Scanned pages/files
Request | Server response | Status |
http://twinksyounggay.com/ | 200 OK Content-Length: 56470 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: youngtwinkstube.org <!DOCTYPE html>
<html lang="en"> <head> <base target="_blank"> <meta charset="utf-8"> <title>Twinks Young Gay - Young XXX Boys, Pretty Gay Tube</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="content-language" content="en" /> <meta name="Description" content="This porn gay tube site is the best pl ...[4590 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js | 200 OK Content-Length: 93068 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/splash.php?idzone=1007766&type=3 | 200 OK Content-Length: 5827 Content-Type: application/x-javascript | clean |
http://twinksyounggay.com//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 371 Content-Type: text/html | clean |
http://twinksyounggay.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://cdn.cdnjke.com/p/ero/gay/e300i.php | HTTP/1.1 302 Found Cache-Control: max-age=2592000 Connection: close Date: Tue, 16 Sep 2014 09:17:38 GMT Location: http://adspaces.ero-advertising.com/adspace/273932.js Server: nginx/1.4.6 Content-Length: 0 Content-Type: text/html Expires: Thu, 16 Oct 2014 09:17:38 GMT X-Powered-By: PHP/5.3.27 | clean |
http://adspaces.ero-advertising.com/adspace/273932.js | 200 OK Content-Length: 4110 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: twinksyounggay.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 09:17:36 GMT
Server: nginx/1.4.2
Content-Type: text/html
Set-Cookie: from=noref; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: lfrom=noref; expires=Tue, 23-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: idcheck=1410859056; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: index_page=1; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
X-Powered-By: PHP/5.3.27
GET / HTTP/1.1
Host: twinksyounggay.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 09:17:36 GMT
Server: nginx/1.4.2
Content-Type: text/html
Set-Cookie: from=noref; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: lfrom=noref; expires=Tue, 23-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: idcheck=1410859056; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
Set-Cookie: index_page=1; expires=Wed, 17-Sep-2014 09:17:36 GMT; path=/
X-Powered-By: PHP/5.3.27
Second query (visit from search engine):
GET / HTTP/1.1
Host: twinksyounggay.com
Referer: http://www.google.com/search?q=twinksyounggay.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: twinksyounggay.com
Referer: http://www.google.com/search?q=twinksyounggay.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=twinksyounggay.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://twinksyounggay.com/
Result: twinksyounggay.com is not infected or malware details are not published yet.
Result: twinksyounggay.com is not infected or malware details are not published yet.