Scanned pages/files
Request | Server response | Status |
http://twinktube.xxx/ | 200 OK Content-Length: 69348 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: bluegayboys.com <!DOCTYPE html>
<html lang="en"> <head> <base target="_blank"> <meta charset="utf-8"> <title>Twink Tube - Young Porn Movies, Cute Boys Cum</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta http-equiv="content-language" content="en" /> <meta name="Description" content="The twink tube sets a whole new standard ...[4431 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js | 200 OK Content-Length: 93068 Content-Type: text/javascript | clean |
http://syndication.exoclick.com/splash.php?idzone=1007766&type=3 | 200 OK Content-Length: 5827 Content-Type: application/x-javascript | clean |
http://twinktube.xxx//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 366 Content-Type: text/html | clean |
http://twinktube.xxx/test404page.js | 404 Not Found Content-Length: 340 Content-Type: text/html | clean |
http://cdn.cdnjke.com/p/ero/gay/e300i.php | HTTP/1.1 302 Found Cache-Control: max-age=2592000 Connection: close Date: Tue, 16 Sep 2014 06:36:32 GMT Location: http://adspaces.ero-advertising.com/adspace/273932.js Server: nginx/1.4.6 Content-Length: 0 Content-Type: text/html Expires: Thu, 16 Oct 2014 06:36:32 GMT X-Powered-By: PHP/5.3.27 | clean |
http://adspaces.ero-advertising.com/adspace/273932.js | 200 OK Content-Length: 4110 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: twinktube.xxx
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 06:36:29 GMT
Server: nginx/1.4.2
Content-Type: text/html
Set-Cookie: from=noref; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: lfrom=noref; expires=Tue, 23-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: idcheck=1410849389; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: index_page=1; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
X-Powered-By: PHP/5.3.27
GET / HTTP/1.1
Host: twinktube.xxx
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 16 Sep 2014 06:36:29 GMT
Server: nginx/1.4.2
Content-Type: text/html
Set-Cookie: from=noref; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: lfrom=noref; expires=Tue, 23-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: idcheck=1410849389; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: vs=noref%7C; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
Set-Cookie: index_page=1; expires=Wed, 17-Sep-2014 06:36:29 GMT; path=/
X-Powered-By: PHP/5.3.27
Second query (visit from search engine):
GET / HTTP/1.1
Host: twinktube.xxx
Referer: http://www.google.com/search?q=twinktube.xxx
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: twinktube.xxx
Referer: http://www.google.com/search?q=twinktube.xxx
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=twinktube.xxx
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://twinktube.xxx/
Result: twinktube.xxx is not infected or malware details are not published yet.
Result: twinktube.xxx is not infected or malware details are not published yet.