Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=all-sex-mature.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.all-sex-mature.com/ | 200 OK Content-Length: 189341 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: trafficholder.com ...[4153 bytes skipped]... 0</td> <td width="400" class="a1"><a href="/tp/out.php?link=top&to=bestbondagevideo.com">MATURE PORN</a> 0</td> <td width="400" class="a1"><a href="/tp/out.php?link=top&to=maturepornlovers.com">Mature Porn Lovers</a> 0</td> </tr> </table> </p> <p align="center"><a href="http://trafficholder.com/aff.php?bestallporn"><img src="th.gif" alt="trafficholder.com - Buy and Sell Adult Traffic" border="0" width="0" height="0" /></a></p> <p align="center"><a class=four href="/tp/trade.php"> trade</a></p> </center> </div> </div> </BODY> </HTML> | ||
http://www.all-sex-mature.com/test.js | 200 OK Content-Length: 6137 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: hit.trafficholder.com if(typeof(yui_niche) != "undefined")
{ exoUrl = "http://hit.trafficholder.com/in/in.php?bestallporn-pics_cartoon"; } else { exoUrl = "http://hit.trafficholder.com/in/in.php?bestallporn-pics_cartoon"; } document.cookie = "visited=1;max-age=" + 60 * 60 * 24; var cookieName = ''; var baseDomain = ''; eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toSt ...[3603 bytes skipped]... Decoded script: var _top=null;function getPuId(){return"ad_"+Math.floor(89999999*Math.random()+10000000)}function addEvent(obj,type,fn){if(obj.addEventListener){obj.addEventListener(type,fn,false)}else if(obj.attachEvent){obj["e"+type+fn]=fn;obj[type+fn]=function(){obj["e"+type+fn](window.event)};obj.attachEvent("on"+type,obj[type+fn])}else{obj["on"+type]=obj["e"+type+fn]}}Date.prototype.addHours=function(h){this.setHours(this.getHours()+h);return this};function set ...[17074 bytes skipped]... | ||
http://www.all-sex-mature.com/mr.js | 200 OK Content-Length: 0 Content-Type: application/javascript | clean |
http://www.all-sex-mature.com//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 371 Content-Type: text/html | clean |
http://www.all-sex-mature.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
https://ads.exoclick.com/ads.js | 200 OK Content-Length: 401 Content-Type: text/javascript | clean |
http://ads.adxpansion.com/public/js/showads.php?zone_id=33790&ver=1 | 200 OK Content-Length: 2735 Content-Type: text/javascript | clean |
http://static.clickpapa.com/c.js | 200 OK Content-Length: 5559 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: all-sex-mature.com
Result:
GET / HTTP/1.1
Host: all-sex-mature.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: all-sex-mature.com
Referer: http://www.google.com/search?q=all-sex-mature.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: all-sex-mature.com
Referer: http://www.google.com/search?q=all-sex-mature.com
Result:
The result is similar to the first query. There are no suspicious redirects found.