Scanned pages/files
Request | Server response | Status |
http://rabdsm.com/ | 200 OK Content-Length: 87344 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: trafficholder.com ...[4422 bytes skipped]... ass="bottomend"></div> <div id="foot"> <div id="footlogo"> <p>All models appearing on rabdsm.com in were at least 18 years of age. COPYRIGHT 2011<br>All Rights Reserved</p> <span> <a href="http://www.cjtrade.biz/">Trade traffic</a> <a href="http://www.trafficshop.com/home/?aff=samael" target="_blank">Buy traffic</a> <a href="http://trafficholder.com/aff.php?samael">Shell traffic</a> <span> </div> </div> </center> </body> </html> | ||
http://click.kink.com/click/script.js?co=OTc5 | 200 OK Content-Length: 406 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/ads.php?type=300x250&login=samael&cat=2&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=159307&idsite=89161 | 200 OK Content-Length: 642 Content-Type: text/javascript | clean |
http://rabdsm.com/cgi-bin/crtr/out.cgi?id=85&l=tophead&u=http://bdsmact.com/ | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 10:25:08 GMT Location: http://bdsmact.com/ Server: nginx Content-Length: 203 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: cr_tr=MHwwfDF8MHwxfDg1fDF8MXwwfDE0MTEwMzU5MDh8ODV8NDIzZGQ1NWViYmZlYWI4NmMzZjA2Nzc2OTQ4MjU4ZGY=; expires=Friday, 19 Sep 14 10:25:08 GMT GMT; path=/; domain=.rabdsm.com; | clean |
http://bdsmact.com/ | 200 OK Content-Length: 300634 Content-Type: text/html | clean |
http://bdsmact.com/cgi-bin/crtr/out.cgi?id=55&l=displaynone | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 10:25:11 GMT Location: http://mybestpornator.info/ Server: nginx Content-Length: 211 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: cr_tr=MHwwfDF8MHwxfDU1fDF8MXwwfDE0MTEwMzU5MTF8NTV8YTcxZTkyZjdhZDgyNzMxMmJjNDIwYzJhOTg2ZGIwNDA=; expires=Friday, 19 Sep 14 10:25:11 GMT GMT; path=/; domain=.bdsmact.com; | clean |
http://mybestpornator.info/ | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 18 Sep 2014 10:26:42 GMT Location: http://ww1.mybestpornator.info Server: nginx/1.0.15 Content-Type: text/html | clean |
http://ww1.mybestpornator.info/ | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Connection: close Date: Thu, 18 Sep 2014 10:26:42 GMT Pragma: no-cache Server: Apache Vary: User-Agent,Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Thu, 18 Sep 2014 10:26:42 GMT Set-Cookie: tu=b4d49a25549356943cd9bac25ff107ea; expires=Tue, 31-Dec-2019 23:00:00 GMT; path=/; domain=mybestpornator.info; httponly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_QSEx4NIYVbC1mLyuiYYeM0tNlAsUmj/P7h/Sxpza1sTIL+cjY907qn0h5qOJ9cSNvMN5GixQOhftYBEOQmzaUg== X-Cache: MISS from 300819 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://ww1.mybestpornator.info//?gtnjs=1/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://ww1.mybestpornator.info/test404page.js | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Connection: close Date: Thu, 18 Sep 2014 10:26:48 GMT Pragma: no-cache Server: Apache Vary: User-Agent,Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Thu, 18 Sep 2014 10:26:48 GMT Set-Cookie: tu=df20151eef17a93fc1832eb4f2e97b1e; expires=Tue, 31-Dec-2019 23:00:00 GMT; path=/; domain=mybestpornator.info; httponly X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_TN/ZRFsO7DpTzzqvkNOiOOwD/Qd0q6U7zDcJ1WyrVnBjwnpD0XiiAJ8EfmRXTxBteuZl1wRWFuk2kXWD/sjpzw== X-Cache: MISS from 531521 X-Powered-By: PHP/5.3.3-7+squeeze19 | clean |
http://ww1.mybestpornator.info/test404page.js/?gtnjs=1 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://rabdsm.com/cgi-bin/crtr/out.cgi?id=55&l=displaynone | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 10:25:22 GMT Location: http://www.bdsm-portal.net/?ref=rabdsm.com Server: nginx Content-Length: 226 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: cr_tr=MHwwfDF8MHwxfDU1fDF8MXwwfDE0MTEwMzU5MjJ8NTV8ZDliYTQ2OTU4ODM4ODdmZWNhODJhZTgxZDIwZDMzMDM=; expires=Friday, 19 Sep 14 10:25:22 GMT GMT; path=/; domain=.rabdsm.com; | clean |
