Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sexrulez.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sexrulez.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: artis-1209697.jjwxc.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 04 May 2014 06:10:46 GMT
Accept-Ranges: bytes
Content-Length: 42905
Content-Type: text/html
Last-Modified: Fri, 02 May 2014 17:31:16 GMT
...42905 bytes of data.
GET / HTTP/1.1
Host: artis-1209697.jjwxc.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 04 May 2014 06:10:46 GMT
Accept-Ranges: bytes
Content-Length: 42905
Content-Type: text/html
Last-Modified: Fri, 02 May 2014 17:31:16 GMT
...42905 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: artis-1209697.jjwxc.net
Referer: http://www.google.com/search?q=artis-1209697.jjwxc.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: artis-1209697.jjwxc.net
Referer: http://www.google.com/search?q=artis-1209697.jjwxc.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.sexrulez.com/ | 200 OK Content-Length: 146690 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: spermyporn.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <title>Sex Tube</title> <meta name="keywords" content="sex rulez,sex tube,hot sex,anal sex,sex online,sex party,se ...[4354 bytes skipped]... | ||
http://www.sexrulez.com/js/jquery-1.3.2.min.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/ads.php?type=300x250&login=shamanboo&cat=2&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=582927&idsite=202049 | 200 OK Content-Length: 646 Content-Type: text/javascript | clean |
http://adspaces.ero-advertising.com/adspace/159158.js | 200 OK Content-Length: 1820 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/159159.js | 200 OK Content-Length: 1822 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/159155.js | 200 OK Content-Length: 3807 Content-Type: application/javascript | clean |
http://cdn.reporo.net/jsbanner.js | 200 OK Content-Length: 836 Content-Type: application/x-javascript | clean |
http://www.sexrulez.com/ftt2/o.php?l=toplist&perm=spermyporn.com | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate Connection: close Date: Tue, 16 Sep 2014 00:50:42 GMT Pragma: no-cache Location: http://www.spermyporn.com/ Server: nginx/1.6.0 Content-Length: 0 Content-Type: text/html Set-Cookie: ftt2=YTo1OntzOjI6ImlwIjtpOjEzMTg5ODA1Nzg7czoxOiJmIjtzOjE6IjAiO3M6MToicyI7czoyOiJzZSI7czoxOiJ2IjthOjE6e2k6MDtzOjQ6IjYxMjAiO31zOjI6ImNjIjtzOjE6IjAiO30%3D; expires=Wed, 17-Sep-2014 00:50:42 GMT; Max-Age=86400; path=/; domain=.sexrulez.com X-Powered-By: PHP/5.5.13 | malicious |
http://www.spermyporn.com/ | 200 OK Content-Length: 107828 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: lewdclub.com ...[1864 bytes skipped]... <div class="all"> <div class="header"> <a href="/" title="Spermy Porn" class="logo"><img src="/images/logo.jpg" alt="Spermy Porn" /></a> <ul class="sites"> <li><a href="/ftt2/o.php?l=toplist&perm=newsextv.com" title="New Sex TV">New Sex TV</a></li> <li><a href="/ftt2/o.php?l=toplist&perm=lewdclub.com" title('old_url', ''); } var data=$(this).attr('name').toString(); if(!data.length) { return true; } $(this).attr('target', '_blank'); if(e.ctrlKey) { return true; } if($(this).data('old_url').length) { return true; } $(this).data('old_url', $(this).attr('href')); $(this).attr('href', data); var element=$(this); window.setTimeout( function () { element.attr('href', element.data('old_url')); eleme ...[1841 bytes skipped]... | ||
http://www.spermyporn.com/js/jquery.js | 200 OK Content-Length: 94022 Content-Type: application/x-javascript | clean |
http://www.sexrulez.com/js/my.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://www.sexrulez.com/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://www.sexrulez.com//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 539 Content-Type: text/html | clean |
http://syndication.exoclick.com/ads.php?type=300x250&login=sanet&cat=2&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=466409&idsite=179723 | 200 OK Content-Length: 642 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/ads.php?type=300x250&login=sanet&cat=2&search=&ad_title_color=0000cc&bgcolor=FFFFFF&border=0&border_color=000000&font=&block_keywords=&ad_text_color=000000&ad_durl_color=008000&adult=0&sub=&text_only=0&show_thumb=&idzone=466413&idsite=179723 | 200 OK Content-Length: 642 Content-Type: text/javascript | clean |