Scanned pages/files
| Request | Server response | Status |
http://8jet.com/ | 200 OK Content-Length: 202047 Content-Type: text/html | clean |
http://mobile.juicyads.com/js/jam_min.js | 200 OK Content-Length: 21397 Content-Type: application/x-javascript | clean |
http://8jet.com/r/click.php?id=3576&u=%2Fsextube%2Ftied_up_porno_xxx_movies.shtml | HTTP/1.1 302 Found Connection: close Date: Sat, 26 Jul 2014 05:39:17 GMT Location: /sextube/tied_up_porno_xxx_movies.shtml Server: Apache/2 Vary: User-Agent Content-Length: 0 Content-Type: text/html Set-Cookie: tgpx_click=3576; expires=Sun, 27-Jul-2014 05:39:17 GMT; path=/ X-Powered-By: PHP/5.4.28 | clean |
http://8jet.com/sextube/tied_up_porno_xxx_movies.shtml | 200 OK Content-Length: 300517 Content-Type: text/html | clean |
http://8jet.com/free9/click.php?id=3553232&l=tubesq&u=http%3A%2F%2Fwww.pornerbros.com%2F156551%2Fblonde-milf-hanka-is-tied-up-and-fondled.html%3Fwmid%3D341%26sid%3D0%26sd%3D1 | HTTP/1.1 302 Found Connection: close Date: Sat, 26 Jul 2014 05:39:20 GMT Location: /cgi-bin/a2/out.cgi?s=30&l=tubesq&c=1&u=http://www.pornerbros.com/156551/blonde-milf-hanka-is-tied-up-and-fondled.html?wmid=341&sid=0&sd=1 Server: Apache/2 Vary: User-Agent Content-Length: 0 Content-Type: text/html Set-Cookie: tgpx_click=3553232; expires=Sun, 27-Jul-2014 05:39:20 GMT; path=/ X-Powered-By: PHP/5.4.28 | clean |
http://8jet.com/cgi-bin/a2/out.cgi?s=30&l=tubesq&c=1&u=http://www.pornerbros.com/156551/blonde-milf-hanka-is-tied-up-and-fondled.html?wmid=341&sid=0&sd=1 | HTTP/1.1 302 Found Connection: close Date: Sat, 26 Jul 2014 05:39:21 GMT Location: http://www.pornerbros.com/156551/blonde-milf-hanka-is-tied-up-and-fondled.html?wmid=341&sid=0&sd=1 Server: Apache/2 Content-Length: 350 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: a2r=nocookie#!; path=/; Set-Cookie: a2x=1,#!; path=/; | clean |
http://www.pornerbros.com/156551/blonde-milf-hanka-is-tied-up-and-fondled.html?wmid=341&sid=0&sd=1 | 200 OK Content-Length: 86626 Content-Type: text/html | malicious |
Page code contains blacklisted domain: premiumhdv.com <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>Club Hanka: Blonde milf hanka is tied up and fondled</title> <meta name="viewport" content="initial-scale=1.0, user-scalable=yes"/> <meta name="RATING" content="RTA-5042-1996-1400-1577-RTA" /> <meta name="description" content="Sexy blonde MILF Hanka is tied up over a rafter and gets fondled and h ...[4392 bytes skipped]... Malicious iFrame found. size: 916x240 src: http://www.premiumhdv.com/bn/rotator.php?sid=16&uid=313&program=19&tour=18&tracker=9&fcats=random&enc=false&o=horizontal&elnum=3&header_color=ffffff&text_color=ffffff&link_color=f5a100&border_color=777777&back_color=0f0f0f&header_text=pornerbros+premium%3a+1080p+hd+videos%2c+premium+pornstars%2c+daily+updates This URL is marked by Yandex as suspicious <iframe src="http://www.premiumhdv.com/bn/rotator.php?sid=16&uid=313&program=19&tour=18&tracker=9&fcats=random&enc=false&o=horizontal&elnum=3&header_color=ffffff&text_color=ffffff&link_color=f5a100&border_color=777777&back_color=0f0f0f&header_text=pornerbros+premium%3a+1080p+hd+videos%2c+premium+pornstars%2c+daily+updates" width="916" height="240" scrolling="no" style="margin-left: 40px;" marginwidth="0" marginheight="0" frameborder="0" allowtransparency="true"> | ||
http://hw03.pictures.pornerbros.com/assets/20140116121216/jquery.min.js | 200 OK Content-Length: 93637 Content-Type: application/javascript | clean |
http://hw03.pictures.pornerbros.com/assets/20140116121216/jquery.autocomplete-min.js | 200 OK Content-Length: 7187 Content-Type: application/javascript | clean |
http://hw03.pictures.pornerbros.com/assets/20140116121216/boxr.js | 200 OK Content-Length: 6176 Content-Type: application/javascript | clean |
http://hw03.pictures.pornerbros.com/assets/20140116121216/frontend.js | 200 OK Content-Length: 40924 Content-Type: application/javascript | clean |
http://jwpsrv.com/library/lmEmYKklEeOGxSIACrqE1A.js | 200 OK Content-Length: 70136 Content-Type: text/javascript | clean |
http://8jet.com/content/156551.js?sd=1 | 404 Not Found Content-Length: 486 Content-Type: text/html | clean |
http://8jet.com/test404page.js | 404 Not Found Content-Length: 478 Content-Type: text/html | clean |
http://ads.adxpansion.com/public/js/showads.php?zone_id=134933&ver=1&type=jwplayer | 200 OK Content-Length: 19620 Content-Type: text/javascript | clean |
http://8jet.com/free9/click.php?id=3553309&l=tubesq&u=http%3A%2F%2Fwww.redtube.com%2F626686 | HTTP/1.1 302 Found Connection: close Date: Sat, 26 Jul 2014 05:39:28 GMT Location: /cgi-bin/a2/out.cgi?s=30&l=tubesq&c=1&u=http://www.redtube.com/626686 Server: Apache/2 Vary: User-Agent Content-Length: 0 Content-Type: text/html Set-Cookie: tgpx_click=3553309; expires=Sun, 27-Jul-2014 05:39:28 GMT; path=/ X-Powered-By: PHP/5.4.28 | clean |
http://8jet.com/cgi-bin/a2/out.cgi?s=30&l=tubesq&c=1&u=http://www.redtube.com/626686 | HTTP/1.1 302 Found Connection: close Date: Sat, 26 Jul 2014 05:39:28 GMT Location: http://www.redtube.com/626686 Server: Apache/2 Content-Length: 273 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: a2r=nocookie#!; path=/; Set-Cookie: a2x=1,#!; path=/; | clean |
http://www.redtube.com/626686 | 200 OK Content-Length: 83636 Content-Type: text/html | clean |
http://www.redtube.com/js/adframe.js | 200 OK Content-Length: 15 Content-Type: application/x-javascript | clean |
http://8jet.com/js/lib.js?v=e0a63ee5 | 404 Not Found Content-Length: 484 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 8jet.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 26 Jul 2014 05:39:11 GMT
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.4.28
GET / HTTP/1.1
Host: 8jet.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 26 Jul 2014 05:39:11 GMT
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
X-Powered-By: PHP/5.4.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: 8jet.com
Referer: http://www.google.com/search?q=8jet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 8jet.com
Referer: http://www.google.com/search?q=8jet.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=8jet.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://8jet.com/
Result: 8jet.com is not infected or malware details are not published yet.
Result: 8jet.com is not infected or malware details are not published yet.