Blacklist Incident - Page on www.ahorasaludybienestar.es embeds buleft.4statsbannertracking.eu

Summary

Correlation: Exact
Matched By: Url
Matched Lists: GSBMalware , RiskIQ
Score: 100
Description: Angler EK.1

Incident Details

Id: 80358970
Incident Date: 2014-10-28 11:01 AM PDT
Incident Detected Date: 2014-10-28 11:03 AM PDT
Cause: iframe.src
Blacklist Resource IP: 62.75.167.129
Blacklist Resource AS: AS8972: Country: DE  Registry: ripencc
PLUSSERVER-AS , DE
Phishing: false
Scam: false
Malware: true
Spam: false
Alexa Rank: 1366445
Ad Type: Display
Publisher Ad Network: testing-webs
Delivering Ad Network: testing-webs
Drive-By Malvertisement: true

Matched Lists

GSB Malware Match: 4statsbannertracking.eu/
Match Type: Domain

ZList Details

ZList ID: 422996
URL: http://buleft.4statsbannertracking.eu/no4ban48mj
Match Type: Url
Description: Angler EK.1
Score: 75
First Detected At: 2014-10-28 11:01:55.0
First Found On Crawl: 4082e729-d8c5-4582-a619-569cbd58acb6
First Found On Page: b23ff113-9c63-448e-a2ef-43c1cede049e
First Found On Resource: 5944cd2a-70a0-4120-9cf2-f8814549b00c

Blacklist Resource Details

URL: http://buleft.4statsbannertracking.eu/no4ban48mj
Sequence: 4
Response Code: 200
Content Type: text/html
Referrer: http://bug.bugliker.com/datr2.html
Cause: frame.src
Location in Prior

Resulting Page

Sequence in Crawl: 1
Guid: b23ff113-9c63-448e-a2ef-43c1cede049e
URL: http://www.ahorasaludybienestar.es/chocolate-bueno-memoria/6324
IP Address: 188.95.250.35
Window Name: : TopLevelWindow@51abceb1

Crawl Details

Crawl Guid: 4082e729-d8c5-4582-a619-569cbd58acb6
Crawl Date: 2014-10-28 11:01 AM PDT
Frontier URL: http://www.ahorasaludybienestar.es/chocolate-bueno-memoria/6324
Metro Code: none
Crawled Pages: 1
Error Pages: 0

Source Search

No Source Search Result found.

Sequence Overview

Seq­uence URL Ad Network Cause Response Code Frame Window Parent Window Lost Referrer Referrer
1 http://www.ahorasaludybienestar.es/chocolate-bueno-memoria/6... - parentPage 200 true true : TopLevelWindow@51abceb1 - http://www.facebook.com/l.php?...
2 http://testing-webs.org/openx/www/delivery/ajs.php?zoneid=41... testing-webs script.src 200 - - : TopLevelWindow@51abceb1 - http://www.ahorasaludybienesta...
3 http://bug.bugliker.com/datr2.html - iframe.src 200 true - test: FrameWindow@69d5d74 - http://www.ahorasaludybienesta...
4 http://buleft.4statsbannertracking.eu/no4ban48mj - frame.src 200 true - : FrameWindow@685a5fa - http://bug.bugliker.com/datr2....

Sequence Details

1

http://www.ahorasaludybienestar.es/chocolate-bueno-memoria/6324
Referrer: http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.ahorasaludybienestar.es%2Fchocolate-bueno-memoria%2F6324&h=akAAyCqPU
Cause: parentPage
Contains Element :

2

http://testing-webs.org/openx/www/delivery/ajs.php?zoneid=411&cb=2563616261&loc=http%3A//www.ahorasaludybienestar.es/chocolate-bueno-memoria/6324&referer=http%3A//www.facebook.com/l.php%3Fu%3Dhttp%253A%252F%252Fwww.ahorasaludybienestar.es%252Fchocolate-bueno-memoria%252F6324%26h%3DakAAyCqPU
Referrer: http://www.ahorasaludybienestar.es/chocolate-bueno-memoria/6324
Cause: script.src Path from prior: /*[name()='html']/body/div[2]/div[1]/div[2]/div[2]/div/div/div[4]/div[1]/script[2]/@src
Contains Source :

3

http://bug.bugliker.com/datr2.html
Referrer: http://www.ahorasaludybienestar.es/chocolate-bueno-memoria/6324
Cause: iframe.src Path from prior: /*[name()='html']/body/div[2]/div[1]/div[2]/div[2]/div/div/div[4]/div[1]/iframe[1]/@src
Contains Element :

4

http://buleft.4statsbannertracking.eu/no4ban48mj
Referrer: http://bug.bugliker.com/datr2.html
Cause: frame.src Path from prior: /html/frameset/frame/@src