http://www.bdsm-portal.net/?ref=rabdsm.com | 200 OK Content-Length: 8152 Content-Type: text/html | clean |
http://d1vbm0eveofcle.cloudfront.net/scripts/js3caf.js | 200 OK Content-Length: 3490 Content-Type: application/javascript | clean |
http://rabdsm.com/recent.html | 404 Not Found Content-Length: 328 Content-Type: text/html | clean |
http://rabdsm.com/categories.html | 404 Not Found Content-Length: 332 Content-Type: text/html | clean |
http://rabdsm.com/cgi-bin/crtr/out.cgi?id=55&l=displaynone1 | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 10:25:25 GMT Location: http://www.bdsm-portal.net/?ref=rabdsm.com Server: nginx Content-Length: 226 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: cr_tr=MHwwfDF8MHwxfDU1fDF8MXwwfDE0MTEwMzU5MjV8NTV8ODI3YjlhNGUxOWNkM2FkNjI2MjlmODI3ODUzZDIwN2U=; expires=Friday, 19 Sep 14 10:25:25 GMT GMT; path=/; domain=.rabdsm.com; | clean |
http://rabdsm.com/?go=click&c=3&n=1&e=0&g=3&r=42740&u=http%253A%252F%252Fbdsmact.com%252Frain-meets-the-woodsman-6055.html | 200 OK Content-Length: 87336 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: trafficholder.com ...[4428 bytes skipped]... ass="bottomend"></div> <div id="foot"> <div id="footlogo"> <p>All models appearing on rabdsm.com in were at least 18 years of age. COPYRIGHT 2011<br>All Rights Reserved</p> <span> <a href="http://www.cjtrade.biz/">Trade traffic</a> <a href="http://www.trafficshop.com/home/?aff=samael" target="_blank">Buy traffic</a> <a href="http://trafficholder.com/aff.php?samael">Shell traffic</a> <span> </div> </div> </center> </body> </html> | ||
http://rabdsm.com/cgi-bin/crtr/out.cgi?id=72&l=tophead&u=http://bdsmgang.com | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Sep 2014 10:25:26 GMT Location: http://bdsmgang.com Server: nginx Content-Length: 203 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: cr_tr=MHwwfDF8MHwxfDcyfDF8MXwwfDE0MTEwMzU5MjZ8NzJ8ZmZhZTMxYTQ4YTAzYTA1NmYwMDQzNzQxMWNhOGJhZDg=; expires=Friday, 19 Sep 14 10:25:26 GMT GMT; path=/; domain=.rabdsm.com; | clean |
http://bdsmgang.com/ | 200 OK Content-Length: 96103 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: trafficholder.com ...[2932 bytes skipped]... gt;<dl></dl></div> </div> <div id="foot"> <div id="footer"><ul><li> <a href="http://www.cjtrade.biz/">webmaster: trade traffic</a><br /> COPYRIGHT 2006-2011 bdsmgang.com<br /> <a href="http://www.trafficshop.com/home/?aff=samael" target="_blank">Trafficshop.com - Let your business grow</a><br /> <a href="http://trafficholder.com/aff.php?samael">trafficholder.com - Buy Adult Traffic</a><br /> All Rights Reserved </li></ul><ol></ol></div> </div> <script type="text/javascript"> var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www."); document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E")); </script> < ...[962 bytes skipped]... | ||
http://syndication.exoclick.com/ads.php?type=300x250&login=samael&cat=2&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=159334&idsite=89170 | 200 OK Content-Length: 642 Content-Type: text/javascript | clean |
http://8traffic.com/cookie-policy/cookie-policy.php | 200 OK Content-Length: 110 Content-Type: text/html | clean |
http://8traffic.com/cookie-policy/cookie.jsx | 200 OK Content-Length: 1855 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rabdsm.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 18 Sep 2014 10:25:07 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
GET / HTTP/1.1
Host: rabdsm.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 18 Sep 2014 10:25:07 GMT
Accept-Ranges: bytes
Server: nginx
Vary: Accept-Encoding,User-Agent
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: rabdsm.com
Referer: http://www.google.com/search?q=rabdsm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rabdsm.com
Referer: http://www.google.com/search?q=rabdsm.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rabdsm.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rabdsm.com/
Result: rabdsm.com is not infected or malware details are not published yet.
Result: rabdsm.com is not infected or malware details are not published yet.