Scanned pages/files
| Request | Server response | Status |
http://ufane.com/ | 200 OK Content-Length: 10025 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91572 Content-Type: application/x-javascript | clean |
http://lofter.ph.126.net/6MQflU9o7Sitg3r7ZDDNyw==/5629536917608467736.js | 200 OK Content-Length: 3654 Content-Type: application/javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0005 | 200 OK Content-Length: 2224 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19650 Content-Type: application/x-javascript | clean |
http://ufane.com/view | 200 OK Content-Length: 56207 Content-Type: text/html | clean |
http://l.bst.126.net/s/core.js?ec6a8c22be35cc1b7b8d05afb54eb790 | 200 OK Content-Length: 85344 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/s/pt_page_archive.js?06dd63d8c692265d1bfad96111b3e6d2 | 200 OK Content-Length: 75190 Content-Type: application/x-javascript | clean |
http://ufane.com/test404page.js | 404 Not Found Content-Length: 5206 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://ufane.com/rss | 200 OK Content-Length: 6812 Content-Type: text/xml | clean |
http://ufane.com/weibo | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 26 Aug 2014 20:17:38 GMT Location: http://weibo.com/fanshuai Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: NTESLOFTSI=D05B4CAF1F204FA7BCA9012C0860887B.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fcustompage.do%3Fmydomain%3Dufane.com%26%26url%3Dweibo|; Domain=.lofter.com; Expires=Wed, 27-Aug-2014 20:17:38 GMT; Path=/ | clean |
http://weibo.com/fanshuai | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store Connection: close Date: Tue, 26 Aug 2014 20:17:39 GMT Pragma: no-cache Location: http://passport.weibo.com/visitor/visitor?a=enter&url=http%3A%2F%2Fweibo.com%2Ffanshuai&_rand=1409084259.6992 Server: WeiBo Content-Type: text/html; charset=utf-8 Expires: Sat, 26 Jul 1997 05:00:00 GMT DPOOL_HEADER: jason114 LB_HEADER: venus50 P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: YF-Page-G0=27b9c6f0942dad1bd65a7d61efdfa013;Path=/ | clean |
http://passport.weibo.com/visitor/visitor?a=enter&url=http%3a%2f%2fweibo.com%2ffanshuai&_rand=1409084259.6992 | 200 OK Content-Length: 4591 Content-Type: text/html | clean |
http://passport.weibo.com/js/visitor/mini.js | 200 OK Content-Length: 28163 Content-Type: application/javascript | clean |
http://ufane.com/instagram | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 26 Aug 2014 20:17:42 GMT Location: http://instagram.com/ufane Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 Set-Cookie: NTESLOFTSI=5A4B9566642C31B45C4E45324534350A.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fcustompage.do%3Fmydomain%3Dufane.com%26%26url%3Dinstagram|; Domain=.lofter.com; Expires=Wed, 27-Aug-2014 20:17:42 GMT; Path=/ | clean |
http://instagram.com/ufane | 200 OK Content-Length: 22160 Content-Type: text/html | clean |
http://instagram.com//d36xtkk24g8jdx.cloudfront.net/bluebar/2bc7c50/scripts/jquery.js/ | 404 NOT FOUND Content-Length: 11328 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ufane.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 26 Aug 2014 20:17:22 GMT
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html;charset=UTF-8
Set-Cookie: NTESLOFTSI=DD96D5389E925AB226B050B39598333A.lofter1-8010; Domain=.www.lofter.com; Path=/
Set-Cookie: firstentry=%2Fblogindex.do%3Fmydomain%3Dufane.com%26|; Domain=.lofter.com; Expires=Wed, 27-Aug-2014 20:17:22 GMT; Path=/
GET / HTTP/1.1
Host: ufane.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 26 Aug 2014 20:17:22 GMT
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Type: text/html;charset=UTF-8
Set-Cookie: NTESLOFTSI=DD96D5389E925AB226B050B39598333A.lofter1-8010; Domain=.www.lofter.com; Path=/
Set-Cookie: firstentry=%2Fblogindex.do%3Fmydomain%3Dufane.com%26|; Domain=.lofter.com; Expires=Wed, 27-Aug-2014 20:17:22 GMT; Path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: ufane.com
Referer: http://www.google.com/search?q=ufane.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ufane.com
Referer: http://www.google.com/search?q=ufane.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ufane.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ufane.com/
Result: ufane.com is not infected or malware details are not published yet.
Result: ufane.com is not infected or malware details are not published yet.