Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.madmaner.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.madmaner.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 28 Jun 2014 11:41:10 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.madmaner.com&path=/ Server: nginx Content-Length: 154 Content-Type: text/html | malicious |
URL: http://www.lofter.com/mydomainr.do?domain=www.madmaner.com&path=/ (imitation of visitor from search engine) GET /mydomainr.do?domain=www.madmaner.com&path=/ HTTP/1.1 Host: www.lofter.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 28 Jun 2014 11:41:11 GMT Location: http://madmaner.lofter.com/?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=5C350B27E9E7093628092EFB571A7687.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.madmaner.com%26path%3D%2F|http%3A%2F%2Fwww.google.com%2Furl%3Fsa%3Dt%26rct%3Dj%26q%3Dwww.madmaner.com%26source%3Dweb%26cd%3D1%26ved%3D0CDEQFjAG%26url%3Dhttp%3A%252F%252Fwww.madmaner.com%252F%26ei%3DwC7yT5qCJbCCkQKtnwE%26usg%3DAFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg; Domain=.lofter.com; Expires=Sun, 29-Jun-2014 11:41:11 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1Ouqdea9kv2FFtQAg==; expires=Sun, 28-Jun-15 11:41:11 GMT; domain=lofter.com; path=/ | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.madmaner.com/ | 200 OK Content-Length: 20602 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://lofter.ph.126.net/w_SD7NyHwj1cMtsx_dDfsw==/5629542415166606617.js | 200 OK Content-Length: 93868 Content-Type: application/javascript | clean |
http://lofter.ph.126.net/WixTvrpVJaNBoxTepYE5_Q==/5629542415166606618.js | 200 OK Content-Length: 5486 Content-Type: application/javascript | clean |
http://lofter.ph.126.net/-hQzqs21w6f7raOMySaCkQ==/5629530320538702029.js | 200 OK Content-Length: 1145 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0005 | 200 OK Content-Length: 2224 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19483 Content-Type: application/x-javascript | clean |
http://www.madmaner.com/view | 200 OK Content-Length: 34990 Content-Type: text/html | clean |
http://l.bst.126.net/s/core.js?891dc5a0165b8add7a3397195d6ccb0d | 200 OK Content-Length: 85348 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/s/pt_page_archive.js?73fbefd729294f6deb01caf64abe46e4 | 200 OK Content-Length: 72906 Content-Type: application/x-javascript | clean |
http://www.madmaner.com/test404page.js | 404 Not Found Content-Length: 6413 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://www.madmaner.com/rss | 200 OK Content-Length: 32410 Content-Type: text/xml | clean |
http://www.madmaner.com/wp-content/uploads/2014/04/1.jpg | 404 Not Found Content-Length: 6413 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.madmaner.com/app?from=theme | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 28 Jun 2014 11:41:31 GMT Location: http://www.lofter.com/app/madmaner?from=theme Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: NTESLOFTSI=85432766E74FB804E553F1B23DC34E90.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fgouappdownload.do%3Fmydomain%3Dwww.madmaner.com%26from%3Dtheme|; Domain=.lofter.com; Expires=Sun, 29-Jun-2014 11:41:31 GMT; Path=/ | clean |
http://www.lofter.com/app/madmaner?from=theme | 200 OK Content-Length: 54307 Content-Type: text/html | clean |
http://l.bst.126.net/s/pt_page_uapp_uappDownload.js?63351be29963c7095ff54de4cdcf458a | 200 OK Content-Length: 88113 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=madmaner.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://madmaner.com/
Result: madmaner.com is not infected or malware details are not published yet.
Result: madmaner.com is not infected or malware details are not published yet.