Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=amateurdumper.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://amateurdumper.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://amateurdumper.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 21 Sep 2014 07:36:37 GMT Location: http://www.amateurdumper.com/ Server: cloudflare-nginx Content-Type: text/html; charset=iso-8859-1 CF-RAY: 16d497be47160899-FRA Set-Cookie: __cfduid=d3bd28695a392fe470f5c28622402c1511411284996844; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.amateurdumper.com; HttpOnly | clean |
http://www.amateurdumper.com/ | 200 OK Content-Length: 149674 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.cuckold69.com <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>Homemade Sex :: Amateur Sex, Amateur Porn Videos - Amateur Dumper</title> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <meta name="title" content="Homemade Sex" /> ...[4222 bytes skipped]... | ||
http://www.amateurdumper.com/webmasters/mootools.svn.js | 200 OK Content-Length: 190750 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var MooTools = { version: '1.11' }; function $defined(obj){ return (obj != undefined); }; function $type(obj){ if (!$defined(obj)) return false; if (obj.htmlElement) return 'element'; var type = typeof obj; if (type == 'object' && obj.nodeName){ switch(obj.nodeType){ case 1: return 'element'; case 3: return (/\S/).test(obj.nodeValue) ? 'textnode' : ' obj[i] = {}; var hide = (i != index) || (this.options.alwaysHide && (el.offsetHeight > 0)); this.fireEvent(hide ? 'onBackground' : 'onActive', [this.togglers[i], el]); for (var fx in this.effects) obj[i][fx] = hide ? 0 : el[this.effects[fx]]; }, this); return this.start(obj); }, showThisHideOpen: function(index){return this.display(index);} }); Fx.Accordion = Accordion; Antivirus reports:
| ||
http://www.amateurdumper.com/js/ppunder.js | 200 OK Content-Length: 5299 Content-Type: application/x-javascript | clean |
http://syndication.exoclick.com/ads.php?type=728x90&login=myxvids&cat=97&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=0&text_only=0&show_thumb=0&idzone=711309&idsite=83941 | 200 OK Content-Length: 643 Content-Type: text/javascript | clean |
https://ads.exoclick.com/ads.js | 200 OK Content-Length: 401 Content-Type: text/javascript | clean |
http://widgets.amung.us/classic.js | 200 OK Content-Length: 9043 Content-Type: application/x-javascript | clean |
http://syndication.exoclick.com/splash.php?cat=97&idsite=83941&idzone=593857&login=myxvids&type=4 | 200 OK Content-Length: 4499 Content-Type: text/html | clean |
http://syndication.exoclick.com/test404page.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: amateurdumper.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 21 Sep 2014 07:36:37 GMT
Location: http://www.amateurdumper.com/
Server: cloudflare-nginx
Content-Type: text/html; charset=iso-8859-1
CF-RAY: 16d497be47160899-FRA
Set-Cookie: __cfduid=d3bd28695a392fe470f5c28622402c1511411284996844; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.amateurdumper.com; HttpOnly
GET / HTTP/1.1
Host: amateurdumper.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 21 Sep 2014 07:36:37 GMT
Location: http://www.amateurdumper.com/
Server: cloudflare-nginx
Content-Type: text/html; charset=iso-8859-1
CF-RAY: 16d497be47160899-FRA
Set-Cookie: __cfduid=d3bd28695a392fe470f5c28622402c1511411284996844; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.amateurdumper.com; HttpOnly
Second query (visit from search engine):
GET / HTTP/1.1
Host: amateurdumper.com
Referer: http://www.google.com/search?q=amateurdumper.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: amateurdumper.com
Referer: http://www.google.com/search?q=amateurdumper.com
Result:
The result is similar to the first query. There are no suspicious redirects found.