Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vbabe.mobi
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vbabe.mobi/
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vbabe.mobi
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 14 Dec 2014 03:17:10 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: vbabe=qpdvldr4466apn0clab17adma4; expires=Mon, 15-Dec-2014 03:17:10 GMT; path=/
Set-Cookie: wssid=c71d79fb04417dd65946483e5edcf018c7385ea9; expires=Fri, 12-Jun-2015 03:17:10 GMT
Set-Cookie: agg_needless=1; expires=Mon, 15-Dec-2014 03:17:10 GMT
X-Powered-By: PHP/5.3.3-7+squeeze15
GET / HTTP/1.1
Host: vbabe.mobi
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 14 Dec 2014 03:17:10 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: vbabe=qpdvldr4466apn0clab17adma4; expires=Mon, 15-Dec-2014 03:17:10 GMT; path=/
Set-Cookie: wssid=c71d79fb04417dd65946483e5edcf018c7385ea9; expires=Fri, 12-Jun-2015 03:17:10 GMT
Set-Cookie: agg_needless=1; expires=Mon, 15-Dec-2014 03:17:10 GMT
X-Powered-By: PHP/5.3.3-7+squeeze15
Second query (visit from search engine):
GET / HTTP/1.1
Host: vbabe.mobi
Referer: http://www.google.com/search?q=vbabe.mobi
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vbabe.mobi
Referer: http://www.google.com/search?q=vbabe.mobi
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://vbabe.mobi/ | 200 OK Content-Length: 9670 Content-Type: text/html | clean |
http://targetan.com/static/bc.js?p=240306&b=581483 | 200 OK Content-Length: 35849 Content-Type: application/javascript | clean |
http://vbabe.mobi/js/343464.js | 200 OK Content-Length: 269 Content-Type: application/x-javascript | clean |
http://mobtop.ru/c/43420.js | 200 OK Content-Length: 860 Content-Type: application/x-javascript | clean |
http://vbabe.mobi/news/ | 200 OK Content-Length: 5688 Content-Type: text/html | clean |
http://mobtop.ru/c/43421.js | 200 OK Content-Length: 860 Content-Type: application/x-javascript | clean |
http://vbabe.mobi/story/?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 9394 Content-Type: text/html | clean |
http://v.visitweb.com/v/108287 | 200 OK Content-Length: 61633 Content-Type: text/javascript | clean |
http://vbabe.mobi/story/top?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 5995 Content-Type: text/html | clean |
http://vbabe.mobi/story/15813?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 14272 Content-Type: text/html | clean |
http://vbabe.mobi/story/15813/2?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 10346 Content-Type: text/html | clean |
http://vbabe.mobi/story/15813/1?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 14311 Content-Type: text/html | clean |
http://vbabe.mobi/story/15813/3?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 12258 Content-Type: text/html | clean |
http://vbabe.mobi/story/15813/4?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 7463 Content-Type: text/html | clean |
http://vbabe.mobi/story/15813/5?vbabe=2m7qgh4qk46rdjoh077humsk67 | 200 OK Content-Length: 10257 Content-Type: text/html | clean |