Scanned pages/files
Request | Server response | Status |
http://gaystubefucking.com/ | 200 OK Content-Length: 64273 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: prettyboytube.com <!DOCTYPE html>
<html lang="en"> <head> <base target="_blank"> <meta charset="utf-8"> <title>Gays Tube Fucking - Homemade Gay Porn, Hunks XXX Movies</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="content-language" content="en" /> <meta name="Description" content="This gays tube fucking site is e ...[4540 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js | 200 OK Content-Length: 93068 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/splash.php?idzone=1007766&type=3 | 200 OK Content-Length: 5827 Content-Type: application/x-javascript | clean |
http://gaystubefucking.com//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 372 Content-Type: text/html | clean |
http://gaystubefucking.com/test404page.js | 404 Not Found Content-Length: 346 Content-Type: text/html | clean |
http://cdn.cdnjke.com/p/ero/gay/e300i.php | HTTP/1.1 302 Found Cache-Control: max-age=2592000 Connection: close Date: Tue, 16 Sep 2014 06:44:34 GMT Location: http://adspaces.ero-advertising.com/adspace/273932.js Server: nginx/1.4.6 Content-Length: 0 Content-Type: text/html Expires: Thu, 16 Oct 2014 06:44:34 GMT X-Powered-By: PHP/5.3.27 | clean |
http://adspaces.ero-advertising.com/adspace/273932.js | 500 Can't connect to adspaces.ero-advertising.com:80 (Ð Ñоединении оÑказано) Content-Length: 222 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gaystubefucking.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 06:44:32 GMT
Server: nginx/1.4.2
Content-Type: text/html
Set-Cookie: from=noref; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: lfrom=noref; expires=Tue, 23-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: idcheck=1410849872; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: index_page=1; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
X-Powered-By: PHP/5.3.27
GET / HTTP/1.1
Host: gaystubefucking.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 06:44:32 GMT
Server: nginx/1.4.2
Content-Type: text/html
Set-Cookie: from=noref; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: lfrom=noref; expires=Tue, 23-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: idcheck=1410849872; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
Set-Cookie: index_page=1; expires=Wed, 17-Sep-2014 06:44:32 GMT; path=/
X-Powered-By: PHP/5.3.27
Second query (visit from search engine):
GET / HTTP/1.1
Host: gaystubefucking.com
Referer: http://www.google.com/search?q=gaystubefucking.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gaystubefucking.com
Referer: http://www.google.com/search?q=gaystubefucking.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gaystubefucking.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gaystubefucking.com/
Result: gaystubefucking.com is not infected or malware details are not published yet.
Result: gaystubefucking.com is not infected or malware details are not published yet.