Scanned pages/files
Request | Server response | Status |
http://imspider.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 24 Sep 2014 22:53:52 GMT Location: http://www.lofter.com/mydomainr.do?domain=imspider.com&path=/ Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=imspider.com&path=/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 24 Sep 2014 22:53:53 GMT Location: http://imspider.lofter.com/?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=B45DEEC384C7AF016396A37CEE7C4995.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dimspider.com%26path%3D%2F|; Domain=.lofter.com; Expires=Thu, 25-Sep-2014 22:53:53 GMT; Path=/ Set-Cookie: usertrack=ezq0eFQjS4G9hG9pDWN5Ag==; expires=Thu, 24-Sep-15 22:53:53 GMT; domain=lofter.com; path=/ | clean |
http://imspider.lofter.com/?mydomainr=true | 200 OK Content-Length: 6545 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/pagelayer/pagelayer.js?0006 | 200 OK Content-Length: 26075 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91572 Content-Type: application/x-javascript | clean |
http://lofter.ph.126.net/5aTzA_Yt4zTCgHoEMo-hQg==/6597121443702505913.js | 200 OK Content-Length: 498 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0010 | 200 OK Content-Length: 8290 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19650 Content-Type: application/x-javascript | clean |
http://imspider.com/view | 200 OK Content-Length: 59512 Content-Type: text/html | clean |
http://l.bst.126.net/s/core.js?0f15c73cea7c7fd688729ad428f6b14b | 200 OK Content-Length: 85344 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/s/pt_page_archive.js?0ae6726c57e08f125fddcca13b4b9698 | 200 OK Content-Length: 75076 Content-Type: application/x-javascript | clean |
http://imspider.com/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 24 Sep 2014 22:54:12 GMT Location: http://www.lofter.com/mydomainr.do?domain=imspider.com&path=/test404page.js Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=imspider.com&path=/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Wed, 24 Sep 2014 22:54:13 GMT Location: http://imspider.lofter.com/test404page.js?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=8B13C874955C264D4E4C1C35CF629504.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dimspider.com%26path%3D%2Ftest404page.js|; Domain=.lofter.com; Expires=Thu, 25-Sep-2014 22:54:13 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QjS5VQ2w2YDTURAg==; expires=Thu, 24-Sep-15 22:54:13 GMT; domain=lofter.com; path=/ | clean |
http://imspider.lofter.com/test404page.js?mydomainr=true | 404 Not Found Content-Length: 5746 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://imspider.com/rss | 200 OK Content-Length: 1987 Content-Type: text/xml | clean |
http://imspider.com/post/148310_37d372 | 200 OK Content-Length: 8536 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://imspider.com/post/ | 404 Not Found Content-Length: 5746 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://imspider.com/tag/%E6%84%9F%E6%83%B3 | 200 OK Content-Length: 6554 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imspider.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Wed, 24 Sep 2014 22:53:52 GMT
Location: http://www.lofter.com/mydomainr.do?domain=imspider.com&path=/
Server: nginx
Content-Length: 154
Content-Type: text/html
...154 bytes of data.
GET / HTTP/1.1
Host: imspider.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Wed, 24 Sep 2014 22:53:52 GMT
Location: http://www.lofter.com/mydomainr.do?domain=imspider.com&path=/
Server: nginx
Content-Length: 154
Content-Type: text/html
...154 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: imspider.com
Referer: http://www.google.com/search?q=imspider.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imspider.com
Referer: http://www.google.com/search?q=imspider.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=imspider.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://imspider.com/
Result: imspider.com is not infected or malware details are not published yet.
Result: imspider.com is not infected or malware details are not published yet.