Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tubewolf.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 10 Sep 2014 08:08:38 GMT
Location: http://www.tubewolf.com/
Server: nginx
Content-Type: text/html; charset=iso-8859-1
GET / HTTP/1.1
Host: tubewolf.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 10 Sep 2014 08:08:38 GMT
Location: http://www.tubewolf.com/
Server: nginx
Content-Type: text/html; charset=iso-8859-1
Second query (visit from search engine):
GET / HTTP/1.1
Host: tubewolf.com
Referer: http://www.google.com/search?q=tubewolf.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tubewolf.com
Referer: http://www.google.com/search?q=tubewolf.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://tubewolf.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 10 Sep 2014 08:08:38 GMT Location: http://www.tubewolf.com/ Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.tubewolf.com/ | 200 OK Content-Length: 124845 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://www.tubewolf.com/js/jquery.blazy.js | 200 OK Content-Length: 3041 Content-Type: application/x-javascript | clean |
http://www.tubewolf.com/js/KernelTeamVideoSharingSystem.js?v=3.5.1 | 200 OK Content-Length: 7878 Content-Type: application/x-javascript | clean |
http://www.tubewolf.com/js/KernelTeamImageRotator_3.5.1.jsx | 200 OK Content-Length: 3478 Content-Type: application/javascript | clean |
http://www.tubewolf.com/popunder/desktop-popunder.js | 200 OK Content-Length: 2339 Content-Type: application/x-javascript | clean |
http://www.tubewolf.com/js/main.js | 200 OK Content-Length: 4007 Content-Type: application/x-javascript | clean |
http://tubewolf.com/latest-updates/2/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 10 Sep 2014 08:08:40 GMT Location: http://www.tubewolf.com/latest-updates/2/ Server: nginx Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.tubewolf.com/latest-updates/2/ | 200 OK Content-Length: 126258 Content-Type: text/html | clean |
http://www.tubewolf.com/ru/latest-updates/2/ | 200 OK Content-Length: 134372 Content-Type: text/html | clean |
http://www.tubewolf.com/ru/ | 200 OK Content-Length: 133132 Content-Type: text/html | clean |
http://www.tubewolf.com/es/ | 200 OK Content-Length: 129222 Content-Type: text/html | clean |
http://www.tubewolf.com/fr/ | 200 OK Content-Length: 129051 Content-Type: text/html | clean |
http://www.tubewolf.com/it/ | 200 OK Content-Length: 127520 Content-Type: text/html | clean |
http://www.tubewolf.com/nl/ | 200 OK Content-Length: 126262 Content-Type: text/html | clean |
http://www.tubewolf.com/pt/ | 200 OK Content-Length: 127118 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tubewolf.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tubewolf.com/
Result: tubewolf.com is not infected or malware details are not published yet.
Result: tubewolf.com is not infected or malware details are not published yet.