Scanned pages/files
| Request | Server response | Status |
http://www.bamaying.com/ | 200 OK Content-Length: 66093 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91572 Content-Type: application/x-javascript | clean |
http://lofter.ph.126.net/jw6oduESim0EXyuyySdCww==/5629524822980561900.js | 200 OK Content-Length: 8821 Content-Type: application/javascript | clean |
http://lofter.ph.126.net/q9lts_5USlOXrxZlBbf-6g==/6597113747121111241.js | 200 OK Content-Length: 3253 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0005 | 200 OK Content-Length: 2224 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19650 Content-Type: application/x-javascript | clean |
http://www.bamaying.com/tag/%E4%BA%B2%E5%AD%90%E6%B4%BB%E5%8A%A8 | 200 OK Content-Length: 22048 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.bamaying.com/tag/%E5%AA%92%E4%BD%93%E6%8A%A5%E9%81%93 | 200 OK Content-Length: 11514 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.bamaying.com/weibokefu | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 19 Aug 2014 18:20:35 GMT Location: http://weibo.com/qingshangke Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: NTESLOFTSI=A09EDC7D9B215E3AF4C81F9C1D2AF765.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fcustompage.do%3Fmydomain%3Dwww.bamaying.com%26%26url%3Dweibokefu|; Domain=.lofter.com; Expires=Wed, 20-Aug-2014 18:20:35 GMT; Path=/ | clean |
http://weibo.com/qingshangke | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store Connection: close Date: Tue, 19 Aug 2014 18:20:36 GMT Pragma: no-cache Location: http://passport.weibo.com/visitor/visitor?a=enter&url=http%3A%2F%2Fweibo.com%2Fqingshangke&_rand=1408472436.4222 Server: WeiBo Content-Type: text/html; charset=utf-8 Expires: Sat, 26 Jul 1997 05:00:00 GMT DPOOL_HEADER: balor199 LB_HEADER: venus247 P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: YF-Page-G0=b0c4b471b0031ce255ef4bc08defb715;Path=/ | clean |
http://passport.weibo.com/visitor/visitor?a=enter&url=http%3a%2f%2fweibo.com%2fqingshangke&_rand=1408472436.4222 | 200 OK Content-Length: 4600 Content-Type: text/html | clean |
http://passport.weibo.com/js/visitor/mini.js | 200 OK Content-Length: 28163 Content-Type: application/javascript | clean |
http://www.bamaying.com/test404page.js | 404 Not Found Content-Length: 7319 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://www.bamaying.com/official | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 19 Aug 2014 18:20:42 GMT Location: http://www.hahatv.com.cn/ Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: NTESLOFTSI=36087616B80999C9240A6DF76396087D.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fcustompage.do%3Fmydomain%3Dwww.bamaying.com%26%26url%3Dofficial|; Domain=.lofter.com; Expires=Wed, 20-Aug-2014 18:20:41 GMT; Path=/ | clean |
http://www.hahatv.com.cn/ | 200 OK Content-Length: 31764 Content-Type: text/html | clean |
http://www.hahatv.com.cn/assets/application-9adf5083541917f5caae15af1f6fa38b.js | 200 OK Content-Length: 112202 Content-Type: application/x-javascript | clean |
http://www.bamaying.com/javascripts/jquery.marquee.js | 404 Not Found Content-Length: 7319 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bamaying.com
Result:
GET / HTTP/1.1
Host: bamaying.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: bamaying.com
Referer: http://www.google.com/search?q=bamaying.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bamaying.com
Referer: http://www.google.com/search?q=bamaying.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bamaying.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bamaying.com/
Result: bamaying.com is not infected or malware details are not published yet.
Result: bamaying.com is not infected or malware details are not published yet.