Scanned pages/files
Request | Server response | Status |
http://www.slenderwestlake.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:13 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/ Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:14 GMT Location: http://slenderwestlake.lofter.com/?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=2E3EAEA6DCCFABC8CC8EBE6643910132.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.slenderwestlake.com%26path%3D%2F|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:14 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1O27GIeriSxBxuVAg==; expires=Sat, 04-Jul-15 18:03:14 GMT; domain=lofter.com; path=/ | clean |
http://slenderwestlake.lofter.com/?mydomainr=true | 200 OK Content-Length: 11428 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91572 Content-Type: application/x-javascript | clean |
http://lofter.ph.126.net/b8S3OOnCXULLSsJkGQRWuA==/5629540216143351122.js | 200 OK Content-Length: 1647 Content-Type: application/javascript | clean |
http://lofter.ph.126.net/TV4jqxq9aC5KjIAXkziADg==/5629540216143351119.js | 200 OK Content-Length: 1156 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0005 | 200 OK Content-Length: 2224 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19483 Content-Type: application/x-javascript | clean |
http://www.slenderwestlake.com/view | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:23 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/view Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/view | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:23 GMT Location: http://slenderwestlake.lofter.com/view?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=B3B8030B5311A8C1B9EE7DC20542A366.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.slenderwestlake.com%26path%3D%2Fview|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:23 GMT; Path=/ Set-Cookie: usertrack=ZUcIhFO27GuWdwtsBpyxAg==; expires=Sat, 04-Jul-15 18:03:23 GMT; domain=lofter.com; path=/ | clean |
http://slenderwestlake.lofter.com/view?mydomainr=true | 200 OK Content-Length: 45356 Content-Type: text/html | clean |
http://l.bst.126.net/s/core.js?6503a7c89eec3cbd9b05f9be69815a64 | 200 OK Content-Length: 85344 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/s/pt_page_archive.js?f4e9dec68b2c8fefcfffbdaaadbadaed | 200 OK Content-Length: 73752 Content-Type: application/x-javascript | clean |
http://www.slenderwestlake.com/test404page.js | 404 Not Found Content-Length: 5722 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://www.slenderwestlake.com/rss | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:33 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/rss Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/rss | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:34 GMT Location: http://slenderwestlake.lofter.com/rss?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=E4EA2CE1C9F73B99286428D99CA78B27.blog83-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.slenderwestlake.com%26path%3D%2Frss|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:34 GMT; Path=/ Set-Cookie: usertrack=ZUcIhFO27HaYuwt1BoVLAg==; expires=Sat, 04-Jul-15 18:03:34 GMT; domain=lofter.com; path=/ | clean |
http://slenderwestlake.lofter.com/rss?mydomainr=true | 200 OK Content-Length: 39756 Content-Type: text/xml | clean |
http://slenderwestlake.lofter.com/post/311fdd_16f167c | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 04 Jul 2014 18:03:36 GMT Location: http://www.slenderwestlake.com/post/311fdd_16f167c Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=4CF663203AB3613D752AABB275F01FC5.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fpost.do%3FloftBlogName%3Dslenderwestlake%26loftPostUrl%3D311fdd_16f167c%26|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:36 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1O27HgdGiSqBu5WAg==; expires=Sat, 04-Jul-15 18:03:36 GMT; domain=lofter.com; path=/ | clean |
http://www.slenderwestlake.com/post/311fdd_16f167c | 200 OK Content-Length: 8860 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://www.slenderwestlake.com/post/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:39 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/post/ Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/post/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:40 GMT Location: http://slenderwestlake.lofter.com/post/?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=574BDB30CFA88676BC1EAF2E1B9EC5F8.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.slenderwestlake.com%26path%3D%2Fpost%2F|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:40 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1O27Hwj4iTGBvw8Ag==; expires=Sat, 04-Jul-15 18:03:40 GMT; domain=lofter.com; path=/ | clean |
http://slenderwestlake.lofter.com/post/?mydomainr=true | 404 Not Found Content-Length: 5722 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://slenderwestlake.lofter.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 04 Jul 2014 18:03:41 GMT Location: http://www.slenderwestlake.com Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=A07558340DAF21AB2155FA94AB2EA604.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fblogindex.do%3FloftBlogName%3Dslenderwestlake%26|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:41 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1O27H0d/SSvB0EfAg==; expires=Sat, 04-Jul-15 18:03:41 GMT; domain=lofter.com; path=/ | clean |
http://www.slenderwestlake.com/app?from=theme | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:42 GMT Location: http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/app?from=theme Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=www.slenderwestlake.com&path=/app?from=theme | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:43 GMT Location: http://slenderwestlake.lofter.com/app?from=theme&mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=DA167170EEE6D237286E62AB5013C208.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3Fdomain%3Dwww.slenderwestlake.com%26path%3D%2Fapp%3Ffrom%3Dtheme|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:43 GMT; Path=/ Set-Cookie: usertrack=ZUcIhFO27H+TcgtiBvkbAg==; expires=Sat, 04-Jul-15 18:03:43 GMT; domain=lofter.com; path=/ | clean |
http://slenderwestlake.lofter.com/app?from=theme&mydomainr=true | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 04 Jul 2014 18:03:43 GMT Location: http://www.lofter.com/app/slenderwestlake?from=theme Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=C2F190D004571B4D77F574654C6C5E34.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fgouappdownload.do%3FloftBlogName%3Dslenderwestlake%26from%3Dtheme%26mydomainr%3Dtrue|; Domain=.lofter.com; Expires=Sat, 05-Jul-2014 18:03:43 GMT; Path=/ Set-Cookie: usertrack=ZUcIg1O27H8f+yS4BxBQAg==; expires=Sat, 04-Jul-15 18:03:43 GMT; domain=lofter.com; path=/ | clean |
http://www.lofter.com/app/slenderwestlake?from=theme | 200 OK Content-Length: 60894 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: slenderwestlake.com
Result:
GET / HTTP/1.1
Host: slenderwestlake.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: slenderwestlake.com
Referer: http://www.google.com/search?q=slenderwestlake.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: slenderwestlake.com
Referer: http://www.google.com/search?q=slenderwestlake.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=slenderwestlake.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://slenderwestlake.com/
Result: slenderwestlake.com is not infected or malware details are not published yet.
Result: slenderwestlake.com is not infected or malware details are not published yet.