Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=amateurs-gone-wild.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://amateurs-gone-wild.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: brain-friends.com
Result:
GET / HTTP/1.1
Host: brain-friends.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: brain-friends.com
Referer: http://www.google.com/search?q=brain-friends.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: brain-friends.com
Referer: http://www.google.com/search?q=brain-friends.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://amateurs-gone-wild.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 21 Sep 2014 05:33:31 GMT Location: http://www.amateurs-gone-wild.com/ Server: Apache/1.3.41 (Unix) mod_deflate/1.0.21 PHP/4.4.4 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.amateurs-gone-wild.com/ | 200 OK Content-Length: 187577 Content-Type: text/html | suspicious |
Suspicious code found ...[2668 bytes skipped]... id="trades">225. <A HREF="/cgi-bin/atx/out.cgi?id=636&trade=http://www.hiddenvoyeurspy.com" id="a13" target="_blank">Amateur Girls (hot!)</A></div> <div id="trades">226. <A HREF="/cgi-bin/atx/out.cgi?id=277&trade=http://www.primematures.com" id="a13" target="_blank">Older Women Porn</A></div> <div id="trades">227. <A HREF="/cgi-bin/atx/out.cgi?id=567&trade=http://www.swapsmut.com" id="a13" target="_blank">Free Voyeur Web</A></div> <div id="trades">228. <A HREF="/cgi-bin/atx/out.cgi?id=340&trade=http://www.angelslinks.com" id="a13" target="_blank">Angels Teens (HOT!)</A></div> <div id="trades">229. <A HREF="/cgi-bin/atx/out.cgi?id=227&trade=http://www.elephantlist.com" id="a13" target="_blank">Top Amateur Porn</A></div> <div id="trades">230. <A HREF="http://www.ho ...[1388 bytes skipped]... | ||
http://www.amateurs-gone-wild.com/cgi-bin/atx/out.cgi?gr=mummy&l=mummy | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:35 GMT Location: http://www.sexy-photos.net/amateurs.php Server: Apache/1.3.41 (Unix) mod_deflate/1.0.21 PHP/4.4.4 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: atref=nocookie$$; path=/; Set-Cookie: atexc=0,1,2,3,4,5,6,7,464,$$; path=/; | clean |
http://www.sexy-photos.net/amateurs.php | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 21 Sep 2014 05:33:35 GMT Location: http://www.sexy-photos.net/amateurs/ Server: Apache Content-Length: 244 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.sexy-photos.net/amateurs/ | 200 OK Content-Length: 157332 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: amateurs-gone-wild.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <html> <head> <title>Amateur (Ex)Girlfriends Sexy Photos</title> <link rel="stylesheet" rev="stylesheet" type="text/css" href="/style.css"> <link rel="shortcut icon" href="/favicon.ico"> <link rel="apple-touch-icon ...[4497 bytes skipped]... | ||
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://www.amateurs-gone-wild.com/te3/out.php?id=youngheaven.com | 404 Not Found Content-Length: 335 Content-Type: text/html | clean |
http://www.amateurs-gone-wild.com/test404page.js | 200 OK Content-Length: 102731 Content-Type: text/html | suspicious |
Suspicious code found ...[2668 bytes skipped]... id="trades">225. <A HREF="/cgi-bin/atx/out.cgi?id=636&trade=http://www.hiddenvoyeurspy.com" id="a13" target="_blank">Amateur Girls (hot!)</A></div> <div id="trades">226. <A HREF="/cgi-bin/atx/out.cgi?id=277&trade=http://www.primematures.com" id="a13" target="_blank">Older Women Porn</A></div> <div id="trades">227. <A HREF="/cgi-bin/atx/out.cgi?id=567&trade=http://www.swapsmut.com" id="a13" target="_blank">Free Voyeur Web</A></div> <div id="trades">228. <A HREF="/cgi-bin/atx/out.cgi?id=340&trade=http://www.angelslinks.com" id="a13" target="_blank">Angels Teens (HOT!)</A></div> <div id="trades">229. <A HREF="/cgi-bin/atx/out.cgi?id=227&trade=http://www.elephantlist.com" id="a13" target="_blank">Top Amateur Porn</A></div> <div id="trades">230. <A HREF="http://www.ho ...[1388 bytes skipped]... | ||
http://www.amateurs-gone-wild.com/cgi-bin/atx/out.cgi?gr=homeclip&l=homeclip | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:38 GMT Location: http://www.angelslinks.com Server: Apache/1.3.41 (Unix) mod_deflate/1.0.21 PHP/4.4.4 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: atref=nocookie$$; path=/; Set-Cookie: atexc=0,1,2,3,4,5,6,7,340,$$; path=/; | clean |
http://www.angelslinks.com/ | 200 OK Content-Length: 108945 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.amateurs-gone-wild.com <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML//EN">
