Scanned pages/files
Request | Server response | Status |
http://ebonyxxxtubes.com/ | 200 OK Content-Length: 86515 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.trafficholder.com ...[4085 bytes skipped]... class="f_disc"> FRIENDS: <a href="http://tubesexebony.com/">Tube Sex Ebony</a> | <p class="disc">All models were at least 18 years old when they were photographed. All images on this website are licensed and comply with 18 USC 2257</p> <p class="friends"> © Copyright 2013 ebonyxxxtubes.com | <a href="http://awmcj.net/" >Webmaster</a> | By traffic <a href="http://www.trafficholder.com/" >TH</a></p> </div> </div> </div> <script type="text/javascript" src="http://syndication.exoclick.com/splash.php?cat=115&idsite=188563&idzone=499309&login=cjtube&type=4"></script> <script src="http://pu.plugrush.com/29jo.js" type="text/javascript"></script> <script type="text/javascript" src="http://syndication.exoclick.com/splash.php?cat=115&idsite=188563&idzone ...[150 bytes skipped]... | ||
http://syndication.exoclick.com/ads.php?type=468x60&login=cjtube&cat=115&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=499313&idsite=188563 | 200 OK Content-Length: 642 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/ads.php?type=300x250&login=cjtube&cat=115&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=499187&idsite=188563 | 200 OK Content-Length: 645 Content-Type: text/javascript | clean |
http://adspaces.ero-advertising.com/adspace/231828.js | 200 OK Content-Length: 1543 Content-Type: application/javascript | clean |
http://syndication.exoclick.com/splash.php?cat=115&idsite=188563&idzone=499309&login=cjtube&type=4 | 200 OK Content-Length: 4489 Content-Type: text/html | clean |
http://syndication.exoclick.com/test404page.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
http://pu.plugrush.com/29jo.js | 200 OK Content-Length: 3544 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/splash.php?cat=115&idsite=188563&idzone=499315&login=cjtube&type=3 | 200 OK Content-Length: 5828 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ebonyxxxtubes.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Sep 2014 23:21:44 GMT
Server: nginx/1.4.2
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: from=noref; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: lfrom=noref; expires=Sat, 27-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: idcheck=1411255303; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: index_page=1; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: ebonyxxxtubes.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 20 Sep 2014 23:21:44 GMT
Server: nginx/1.4.2
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: from=noref; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: lfrom=noref; expires=Sat, 27-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: idcheck=1411255303; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
Set-Cookie: index_page=1; expires=Sun, 21-Sep-2014 23:21:43 GMT; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: ebonyxxxtubes.com
Referer: http://www.google.com/search?q=ebonyxxxtubes.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ebonyxxxtubes.com
Referer: http://www.google.com/search?q=ebonyxxxtubes.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ebonyxxxtubes.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ebonyxxxtubes.com/
Result: ebonyxxxtubes.com is not infected or malware details are not published yet.
Result: ebonyxxxtubes.com is not infected or malware details are not published yet.