Scanned pages/files
Request | Server response | Status |
http://weiliangdingdan.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:28 GMT Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/ Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:28 GMT Location: http://weiduliang.lofter.com/?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=52D5831B61915483AA552BBC8CD7AFCD.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dweiliangdingdan.com%26path%3D%2F|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:28 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QWFOivWC1ROjasAg==; expires=Mon, 14-Sep-15 22:21:28 GMT; domain=lofter.com; path=/ | clean |
http://weiduliang.lofter.com/?mydomainr=true | 200 OK Content-Length: 13552 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/pagelayer/pagelayer.js?0005 | 200 OK Content-Length: 26075 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/rsc/js/jquery-1.6.2.min.js | 200 OK Content-Length: 91572 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/rsc/js/themecommon.js?0008 | 200 OK Content-Length: 7459 Content-Type: application/x-javascript | clean |
http://analytics.163.com/ntes.js | 200 OK Content-Length: 19650 Content-Type: application/x-javascript | clean |
http://weiliangdingdan.com/view | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:37 GMT Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/view Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/view | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:38 GMT Location: http://weiduliang.lofter.com/view?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=D118A07A9D54F54B14BA8A79149C6533.lofter14-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dweiliangdingdan.com%26path%3D%2Fview|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:38 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QWFPJAGwo1O6r8Ag==; expires=Mon, 14-Sep-15 22:21:38 GMT; domain=lofter.com; path=/ | clean |
http://weiduliang.lofter.com/view?mydomainr=true | 200 OK Content-Length: 57796 Content-Type: text/html | clean |
http://l.bst.126.net/s/core.js?c6c3508aff26ef8fd4afbb966d6c63a7 | 200 OK Content-Length: 85344 Content-Type: application/x-javascript | clean |
http://l.bst.126.net/s/pt_page_archive.js?d6894f8fe490c0f8d4e06591b616b20a | 200 OK Content-Length: 75323 Content-Type: application/x-javascript | clean |
http://weiliangdingdan.com/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:47 GMT Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/test404page.js Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:48 GMT Location: http://weiduliang.lofter.com/test404page.js?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=76FDCEC50F279751469E7C18382CCDE7.blog198-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dweiliangdingdan.com%26path%3D%2Ftest404page.js|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:48 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QWFPymBw+EOkEAAg==; expires=Mon, 14-Sep-15 22:21:48 GMT; domain=lofter.com; path=/ | clean |
http://weiduliang.lofter.com/test404page.js?mydomainr=true | 404 Not Found Content-Length: 6167 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://l.bst.126.net/rsc/js/theme/r/pagephotoshow.min.js?0002 | 200 OK Content-Length: 54020 Content-Type: application/x-javascript | clean |
http://weiliangdingdan.com/rss | 200 OK Content-Length: 6957 Content-Type: text/xml | clean |
http://weiliangdingdan.com/post/41c83d_178ec05 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:52 GMT Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/post/41c83d_178ec05 Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/post/41c83d_178ec05 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:52 GMT Location: http://weiduliang.lofter.com/post/41c83d_178ec05?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=69AF3346368A60672CD910700947596D.lofter0-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dweiliangdingdan.com%26path%3D%2Fpost%2F41c83d_178ec05|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:52 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QWFQCf8y1IOioBAg==; expires=Mon, 14-Sep-15 22:21:52 GMT; domain=lofter.com; path=/ | clean |
http://weiduliang.lofter.com/post/41c83d_178ec05?mydomainr=true | 200 OK Content-Length: 10182 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://weiduliang.lofter.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 14 Sep 2014 22:21:54 GMT Location: http://weiliangdingdan.com Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=11AA2681FAD23D228598043482D36FCE.lofter1-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fblogindex.do%3FloftBlogName%3Dweiduliang%26X-From-ISP%3D2|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:54 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QWFQKj6y1aOc+kAg==; expires=Mon, 14-Sep-15 22:21:54 GMT; domain=lofter.com; path=/ | clean |
http://weiliangdingdan.com/post/41c83d_172a52c | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:55 GMT Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/post/41c83d_172a52c Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/post/41c83d_172a52c | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:55 GMT Location: http://weiduliang.lofter.com/post/41c83d_172a52c?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=27F31C1570C60CEE92E524E3A8BDDB21.lofter14-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dweiliangdingdan.com%26path%3D%2Fpost%2F41c83d_172a52c|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:55 GMT; Path=/ Set-Cookie: usertrack=ezq0d1QWFQOptQ+IOWJCAg==; expires=Mon, 14-Sep-15 22:21:55 GMT; domain=lofter.com; path=/ | clean |
http://weiduliang.lofter.com/post/41c83d_172a52c?mydomainr=true | 200 OK Content-Length: 9952 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > | ||
http://weiliangdingdan.com/post/41c83d_1724eb2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:57 GMT Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/post/41c83d_1724eb2 Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/post/41c83d_1724eb2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 14 Sep 2014 22:21:58 GMT Location: http://weiduliang.lofter.com/post/41c83d_1724eb2?mydomainr=true Server: nginx Content-Length: 0 Content-Type: text/html;charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" Set-Cookie: NTESLOFTSI=B6CC19342E0CED8628D36B5229C79BC8.blog197-8010; Domain=.www.lofter.com; Path=/ Set-Cookie: firstentry=%2Fmydomainr.do%3FX-From-ISP%3D2%26domain%3Dweiliangdingdan.com%26path%3D%2Fpost%2F41c83d_1724eb2|; Domain=.lofter.com; Expires=Mon, 15-Sep-2014 22:21:58 GMT; Path=/ Set-Cookie: usertrack=ezq0eFQWFQax9C1UPEjdAg==; expires=Mon, 14-Sep-15 22:21:58 GMT; domain=lofter.com; path=/ | clean |
http://weiduliang.lofter.com/post/41c83d_1724eb2?mydomainr=true | 200 OK Content-Length: 10470 Content-Type: text/html | suspicious |
Hidden iFrame found. style: hidden src: http://l.bst.126.net/rsc/htm/music.html <iframe style="display:none" src="http://l.bst.126.net/rsc/htm/music.html" > |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: weiliangdingdan.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sun, 14 Sep 2014 22:21:28 GMT
Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/
Server: nginx
Content-Length: 154
Content-Type: text/html
...154 bytes of data.
GET / HTTP/1.1
Host: weiliangdingdan.com
Result:
HTTP/1.1 302 Moved Temporarily
Connection: close
Date: Sun, 14 Sep 2014 22:21:28 GMT
Location: http://www.lofter.com/mydomainr.do?domain=weiliangdingdan.com&path=/
Server: nginx
Content-Length: 154
Content-Type: text/html
...154 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: weiliangdingdan.com
Referer: http://www.google.com/search?q=weiliangdingdan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: weiliangdingdan.com
Referer: http://www.google.com/search?q=weiliangdingdan.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=weiliangdingdan.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://weiliangdingdan.com/
Result: weiliangdingdan.com is not infected or malware details are not published yet.
Result: weiliangdingdan.com is not infected or malware details are not published yet.