What is the security status of damaitu.com?

damaitu.com has a security score of 44/100, rated as Potentially Unsafe. The website may have security concerns that should be addressed.

Is damaitu.com safe to use?

Our security scan shows damaitu.com is Potentially Unsafe. SSL security issues detected. Always practice safe browsing habits.

Does damaitu.com have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 44/100, the website is rated as Potentially Unsafe. However, websites can change over time, so always use updated security software.

What is damaitu.com's trust score?

damaitu.com has a security score of 44/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

杭

Is damaitu.com Safe? Security Analysis for 杭州麦麦图创网络科技有限公司

https://damaitu.com

Check if damaitu.com is a scam or legitimate. Free security scan and reviews.

MediaChinamedium

jQueryBaidu Analyticscustom JavaScriptCSS3HTML5

Analyzed 8/4/2025Completed 5:06:29 PM

Security Score

HIGH RISK

AI Summary

趣麦麦图 is a Chinese digital content marketplace specializing in high-quality copyrighted images, poster templates, PPT and office templates, and photography materials. The platform targets designers, photographers, and office professionals seeking licensed creative assets. It offers a user upload and monetization model alongside VIP purchase options, positioning itself as a niche player in the Chinese media content market. The website is professionally designed with consistent branding and good content relevance, supporting a medium-sized business entity registered as 杭州麦麦图创网络科技有限公司. Technically, the site employs common web technologies such as jQuery and Baidu Analytics, with custom JavaScript and CSS for UI. While the site loads moderately fast and has good SEO optimization, mobile optimization and accessibility are basic and could be improved. The absence of a detected CMS suggests a custom-built platform. Hosting details are not disclosed. From a security perspective, the site uses HTTPS for external resources but lacks visible security headers like CSP or HSTS, which lowers its security posture. No sensitive data exposure or vulnerable libraries were detected in the HTML content. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. WHOIS data is missing, which raises concerns about domain registration transparency and trustworthiness. Overall, the website is functional and professional but would benefit from enhanced security measures, improved privacy compliance, and better transparency in domain registration to increase trust and reduce risk.

Detected Technologies

jQueryBaidu Analyticscustom JavaScriptCSS3HTML5

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

趣麦麦图 operates in the Chinese digital media sector, focusing on licensed creative content distribution. Its business model combines content sales with user-generated uploads and VIP memberships, creating multiple revenue streams. The platform's competitive advantage lies in its curated high-quality assets and localized Chinese market focus. The presence of an official ICP license and QQ group indicates regulatory compliance and community engagement. However, the lack of detailed WHOIS data and limited contact information may hinder trust from some users. The company appears to maintain partnerships with related content providers such as 觅元素. Growth potential exists through expanding mobile optimization and enhancing privacy and security features to meet evolving regulatory standards.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

2*****@qq.com

Security Posture Analysis

Comprehensive Security Assessment

The website demonstrates a moderate security maturity level. HTTPS is used for external scripts, but no explicit security headers were detected, which exposes the site to potential clickjacking, XSS, and other web attacks. The absence of a cookie consent mechanism and detailed privacy compliance measures indicates gaps in GDPR and similar regulations adherence. No incident response or vulnerability disclosure policies are published, limiting transparency and preparedness. The missing WHOIS data reduces domain trust and could be a vector for phishing or impersonation risks. Overall, while no critical vulnerabilities are evident, the site should implement standard security headers, privacy controls, and incident response documentation to improve its security posture and compliance.

Strategic Recommendations

Priority Actions for Security Improvement

Implement comprehensive security headers including Content-Security-Policy, X-Frame-Options, and Strict-Transport-Security.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

杭州麦麦图创网络科技有限公司

Description:

趣麦麦图是一家高品质版权图片交易平台,提供正版高清素材,海报模板,PPT模板,各类办公模板,高清海量摄影图,美陈雕塑,高清背景大全,psd,ai,cdr素材免费下载，想要买图卖图轻松赚钱就来趣麦麦图。

Key Services:

copyrighted image salesposter templatesPPT templatesoffice templatesphotography imagesuser content upload and monetization

Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:

jQueryBaidu Analyticscustom JavaScriptCSS3HTML5

Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:

55/100

Best Practices:

HTTPS usage implied by external script URLs (https)
No exposed sensitive data in HTML

Analytics & Tracking

Services:

Baidu Analytics

Tracking Level:moderate

Privacy Compliance:basic

Advertising & Marketing

Tracking Pixels:

Baidu Analytics

Marketing Tools:

aizhantj.com tracking scripts

Transparency Level:basic

Website Quality Assessment

Design Quality:good

User Experience:good

Content Relevance:good

Navigation Clarity:good

Professionalism:good

Trustworthiness:moderate

Key Observations

Website is fully accessible with rich content in Chinese language.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

15/100

Score

Critical sector without clear security compliance

HIGH

Detected sectors: digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

90/100

Score

Mixed Content Detected

MEDIUM

2 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 2 of 4 security checks due to time constraints

Certificate Details

Subject:www.damaitu.com

Issuer:Encryption Everywhere DV TLS CA - G2

Valid Until:1/15/2026 (164 days)

SANs:www.damaitu.com, damaitu.com

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

45/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Expires Soon

HIGH

Domain expires in 14 days

Domain Transfer Lock Not Enabled

MEDIUM

Domain can be transferred without authorization

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

No DMARC Record

MEDIUM

DMARC policy not configured

Domain Registration Details

Domain Age

2 years(established)

Expiry Risk

high(expired)

Protection Level

noneDNSSEC OFF

Suspicious Indicators Detected

•No domain protection locks enabled

DNS Records

A Records:121.40.38.213

Name Servers:

dns11.hichina.com

dns12.hichina.com

DNSSEC Status

DNSSEC Not Enabled

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

20/100

Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

Service Exposed: SSH

MEDIUM

Port 22 (SSH) is publicly accessible - SSH - Secure but can be brute-forced

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website uses a traditional web stack with jQuery and custom JavaScript, supported by Baidu Analytics for user tracking. The HTML and CSS are valid and well-structured, supporting good SEO practices. However, mobile optimization is basic, and accessibility features are limited. No modern frontend frameworks or CMS platforms were detected, suggesting a custom-built solution. Performance is moderate, with external resources loaded over HTTPS. The site relies on third-party domains for icons and tracking, which should be regularly audited for security. Technical debt appears manageable but could be reduced by adopting modern frameworks and improving responsive design.

Analyze Another Website

Is damaitu.com a Scam? Security Check Results - 杭州麦麦图创网络科技有限公司 Reviews

Is damaitu.com Safe? Security Analysis for 杭州麦麦图创网络科技有限公司

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Extracted Contact Information

Email Addresses (1)

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing Strict-Transport-Security header

Missing X-Frame-Options header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Policy found

No Cookie Consent Banner found

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

No email authentication configured

🏆SSL/TLS Security

SSL/TLS Security

Mixed Content Detected

Partial SSL/TLS Assessment

Certificate Details

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

Domain Expires Soon

Domain Transfer Lock Not Enabled

Domain Delete Lock Not Enabled

No DMARC Record

Domain Registration Details

DNS Records

DNSSEC Status

⚡Network Security

Network Security

High-Risk Service Exposed: FTP

Service Exposed: SSH

🔧Technical Analysis

Technical Analysis

Additional Findings