Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=muschiclips.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://muschiclips.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://muschiclips.com/ | 200 OK Content-Length: 54059 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: porniversum.com ...[3193 bytes skipped]... richtig geile Fotze, die immer feucht ist, wartet, dann tagtäglich auf einen. Sonst heulen die Fotzen ja immer rum, dass sie Kopfschmerzen haben oder die Muschi noch weh tut vom letzten Abend. Da braucht der Muschiliebhaber aber einen Ersatz. Den können wir liefern: Wir haben junge Muschis, alte Fotzen, geile Mösen, Muschis mit grossen Schamlippen und Muschis mit kleinen Schamlippen. Finde auch <a href="http://porniversum.com/" title="Gratis Pornos">kostenlose Pornofilme</a> auf Porniversum. </div> <center></center> </div> </div> </div> <script type="text/javascript" src="http://slimspread.com/adspace.php?a=pu&n=0"></script> <script type="text/javascript" src="http://slimspread.com/adspace.php?a=pu&n=1"></script> <scr ...[584 bytes skipped]... | ||
http://s1x.slimtrade.com/s554.js | 200 OK Content-Length: 2751 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: gute-pornofilme.com eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('e m=z J("1u 1t 1v (26)","1x 1n (1)","1e-G.j (0)","1b-G.j (0)");e u=z J("q://1m.1r-1o.j","q://1q.j","q://1e-G.j","q://1b-G.j");e I=z J("14,17,1K","1M,10,20","5,14,2","1,3,1","1,2,0","1,2,0","2,4,0","1,7,0","2,1,0","1,5,0","1,15,0","10,4,0","4 ...[2312 bytes skipped]... Decoded script: var stTrName=new Array("Porca Vacca sexy (26)","Gratis Pornos (1)","gute-pornofilme.com (0)","xhamster-pornofilme.com (0)");var stTrUrl=new Array("http://porcavacca.the-chan.com","http://pornokrieg.com","http://gute-pornofilme.com","http://xhamster-pornofilme.com");var stTrValues=new Array("14,17,84","35,10,20","5,14,2","1,3,1","1,2,0","1,2,0","2,4,0","1,7,0","2,1,0","1,5,0","1,15,0","10,4,0","4,3,0","1,2,0","1,7,0","1,1,0","1,7,0","1,12,0","1,0,0","1,5,0","30,52,51","26,60,63","18,32,34","11,14,3","11,18,0","8,18,13","7, ...[5373 bytes skipped]... | ||
http://muschiclips.com/media/js/jquery-1.5.2.min.js | 200 OK Content-Length: 85939 Content-Type: application/javascript | clean |
http://www.google.com/recaptcha/api/js/recaptcha_ajax.js | 200 OK Content-Length: 115874 Content-Type: text/javascript | clean |
http://muschiclips.com/media/js/global.js?t=576222 | 200 OK Content-Length: 22453 Content-Type: application/javascript | clean |
http://slimspread.com/adspace.php?a=b945x100&n=0 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
http://slimspread.com/test404page.js | 404 Not Found Content-Length: 345 Content-Type: text/html | clean |
http://timteen.com/parx/parx.php?s=554 | 200 OK Content-Length: 333 Content-Type: text/javascript | clean |
http://slimspread.com/adspace.php?a=b200x480&n=0 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
http://slimspread.com/adspace.php?a=b200x480&n=1 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
http://slimspread.com/adspace.php?a=b200x480&n=2 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
http://slimspread.com/adspace.php?a=pu&n=0 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
http://slimspread.com/adspace.php?a=pu&n=1 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: muschiclips.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 17 Sep 2014 08:52:24 GMT
Pragma: no-cache
Server: lighttpd/1.4.28
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=r8l0n78c597f7e9g71j6ofc7u1; path=/
X-Powered-By: PHP/5.3.3-7+squeeze14
GET / HTTP/1.1
Host: muschiclips.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 17 Sep 2014 08:52:24 GMT
Pragma: no-cache
Server: lighttpd/1.4.28
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=r8l0n78c597f7e9g71j6ofc7u1; path=/
X-Powered-By: PHP/5.3.3-7+squeeze14
Second query (visit from search engine):
GET / HTTP/1.1
Host: muschiclips.com
Referer: http://www.google.com/search?q=muschiclips.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: muschiclips.com
Referer: http://www.google.com/search?q=muschiclips.com
Result:
The result is similar to the first query. There are no suspicious redirects found.