Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xxx.party-party.nl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xxx.party-party.nl/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xxx.party-party.nl
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 12 Sep 2014 21:51:35 GMT
Pragma: no-cache
Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=af478655d66a909ebefa9cb119544a66; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: xxx.party-party.nl
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 12 Sep 2014 21:51:35 GMT
Pragma: no-cache
Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=af478655d66a909ebefa9cb119544a66; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: xxx.party-party.nl
Referer: http://www.google.com/search?q=xxx.party-party.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xxx.party-party.nl
Referer: http://www.google.com/search?q=xxx.party-party.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://xxx.party-party.nl/ | 200 OK Content-Length: 98748 Content-Type: text/html | clean |
http://adspaces.ero-advertising.com/adspace/50684.js | 200 OK Content-Length: 2464 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/55560.js | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://xxx.party-party.nl/menu-home | 200 OK Content-Length: 98748 Content-Type: text/html | clean |
http://xxx.party-party.nl/media-15695 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Fri, 12 Sep 2014 21:51:37 GMT Pragma: no-cache Location: http://www.xxxduck.com/video/679536/Most-erotic-and-beautiful-lesbians.html Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=9e98148fcfe90c91ee11f3221810cdff; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://www.xxxduck.com/video/679536/most-erotic-and-beautiful-lesbians.html | 200 OK Content-Length: 40431 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://xxx.party-party.nl/js/jquery.colorbox-min.js | 404 Not Found Content-Length: 483 Content-Type: text/html | clean |
http://xxx.party-party.nl/test404page.js | 404 Not Found Content-Length: 472 Content-Type: text/html | clean |
http://www.xxxduck.com/js/rotate.js | 200 OK Content-Length: 1005 Content-Type: application/javascript | clean |
http://xxx.party-party.nl/js/video.js | 404 Not Found Content-Length: 469 Content-Type: text/html | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://adspaces.ero-advertising.com/adspace/88685.js | 200 OK Content-Length: 1567 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/88488.js | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/98040.js | 200 OK Content-Length: 2490 Content-Type: application/javascript | clean |
http://xxx.party-party.nl/media-15694 | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Fri, 12 Sep 2014 21:51:39 GMT Pragma: no-cache Location: http://www.xxxduck.com/video/679446/Naturally-busty-redhead-babe-caught-masturbating.html Server: Apache/2.2.21 (Unix) mod_ssl/2.2.21 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=b02344dfd0b8f05c801898cd64d64e89; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://www.xxxduck.com/video/679446/naturally-busty-redhead-babe-caught-masturbating.html | 200 OK Content-Length: 42891 Content-Type: text/html | clean |