Scanned pages/files
Request | Server response | Status |
http://jizzbo.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 02 Sep 2014 18:07:57 GMT Location: http://www.jizzbo.com/ Server: nginx/1.4.4 Vary: Accept-Encoding Content-Length: 230 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: RNLBSERVERID=ded1414; path=/ | clean |
http://www.jizzbo.com/ | 200 OK Content-Length: 55708 Content-Type: text/html | clean |
http://www.jizzbo.com/xmoov_flv/assets/javascript/swfobject.js | 200 OK Content-Length: 6880 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/jquery-1.7.1.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/knockout-2.2.1.js | 200 OK Content-Length: 40939 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/rating/js/ratingjq.js | 200 OK Content-Length: 2669 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/default.js | 200 OK Content-Length: 19693 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/contentlist2.js | 200 OK Content-Length: 10774 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/jquery.lazyload.js | 200 OK Content-Length: 7868 Content-Type: application/x-javascript | clean |
http://promo.badoink.com/youjizz/custom_text.js | 200 OK Content-Length: 1772 Content-Type: text/javascript | clean |
http://www.jizzbo.com/js/jquery.dropdown.js | 200 OK Content-Length: 1107 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){ $.fn.extend({ dropdown: function(o){ var o = $.extend({ maxHeight: 600, buffer: 100, delay: 500 }, o); return this.each(function(){ var li = $(this), a = li.find('a'), liheight = li.height(), ul = li.find('ul').css({ top: liheight }), range = ul.height() - o.maxHeight; if(!ul.length){ return; } li.hoverdelay(function(){ ul.stop(true,true).slideDown('fast'); a.addClass( a.removeClass('hover'); }); }, { delay: o.delay }); if(range <= 0){ return; } var litop = li.offset().top; li.mousemove(function(e){ var pos = e.pageY - litop - liheight - o.buffer, ratio = Math.max(pos, 0) / (o.maxHeight - liheight - 2 * o.buffer); ul.css({ top: liheight - (range * Math.min(ratio, 1)) }); }); }); } }); })(jQuery); Antivirus reports:
| ||
http://www.jizzbo.com/js/jquery.autocomplete.js | 200 OK Content-Length: 13850 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/jquery.json-2.4.min.js | 200 OK Content-Length: 2259 Content-Type: application/x-javascript | clean |
http://www.jizzbo.com/js/localdata.js | 200 OK Content-Length: 9396 Content-Type: application/x-javascript | clean |
http://jizzbo.com/signup.php | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 02 Sep 2014 18:08:01 GMT Location: http://www.jizzbo.com/signup.php Server: nginx/1.4.4 Vary: Accept-Encoding Content-Length: 240 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: RNLBSERVERID=ded1715; path=/ | clean |
http://www.jizzbo.com/signup.php | 200 OK Content-Length: 19192 Content-Type: text/html | clean |
http://www.jizzbo.com/gfx/social/jquery.uniform.min.js | 200 OK Content-Length: 9323 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jizzbo.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 02 Sep 2014 18:07:57 GMT
Location: http://www.jizzbo.com/
Server: nginx/1.4.4
Vary: Accept-Encoding
Content-Length: 230
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: RNLBSERVERID=ded1414; path=/
...230 bytes of data.
GET / HTTP/1.1
Host: jizzbo.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Tue, 02 Sep 2014 18:07:57 GMT
Location: http://www.jizzbo.com/
Server: nginx/1.4.4
Vary: Accept-Encoding
Content-Length: 230
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: RNLBSERVERID=ded1414; path=/
...230 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jizzbo.com
Referer: http://www.google.com/search?q=jizzbo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jizzbo.com
Referer: http://www.google.com/search?q=jizzbo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jizzbo.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jizzbo.com/
Result: jizzbo.com is not infected or malware details are not published yet.
Result: jizzbo.com is not infected or malware details are not published yet.