Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fotzen-lecken.tv
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://fotzen-lecken.tv/ | 200 OK Content-Length: 30819 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: px.pornorio.com ...[1078 bytes skipped]... <meta name="ero_verify" content="31854a5492b77fa10cd2ef23ce01ae4c" /> <link rel="stylesheet" href="/media/css/main.css" type="text/css" media="screen" /> <script type="text/javascript" src="http://s1x.slimtrade.com/s3249.js"></script> <script type="text/javascript" src="/media/js/global.js"></script> <script type="text/javascript" src="http://px.pornorio.com/paref.js?s=3249"></script> <script type="text/javascript">var STRADE_ID=3249;var STRADE_GALLERY=50;var SRADE_OUT;var stLinkNoFollow=true;var stNewWindow=true;</script> </head> <body onunload="anti();"> <div id="wrapper"> <div id="header"> <div id="header_content"> ...[2541 bytes skipped]... | ||
http://s1x.slimtrade.com/s3249.js | 200 OK Content-Length: 8890 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: inzestfick.com eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('e p=w S("1o N (13)","Q P 2d (3)","1m 1X 2V (1)","3L 1k (0)","4i 3X (0)","3e 36 (0)","3r P 3T (0)","Q 3p (0)","3o 3y (0)","3d Q (0)","3f 3C 3D 4a 4b (0)","1o 1k (0)");e x=w S("f://3Z-1e.1l","f://3W.j","f://1m.E.j","f://3Y-N.j","f://4c-4d.j" ...[3590 bytes skipped]... Decoded script: var stTrName=new Array("Youporn deutsch (13)","Mutter fickt Sohn (3)","18jahre free videos (1)","Xvideo Deutsch (0)","Xtube Porno (0)","Vagosex Pornos (0)","Oma fickt Enkel (0)","Mutter 40Jahre (0)","German Amateur (0)","Geile Mutter (0)","xxx Porn Uncensored Taboo Teen (0)","Youporn Deutsch (0)");var stTrUrl=new Array("http://deutsches-youporn.net","http://inzestfick.com","http://18jahre.freevide0.com","http://xvideo-deutsch.com","http://xtube-porno.com","http://vagosex-pornos.net","http://oma-fickt-enkel.info","http://mutter40jahre.freevide0.com","http://germanamateur.freevide0.com","http://geilemutter.freevide0.com","http://firstsex.uncensoredtaboo.org","http://youporn-deutsch.com");var stTrValues=new Array("1,2,4","6,6,4","3,2,1","1,5,1","850,1983,1515","534,1781,1060","473,1676,1048","537,1609,770","2 ...[16865 bytes skipped]... | ||
http://fotzen-lecken.tv/media/js/global.js | 200 OK Content-Length: 107438 Content-Type: application/javascript | clean |
http://px.pornorio.com/paref.js?s=3249 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://px.pornorio.com/test404page.js | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://adspaces.ero-advertising.com/adspace/214532.js | 200 OK Content-Length: 1572 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/214536.js | 200 OK Content-Length: 1814 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/237834.js | 200 OK Content-Length: 1832 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/214528.js | 200 OK Content-Length: 758 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/214527.js | 200 OK Content-Length: 3833 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fotzen-lecken.tv
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 16 Sep 2014 02:58:27 GMT
Pragma: no-cache
Server: lighttpd/1.4.28
Content-Type: text/html
Expires: Thu, 16 Oct 2014 02:58:27 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=t2r6e07bpd67vmfed1fu6fije1; path=/
Set-Cookie: ck=1; expires=Fri, 11-Sep-2015 02:58:27 GMT; path=/; domain=fotzen-lecken.tv
X-Powered-By: PHP/5.3.3-7+squeeze14
GET / HTTP/1.1
Host: fotzen-lecken.tv
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 16 Sep 2014 02:58:27 GMT
Pragma: no-cache
Server: lighttpd/1.4.28
Content-Type: text/html
Expires: Thu, 16 Oct 2014 02:58:27 GMT
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=t2r6e07bpd67vmfed1fu6fije1; path=/
Set-Cookie: ck=1; expires=Fri, 11-Sep-2015 02:58:27 GMT; path=/; domain=fotzen-lecken.tv
X-Powered-By: PHP/5.3.3-7+squeeze14
Second query (visit from search engine):
GET / HTTP/1.1
Host: fotzen-lecken.tv
Referer: http://www.google.com/search?q=fotzen-lecken.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fotzen-lecken.tv
Referer: http://www.google.com/search?q=fotzen-lecken.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.