wood.lofter.com/test404page.js | 404 Not Found Content-Length: 5407 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.10wood.com/aboutme | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:35 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/aboutme Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/aboutme | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:36 GMT Location: http://10wood.lofter.com/aboutme?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=7265E757F47DEEFB70549F56643F5ED2.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.10wood.com%26path%3D%2Faboutme|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:36 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+Vw2NWT7LBu5Ag==; expires=Tue, 23-Jun-15 09:54:36 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/aboutme?mydomainr=true | 200 OK Content-Length: 5388 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.10wood.com/weibo | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:38 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/weibo Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.10wood.com&path=/weibo | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:39 GMT Location: http://10wood.lofter.com/weibo?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=4D3AEB2E5D800C318C77C789986D1090.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.10wood.com%26path%3D%2Fweibo|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:39 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1On+V82bGT/LG8VAg==; expires=Tue, 23-Jun-15 09:54:39 GMT; domain=lofter.com; path=/ | clean |
http://10wood.lofter.com/weibo?mydomainr=true | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 23 Jun 2014 09:54:39 GMT Location: http://weibo.com/u/1743450724 Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=C671BF6A90A856FF6F5583E38E0BD80C.blog83-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fcustompage.do%3FloftBlogName%3D10wood%26mydomainr%3Dtrue%26url%3Dweibo|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:39 GMT; Path=/ Set-Cookie: usertrack=ZUcIhFOn+V8w0kKnKd/GAg==; expires=Tue, 23-Jun-15 09:54:39 GMT; domain=lofter.com; path=/ | clean |
http://weibo.com/u/1743450724 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store Connection: close Date: Mon, 23 Jun 2014 09:54:40 GMT Pragma: no-cache Location: http://passport.weibo.com/visitor/visitor?a=enter&url=http%3A%2F%2Fweibo.com%2Fu%2F1743450724&_rand=1403517280.2642 Server: WeiBo Content-Type: text/html; charset=utf-8 Expires: Sat, 26 Jul 1997 05:00:00 GMT DPOOL_HEADER: venus164 LB_HEADER: venus50 P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: YF-Page-G0=c47452adc667e76a7435512bb2f774f3;Path=/ | clean |
http://passport.weibo.com/visitor/visitor?a=enter&url=http%3a%2f%2fweibo.com%2fu%2f1743450724&_rand=1403517280.2642 | 200 OK Content-Length: 4041 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 10wood.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 23 Jun 2014 09:54:09 GMT
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html;charset=UTF-8
Set-Cookie: NTESLOFTSI=717C8D84D19046539E034A258812002D.lofter1-8010; Domain=.www.lofter.com; Path=/
Set-Cookie: firstentry=%2Fblogindex.do%3Fmydomain%3D10wood.com%26|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:09 GMT; Path=/
GET / HTTP/1.1
Host: 10wood.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 23 Jun 2014 09:54:09 GMT
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html;charset=UTF-8
Set-Cookie: NTESLOFTSI=717C8D84D19046539E034A258812002D.lofter1-8010; Domain=.www.lofter.com; Path=/
Set-Cookie: firstentry=%2Fblogindex.do%3Fmydomain%3D10wood.com%26|; Domain=.lofter.com; Expires=Tue, 24-Jun-2014 09:54:09 GMT; Path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: 10wood.com
Referer: http://www.google.com/search?q=10wood.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 10wood.com
Referer: http://www.google.com/search?q=10wood.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=10wood.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://10wood.com/
Result: 10wood.com is not infected or malware details are not published yet.
Result: 10wood.com is not infected or malware details are not published yet.