Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.purchasefollowersontwitter.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.purchasefollowersontwitter.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 14 Oct 2015 13:08:34 GMT Location: http://vcminden.de/mzmd.html?h=1546115 Server: Apache Content-Length: 306 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.premiumsexclip.com/ | 200 OK Content-Length: 91538 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: bitchcrawler.com ...[1505 bytes skipped]... ink rel="stylesheet" href="/style2.css" type="text/css" media="screen"> <script type="text/javascript" language="javascript" charset="utf-8" src="/t.js"></script> </head> <base target="_blank"> <body> <div id="wrapper"> <div id="header"> <div class="hta"><div class="htapadd"> <p> <a href="/scj/cgi/out.php?member=bitchcrawler.com"><img width="100" height="80" src="/scj/top/tt/bitchcrawler.com.jpg" /></a> <a href="/scj/cgi/out.php?member=hiporntube.com"><img width="100" height="80" src="/scj/top/tt/hiporntube.com.jpg" /></a> <a href="/scj/cgi/out.php?member=hornyelephant.com"><img width="100" height="80" src="/scj/top/tt/hornyelephahp?link=top&member=cooljizz.com">Cool Jizz</a></li> <li>76. <a href="/scj/cgi/out.php?lin ...[2645 bytes skipped]... | ||
http://www.premiumsexclip.com/t.js | 200 OK Content-Length: 11077 Content-Type: application/x-javascript | clean |
http://www.premiumsexclip.com/scj/cgi/out.php?member=bitchcrawler.com | HTTP/1.1 302 Found Connection: close Date: Tue, 16 Sep 2014 01:07:40 GMT Location: http://bitchcrawler.com/ Server: nginx/1.2.6 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Current-Click: 1 Set-Cookie: to=%7Cbitchcrawler.com; expires=Wed, 17-Sep-2014 01:07:40 GMT; path=/ Set-Cookie: vs=bitchcrawler.com; expires=Wed, 17-Sep-2014 01:07:40 GMT; path=/ X-Current-Click: nocookie X-Current-Trader: nocookie X-Powered-By: PHP/5.3.23 | malicious |
http://bitchcrawler.com/ | 200 OK Content-Length: 137379 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: heavy-r.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>FREE PORN SEX XXX TUBE</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" > <meta name="title" content="Bitch Crawler" > <meta name="description" content="Free porn XXX videos, ...[4311 bytes skipped]... | ||
http://www.bitchcrawler.com/popunder.js | 200 OK Content-Length: 2618 Content-Type: application/x-javascript | clean |
http://www.premiumsexclip.com//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 238 Content-Type: text/html | clean |
http://www.premiumsexclip.com/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://www.premiumsexclip.com/scj/cgi/webmasters/mootools.svn.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://www.bitchcrawler.com/randomswf/swfobject.js | 200 OK Content-Length: 6887 Content-Type: application/x-javascript | clean |
http://www.premiumsexclip.com/scj/cgi/out.php?member=hiporntube.com | HTTP/1.1 302 Found Connection: close Date: Tue, 16 Sep 2014 01:07:47 GMT Location: http://hiporntube.com/ Server: nginx/1.2.6 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Current-Click: 1 Set-Cookie: to=%7Chiporntube.com; expires=Wed, 17-Sep-2014 01:07:47 GMT; path=/ Set-Cookie: vs=hiporntube.com; expires=Wed, 17-Sep-2014 01:07:47 GMT; path=/ X-Current-Click: nocookie X-Current-Trader: nocookie X-Powered-By: PHP/5.3.23 | malicious |
http://hiporntube.com/ | 200 OK Content-Length: 109020 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: pornzeus.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en"> <head> <title>"Hi Porn Tube" is the one and only site you need to watch sex videos!</title> <meta name="description" content="Looking for free sex tubes? Porn Tube - your best choice! Over ...[4364 bytes skipped]... | ||
http://pu.plugrush.com/2nch.js | 200 OK Content-Length: 3544 Content-Type: text/javascript | clean |
http://www.premiumsexclip.com//ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js/ | 404 Not Found Content-Length: 256 Content-Type: text/html | clean |
http://www.premiumsexclip.com/scj/cgi/out.php?member=hornyelephant.com | HTTP/1.1 302 Found Connection: close Date: Tue, 16 Sep 2014 01:07:51 GMT Location: http://www.hornyelephant.com/ Server: nginx/1.2.6 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Current-Click: 1 Set-Cookie: to=%7Chornyelephant.com; expires=Wed, 17-Sep-2014 01:07:51 GMT; path=/ Set-Cookie: vs=hornyelephant.com; expires=Wed, 17-Sep-2014 01:07:51 GMT; path=/ X-Current-Click: nocookie X-Current-Trader: nocookie X-Powered-By: PHP/5.3.23 | malicious |
http://www.hornyelephant.com/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Tue, 16 Sep 2014 01:07:51 GMT Location: http://www.hornyelephant.com/en Server: nginx Content-Length: 154 Content-Type: text/html | clean |
http://www.hornyelephant.com/en | 200 OK Content-Length: 122319 Content-Type: text/html | clean |
http://www.hornyelephant.com/js/jquery-1.10.1.min.js | 200 OK Content-Length: 93070 Content-Type: application/x-javascript | clean |
http://www.premiumsexclip.com/el/ | 404 Not Found Content-Length: 201 Content-Type: text/html | clean |
http://www.premiumsexclip.com/gl/ | 404 Not Found Content-Length: 201 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=premiumsexclip.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://premiumsexclip.com/
Result: premiumsexclip.com is not infected or malware details are not published yet.
Result: premiumsexclip.com is not infected or malware details are not published yet.