Scanned pages/files
| Request | Server response | Status |
http://www.imsiwei.com/ | 200 OK Content-Length: 16135 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 73533 Content-Type: application/x-javascript | clean |
http://lofter.ph.126.net/tRsO2AlTSrmLafck0XlIeg==/5629523723468935447.js | 200 OK Content-Length: 1101 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0005 | 200 OK Content-Length: 2224 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19650 Content-Type: application/x-javascript | clean |
http://www.imsiwei.com/?page=2 | 200 OK Content-Length: 16255 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.imsiwei.com/?page=1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 21 Aug 2014 19:55:40 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.imsiwei.com&path=/?page=1 Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.imsiwei.com&path=/?page=1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 21 Aug 2014 19:55:43 GMT Location: http://4vfilm.lofter.com/?page=1&mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=D69767578DE00E5337C9F07C0CF3C2CB.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dwww.imsiwei.com%26path%3D%2F%3Fpage%3D1|; Domain=.lofter.com; Expires=Fri, 22-Aug-2014 19:55:43 GMT; Path=/ Set-Cookie: usertrack=ezq0d1P2Tr9nwU6oG/36Ag==; expires=Fri, 21-Aug-15 19:55:43 GMT; domain=lofter.com; path=/ | clean |
http://4vfilm.lofter.com/?page=1&mydomainr=true | 200 OK Content-Length: 16135 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://4vfilm.lofter.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 21 Aug 2014 19:55:45 GMT Location: http://www.4vfilm.com Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=08480AAD55D05BEBED367BE671F56656.lofter13-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fblogindex.do%3FloftBlogName%3D4vfilm%26X-From-ISP%3D2|; Domain=.lofter.com; Expires=Fri, 22-Aug-2014 19:55:45 GMT; Path=/ Set-Cookie: usertrack=ezq0eFP2TsEaFWtlGsxaAg==; expires=Fri, 21-Aug-15 19:55:45 GMT; domain=lofter.com; path=/ | clean |
http://www.4vfilm.com/ | 200 OK Content-Length: 16135 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.4vfilm.com/app?from=theme | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 21 Aug 2014 19:55:50 GMT Location: http://www.lofter.com/app/4vfilm?from=theme Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: NTESLOFTSI=A1F0E9077CBD2EF8935368EA9B7D200E.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fgouappdownload.do%3Fmydomain%3Dwww.4vfilm.com%26from%3Dtheme|; Domain=.lofter.com; Expires=Fri, 22-Aug-2014 19:55:50 GMT; Path=/ | clean |
http://www.lofter.com/app/4vfilm?from=theme | 200 OK Content-Length: 79932 Content-Type: text/html | clean |
http://l.bst.126.net/s/core.js?0d22b0f9a45d348fd3c8b205dedcbb11 | 200 OK Content-Length: 63397 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/s/pt_page_uapp_uappDownload.js?b24167c6aa29cecacdb5f9fbb82970de | 200 OK Content-Length: 60501 Content-Type: application/x-javascript | clean |
http://www.4vfilm.com/login | 404 Not Found Content-Length: 8176 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://www.4vfilm.com/guanyu | 200 OK Content-Length: 9467 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.4vfilm.com/baojia | 200 OK Content-Length: 13786 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imsiwei.com
Result:
GET / HTTP/1.1
Host: imsiwei.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: imsiwei.com
Referer: http://www.google.com/search?q=imsiwei.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imsiwei.com
Referer: http://www.google.com/search?q=imsiwei.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=imsiwei.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://imsiwei.com/
Result: imsiwei.com is not infected or malware details are not published yet.
Result: imsiwei.com is not infected or malware details are not published yet.