Scanned pages/files
| Request | Server response | Status |
http://tt361.com/ | 200 OK Content-Length: 83731 Content-Type: text/html | clean |
http://cpro.baidu.com/cpro/ui/c.js | 200 OK Content-Length: 82097 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 0x0 src: http://cpro.baidustatic.com/cpro/ui/html/appdetect.html <iframe src="http://cpro.baidustatic.com/cpro/ui/html/appdetect.html" width="0" height="0"align="center,center" marginwidth="0" marginheight="0" scrolling="no" frameborder="0" allowtransparency="true" style="margin-left:{iframmarginleft}px" > | ||
http://images.sohu.com/cs/jsfile/js/c.js | 200 OK Content-Length: 48740 Content-Type: application/x-javascript | clean |
http://tt361.com/toys.shtml | 200 OK Content-Length: 81692 Content-Type: text/html | clean |
http://cpro.baidu.com/cpro/ui/f.js | 200 OK Content-Length: 82097 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 0x0 src: http://cpro.baidustatic.com/cpro/ui/html/appdetect.html <iframe src="http://cpro.baidustatic.com/cpro/ui/html/appdetect.html" width="0" height="0"align="center,center" marginwidth="0" marginheight="0" scrolling="no" frameborder="0" allowtransparency="true" style="margin-left:{iframmarginleft}px" > | ||
http://tt361.com/member/joincheck.aspx | HTTP/1.1 302 Found Cache-Control: private Connection: close Date: Sun, 05 Oct 2014 13:58:31 GMT Location: /work/regsiter.aspx Content-Length: 136 Content-Type: text/html; charset=gb2312 Set-Cookie: __jsluid=e2cf9cd8226de27495b77c1632896d19; path=/ X-AspNet-Version: 4.0.30128 X-Cache: pass | clean |
http://tt361.com/work/regsiter.aspx | 200 OK Content-Length: 11591 Content-Type: text/html | clean |
http://tt361.com/WebResource.axd?d=J40rE-yMXxbMWsK8g8tmgg2&t=635280103543125000 | 200 OK Content-Length: 21672 Content-Type: application/x-javascript | clean |
http://tt361.com/WebResource.axd?d=zTvVrt5RreOebzvbA6wCHpDQ0Zpi8pulw7ScG7-kjBw1&t=635280103543125000 | 200 OK Content-Length: 21548 Content-Type: application/x-javascript | clean |
http://tt361.com/test404page.js | 404 Not Found Content-Length: 1308 Content-Type: text/html | clean |
http://tt361.com/member/signin.aspx | 200 OK Content-Length: 15767 Content-Type: text/html | clean |
http://tt361.com/index.asp | 200 OK Content-Length: 97169 Content-Type: text/html | clean |
http://cpro.baidustatic.com/cpro/ui/c.js | 200 OK Content-Length: 82097 Content-Type: application/x-javascript | clean |
http://tt361.com/shoe.shtml | 200 OK Content-Length: 71726 Content-Type: text/html | clean |
http://tt361.com/shoe_buyhtml/1.html | 200 OK Content-Length: 31985 Content-Type: text/html | clean |
http://smarttrade.allyes.com/main/adfshow?user=1|17101|147778&db=smarttrade&border=0&local=yes&js=ie | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tt361.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=10800
Connection: close
Date: Sun, 05 Oct 2014 13:58:14 GMT
Vary: Accept-Encoding
Content-Length: 97169
Content-Type: text/html
Set-Cookie: __jsluid=0c4ab63da0bb640e31a43e043720ad89; path=/
X-Cache: hit
X-Died: timeout at scan.pm line 1546.
...97169 bytes of data.
GET / HTTP/1.1
Host: tt361.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=10800
Connection: close
Date: Sun, 05 Oct 2014 13:58:14 GMT
Vary: Accept-Encoding
Content-Length: 97169
Content-Type: text/html
Set-Cookie: __jsluid=0c4ab63da0bb640e31a43e043720ad89; path=/
X-Cache: hit
X-Died: timeout at scan.pm line 1546.
...97169 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tt361.com
Referer: http://www.google.com/search?q=tt361.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tt361.com
Referer: http://www.google.com/search?q=tt361.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tt361.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tt361.com/
Result: tt361.com is not infected or malware details are not published yet.
Result: tt361.com is not infected or malware details are not published yet.