Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: axjdwx.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, no-store
Date: Tue, 03 Mar 2015 18:15:16 GMT
Server: Microsoft-IIS/6.0
Content-Length: 74
Content-Type: text/html; charset=gb2312
X-72E-NoBeian-Transfer: True
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...74 bytes of data.
GET / HTTP/1.1
Host: axjdwx.com
Result:
HTTP/1.1 200 OK
Cache-Control: private, no-store
Date: Tue, 03 Mar 2015 18:15:16 GMT
Server: Microsoft-IIS/6.0
Content-Length: 74
Content-Type: text/html; charset=gb2312
X-72E-NoBeian-Transfer: True
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
...74 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: axjdwx.com
Referer: http://www.google.com/search?q=axjdwx.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: axjdwx.com
Referer: http://www.google.com/search?q=axjdwx.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://mymaturegranny.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 08 Sep 2014 20:56:22 GMT Location: http://www.mymaturegranny.com/ Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mymaturegranny.com/ | 200 OK Content-Length: 81549 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.fatmomtube.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <title>My Mature Granny - Mature, Granny Sex Tube</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Style-Type" content="text/css" /> & ...[4304 bytes skipped]... | ||
http://www.mymaturegranny.com/preloadimages.js | 200 OK Content-Length: 391 Content-Type: application/x-javascript | clean |
http://mymaturegranny.com/cms2/select.js | 200 OK Content-Length: 1859 Content-Type: application/x-javascript | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://mymaturegranny.com/acj/out.php?id=17&tag=toplist&trade=http://www.xgrannytube.com/main.shtml | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 08 Sep 2014 20:56:23 GMT Location: http://www.mymaturegranny.com/acj/out.php?id=17&tag=toplist&trade=http://www.xgrannytube.com/main.shtml Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mymaturegranny.com/acj/out.php?id=17&tag=toplist&trade=http://www.xgrannytube.com/main.shtml | HTTP/1.1 302 Found Connection: close Date: Mon, 08 Sep 2014 20:56:23 GMT Location: http://www.xgrannytube.com/main.shtml Server: nginx Content-Type: text/html Set-Cookie: acjcl=1; path=/ Set-Cookie: acjout=17; path=/ Set-Cookie: acjt=1410209783; path=/ | clean |
http://www.xgrannytube.com/main.shtml | HTTP/1.1 302 Found Connection: close Date: Mon, 08 Sep 2014 20:56:24 GMT Location: http://www.xgrannytube.com Server: nginx/1.2.5 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.xgrannytube.com/ | 200 OK Content-Length: 94811 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.livegranny.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <title>X Granny Tube | Mature women flash porn movies</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Style-Type" content="text/css" /> ...[4190 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://mymaturegranny.com/preloadimages.js | 200 OK Content-Length: 391 Content-Type: application/x-javascript | clean |
http://mymaturegranny.com/search/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 08 Sep 2014 20:56:25 GMT Location: http://www.mymaturegranny.com/search/ Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mymaturegranny.com/search/ | 200 OK Content-Length: 132857 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.fatmomtube.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <script type="text/javascript"> <!-- document.cookie='acjref=noref|1410209785; path=/;'; document.cookie='acjt=1410209785; path=/;'; // --> </script> ...[4292 bytes skipped]... | ||
http://www.mymaturegranny.com/cms2/select.js | 200 OK Content-Length: 1859 Content-Type: application/x-javascript | clean |
http://mymaturegranny.com/acj/out.php?id=20&tag=toplist&trade=http://www.fatmomtube.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 08 Sep 2014 20:56:26 GMT Location: http://www.mymaturegranny.com/acj/out.php?id=20&tag=toplist&trade=http://www.fatmomtube.com/ Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mymaturegranny.com/acj/out.php?id=20&tag=toplist&trade=http://www.fatmomtube.com/ | HTTP/1.1 302 Found Connection: close Date: Mon, 08 Sep 2014 20:56:26 GMT Location: http://www.fatmomtube.com/ Server: nginx Content-Type: text/html Set-Cookie: acjcl=1; path=/ Set-Cookie: acjout=20; path=/ Set-Cookie: acjt=1410209786; path=/ | malicious |
http://www.fatmomtube.com/ | 200 OK Content-Length: 118493 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.tubecharm.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <title>Fat Mom Tube | Free BBW, Fat, Mature tube porn videos</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="Content-Style-Type" content="text/css" ...[4412 bytes skipped]... | ||
http://www.fatmomtube.com/preloadimages.js | 200 OK Content-Length: 371 Content-Type: application/x-javascript | clean |
http://syndication.exoclick.com/splash.php?cat=129&idsite=92452&idzone=167995&login=alxz75&type=4 | 200 OK Content-Length: 4207 Content-Type: text/html | clean |
http://syndication.exoclick.com/test404page.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
http://mymaturegranny.com/acj/out.php?id=280&tag=toplist&trade=http://www.grannycinema.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 08 Sep 2014 20:56:27 GMT Location: http://www.mymaturegranny.com/acj/out.php?id=280&tag=toplist&trade=http://www.grannycinema.com/ Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.mymaturegranny.com/acj/out.php?id=280&tag=toplist&trade=http://www.grannycinema.com/ | HTTP/1.1 302 Found Connection: close Date: Mon, 08 Sep 2014 20:56:27 GMT Location: http://www.grannycinema.com/ Server: nginx Content-Type: text/html Set-Cookie: acjcl=1; path=/ Set-Cookie: acjout=280; path=/ Set-Cookie: acjt=1410209787; path=/ | clean |
http://www.grannycinema.com/ | 200 OK Content-Length: 99633 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.maturetubelust.com <!DOCTYPE html>
<html lang="en"> <head> <title>Granny Cinema | Mature Tube | Free Porn</title> <meta name="description" content="Daily updated free mature, granny, older women sex movies. Lots of free porn!" /> <meta name="keywords" content="free porn, porn, free movies, mature, granny, mature woman" /> <base target="_blank"> <meta http-equiv="Content-Type" content="text/ ...[4508 bytes skipped]... | ||
http://az7t8.com/js/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mymaturegranny.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mymaturegranny.com/
Result: mymaturegranny.com is not infected or malware details are not published yet.
Result: mymaturegranny.com is not infected or malware details are not published yet.