Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bftly.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.bftly.com/ | 200 OK Content-Length: 45313 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.7m6.net <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>www.jizzhut.com-2013ææ°çµå½±</title> <meta name="keywords" content="2013ææ°çµå½±,www.jizzhut.com" /> <meta name="description" content=" ...[4629 bytes skipped]... | ||
http://js.lixinji360.com/mobile_281_4142.js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://js.lixinji360.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://www.bftly.com/temp/Js/hot.js | 200 OK Content-Length: 424 Content-Type: application/x-javascript | clean |
http://www.bftly.com/static/dd/index02.js | 200 OK Content-Length: 109 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: www.iezhuang.com document.writeln("<script language=\'javascript\' src=\'http:\/\/www.iezhuang.com\/gg\/t.js\'><\/script>"); | ||
http://www.bftly.com/static/js/tongji.js | 200 OK Content-Length: 424 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: www.7m6.net document.writeln("<script> ");
document.writeln("function GetRandomNum(Min,Max){ "); document.writeln("var Range = Max - Min; "); document.writeln("var Rand = Math.random(); "); document.writeln("return(Min + Math.round(Rand * Range)); "); document.writeln("} "); document.writeln("var num = GetRandomNum(1,14808); "); document.writeln("location.href = \"http:\/\/www.7m6.net\";"); document.writeln("<\/script> ") |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bftly.com
Result:
GET / HTTP/1.1
Host: bftly.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: bftly.com
Referer: http://www.google.com/search?q=bftly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bftly.com
Referer: http://www.google.com/search?q=bftly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.