<html><head> <meta name="msvalidate.01" content="3B6ACB2D06505D9EEAED72D6A9970869" /> <meta name="google-site-verification" content="27BLsAHTXLLhp0Fs3kiZAm45D8PReowROLY7nReUe4k" /> <title>Teen Angels, Free Porn, Teen XXX, Freexxx, Angel Sex, Sexy Teens, Naked Girls - Angels Links</title> <meta name="description" content="The Hottest Free Teen ...[4466 bytes skipped]... | ||
http://www.angelslinks.com/cgi-bin/at3/out.cgi?s=100&l=submit | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:39 GMT Location: http://www.girlfriendvideos.com/ Server: Apache Content-Type: text/html; charset=iso-8859-1 Set-Cookie: atexc=25,$#; path=/; | clean |
http://www.girlfriendvideos.com/ | 200 OK Content-Length: 113971 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.amateurs-gone-wild.com <html>
<head> <title>Girlfriend Videos - Free User-Submitted Homemade Sex Videos</title> <meta name="description" content="Free User-Submitted Homemade Sex Videos"> <style> body { font-family: arial; margin-top: 10px; margin-bottom: 8px; margin-left: 25px; margin-right: 25px; } a:link { color: #134376; } a:visited { ...[4290 bytes skipped]... | ||
http://www.girlfriendvideos.com//s7.addthis.com/js/300/addthis_widget.js/ | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:42 GMT Location: http://www.girlfriendvideos.com/ Server: nginx Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.girlfriendvideos.com/test404page.js | HTTP/1.1 404 Not Found Connection: close Date: Sun, 21 Sep 2014 05:33:43 GMT Location: http://www.girlfriendvideos.com/ Server: nginx Content-Length: 216 Content-Type: text/html; charset=iso-8859-1 | clean |
https://apis.google.com/js/platform.js | 200 OK Content-Length: 36471 Content-Type: application/javascript | clean |
http://www.amateurs-gone-wild.com/cgi-bin/at3/out.cgi?id=13&tag=thumbs1&trade=http://www.18teenieshub.com/ | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:43 GMT Location: http://www.18teenieshub.com/ Server: Apache/1.3.41 (Unix) mod_deflate/1.0.21 PHP/4.4.4 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: atexc=13,$#; path=/; | clean |
http://www.18teenieshub.com/ | 200 OK Content-Length: 135376 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.8teenxxx.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <script type="text/javascript"> <!-- document.cookie='atref=noref$#; path=/;' // --> </script> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <meta name="description ...[4388 bytes skipped]... | ||
http://www.18teenieshub.com/js/process.js | 200 OK Content-Length: 7864 Content-Type: application/javascript | clean |
http://www.amateurs-gone-wild.com/cgi-bin/at3/out.cgi?id=13&tag=thumbs1&trade=http://www.18teenieshub.com/index.php | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:45 GMT Location: http://www.18teenieshub.com/index.php Server: Apache/1.3.41 (Unix) mod_deflate/1.0.21 PHP/4.4.4 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: atexc=13,$#; path=/; | clean |
http://www.18teenieshub.com/index.php | 200 OK Content-Length: 135376 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.8teenxxx.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <script type="text/javascript"> <!-- document.cookie='atref=noref$#; path=/;' // --> </script> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <meta name="description ...[4388 bytes skipped]... | ||
http://www.18teenieshub.com/cgi-bin/at3/out.cgi?id=33&tag=htop&trade=http://www.8teenxxx.com/ | HTTP/1.1 302 Found Connection: close Date: Sun, 21 Sep 2014 05:33:46 GMT Location: http://www.8teenxxx.com/ Server: Apache Content-Type: text/html; charset=iso-8859-1 Set-Cookie: atexc=33,$#; path=/; | malicious |
http://www.8teenxxx.com/ | 200 OK Content-Length: 178736 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: watchmynewgf.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <script type="text/javascript"> <!-- document.cookie='atref=noref$$; path=/;' // --> </script> <script type="text/javascript"> <!-- document.cookie='atexc=0,1,2,3,4,5,6,7,$$; path=/;' // --> ...[4424 bytes skipped]... | ||
http://media.8teenxxx.com/js/process.js | 200 OK Content-Length: 7859 Content-Type: application/javascript | clean |
https://ads.exoclick.com/ads.js | 200 OK Content-Length: 401 Content-Type: text/javascript | clean |
http://banners.bookofsex.com/go/page/js_im_box_v2?lang=english&plain_text=1&skip_lpo=1&delay=1&theme=r&dcb=bookofsex.com&find_sex=2&looking_for_person=2&photo=3&explicit=1&no_rating=30&no_flash=1&page=landingx&land=member_video_reg_01?model_id=18&pid=g37510-ppc.sub103x235bookofsex2 | 200 OK Content-Length: 6037 Content-Type: text/html | clean |