Scanned pages/files
Request | Server response | Status |
http://toplist120x120.blogspot.com/ | 200 OK Content-Length: 68808 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://www.chelectronics.co.cc/counter.htm <iframe src="http://www.chelectronics.co.cc/counter.htm" width="1" height="1" allowtransparency="true" background-color="transparent" marginwidth="0" marginheight="0" hspace="0" vspace="0" frameborder="0" scrolling="no"> | ||
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12514 Content-Type: application/javascript | clean |
http://widgets.twimg.com/j/2/widget.js | 200 OK Content-Length: 1489 Content-Type: application/javascript | clean |
http://www.e-referrer.com/link.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.e-referrer.com/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://xslt.alexa.com/site_stats/js/s/a?url=toplist120x120.blogspot.com | 200 OK Content-Length: 3153 Content-Type: application/x-javascript | clean |
https://www.blogger.com/static/v1/widgets/2271878333-widgets.js | 200 OK Content-Length: 90737 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: toplist120x120.blogspot.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Sat, 04 Oct 2014 02:02:35 GMT
ETag: "96f35c2d-f47d-41d1-871c-a62641eefbd0"
Server: GSE
Content-Type: text/html; charset=UTF-8
Expires: Sat, 04 Oct 2014 02:02:35 GMT
Last-Modified: Thu, 20 Mar 2014 01:19:09 GMT
Alternate-Protocol: 80:quic,p=0.01
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
GET / HTTP/1.1
Host: toplist120x120.blogspot.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Connection: close
Date: Sat, 04 Oct 2014 02:02:35 GMT
ETag: "96f35c2d-f47d-41d1-871c-a62641eefbd0"
Server: GSE
Content-Type: text/html; charset=UTF-8
Expires: Sat, 04 Oct 2014 02:02:35 GMT
Last-Modified: Thu, 20 Mar 2014 01:19:09 GMT
Alternate-Protocol: 80:quic,p=0.01
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Second query (visit from search engine):
GET / HTTP/1.1
Host: toplist120x120.blogspot.com
Referer: http://www.google.com/search?q=toplist120x120.blogspot.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: toplist120x120.blogspot.com
Referer: http://www.google.com/search?q=toplist120x120.blogspot.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=toplist120x120.blogspot.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://toplist120x120.blogspot.com/
Result: toplist120x120.blogspot.com is not infected or malware details are not published yet.
Result: toplist120x120.blogspot.com is not infected or malware details are not published yet.