Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=private-teens.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://private-teens.info/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://private-teens.info/ | 200 OK Content-Length: 21955 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: deutsche-pornvideos.com ...[3214 bytes skipped]... xt-decoration: none;"> <font size="3" color="#ff0000"><u>Altavista</u></font></a></font><font size="3" color="#ff3399" face="Trebuchet MS"> | </font><font size="3" color="#ff0000" face="Trebuchet MS, Verdana, arial"> </center> <br> <div> <!-- Output generated by LinkEX (+http://linkex.dk/) --> <a href="http://deutsche-pornvideos.com" title="Porno Videos">Porno Videos</a><br><a href="http://olala-porn.com/" title="Teen Inzest Mature MILF">Teen Inzest Mature MILF</a><br><a href="http://slut-mom.com" title="Slut Mom">Slut Mom</a><br><a href="http://www.pornb.info" title="german porno">german porno</a><br><a href="http://fickkino.com" title="Gratis Fick Kino">Gratis Fick Kino</a><br><a href="http://momwannacum.blogspot.c ...[745 bytes skipped]... | ||
http://private-teens.info/media/js/jquery-1.5.2.min.js | 200 OK Content-Length: 85924 Content-Type: application/javascript | clean |
http://private-teens.info/media/js/global.js | 200 OK Content-Length: 21466 Content-Type: application/javascript | clean |
http://s1x.slimtrade.com/s114.js | 200 OK Content-Length: 2833 Content-Type: application/javascript | malicious |
Malicious code found. Script contains blacklisted domain: xxxbunker-porno.com eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('e m=A M("2k 2s (N)","2f B 2g (22)","2h 2i 20 (14)","27 (8)","2D (6)","2u 1Z (2)","2l (0)","X 1y (0)","1x (0)","X 1A (0)","1B B 1w (0)");e z=A M("f://1C-1v.I","f://1o-B-1p.I","f://1r.V","f://1u-W.u","f://1t-W.1Q","f://1W-1J.2r","f://1L.V","f: ...[2394 bytes skipped]... Decoded script: var stTrName=new Array("Deutsches Youporn (37)","Vater fickt Tochter (22)","Tiny teens porn (14)","XXXBunker (8)","TheHun (6)","Geile Fotzen (2)","Entjungfert (0)","Deutsche Swinger (0)","Fickkino (0)","Deutsche Erotikfilme (0)","Bruder fickt Schwester (0)");var stTrUrl=new Array("http://deutsches-youporn.net","http://vater-fickt-tochter.net","http://fapfiles.org","http://xxxbunker-porno.com","http://thehun-porno.info","http://geile-fotzen.tv","http://entjungfert.org","http://deutsche-swinger.net","http://fickkino.net","http://deutsche-erotikfilme.com","http://bruder-fickt-schwester.com");var stTrValues=new Array("9,25,7","1,8,5","16,37,3","2,11,3","1,3,2","1,3,1","187,132,127","7,15,4","57,69,37","23,53,22","19,36,14","11,33,8","13,25,6","1,5,2","7,17,0","4,3,0","1,6,0","4,9,0","4,6,0");var $stServerIn="http:\/\/s1x.slimt ...[5142 bytes skipped]... | ||
http://www.google.com/recaptcha/api/js/recaptcha_ajax.js | 200 OK Content-Length: 115874 Content-Type: text/javascript | clean |
http://porno-deutsch.com/parx/parx.php?s=114 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 17 Sep 2014 21:57:33 GMT Location: http://porno-deutsch.eu/parx/parx.php?s=114 Server: lighttpd/1.4.31 Content-Length: 0 | clean |
http://porno-deutsch.eu/parx/parx.php?s=114 | 200 OK Content-Length: 332 Content-Type: text/javascript | clean |
http://gartis-pornos.com/werbung/pfb_thumb1.js | 400 Bad Request Content-Length: 20 Content-Type: text/html | clean |
http://gartis-pornos.com/test404page.js | 400 Bad Request Content-Length: 20 Content-Type: text/html | clean |
http://slimspread.com/adspace.php?a=b160x600 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
http://slimspots.com/adspace.php?a=text | 404 Not Found Content-Length: 1475 Content-Type: text/html | clean |
http://slimspots.com//ajax.cloudflare.com/cdn-cgi/nexp/dokv=dccf16c0cc/appsh.min.js/ | HTTP/1.1 302 Found Cache-Control: max-age=5184000 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 17 Sep 2014 21:57:34 GMT Pragma: no-cache Location: http://slimspots.com/error/404 Server: cloudflare-nginx Content-Type: text/html Expires: Sun, 16 Nov 2014 21:57:34 GMT Expires: Thu, 19 Nov 1981 08:52:00 GMT CF-RAY: 16b88f6ad45d08ab-FRA Set-Cookie: __cfduid=df60dd973f046b6db9101daa8a12690791410991054535; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.slimspots.com; HttpOnly Set-Cookie: lang=en; expires=Tue, 08-Sep-2015 21:57:34 GMT; Max-Age=30758400; path=/; domain=.slimspots.com Set-Cookie: PHPSESSID=tbg4fhtasff00vi0tjl97gq622; path=/ Set-Cookie: userid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.slimspots.com Set-Cookie: password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.slimspots.com X-Powered-By: PHP/5.5.11-1~dotdeb.1 | clean |
http://slimspots.com/error/404 | 404 Not Found Content-Length: 5571 Content-Type: text/html | clean |
http://slimspots.com/js/portal/jquery.js,portal/bootstrap-transition.js,portal/bootstrap-alert.js,portal/bootstrap-modal.js,portal/bootstrap-dropdown.js,portal/bootstrap-scrollspy.js,portal/bootstrap-tab.js,portal/bootstrap-tooltip.js,portal/bootstrap-button.js,portal/bootstrap-collapse.js,portal/bootstrap-carousel.js,portal/bootstrap-typeahead.js,portal/holder.js | 200 OK Content-Length: 144038 Content-Type: text/javascript | clean |
http://slimspots.com//ajax.cloudflare.com/cdn-cgi/nexp/dokv=73806ac11c/apps1.min.js/ | HTTP/1.1 302 Found Cache-Control: max-age=5184000 Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 17 Sep 2014 21:57:35 GMT Pragma: no-cache Location: http://slimspots.com/error/404 Server: cloudflare-nginx Content-Type: text/html Expires: Sun, 16 Nov 2014 21:57:34 GMT Expires: Thu, 19 Nov 1981 08:52:00 GMT CF-RAY: 16b88f7039e501b0-FRA Set-Cookie: __cfduid=de0a820cfee4172e1e1664587370697bd1410991055398; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.slimspots.com; HttpOnly Set-Cookie: lang=en; expires=Tue, 08-Sep-2015 21:57:35 GMT; Max-Age=30758400; path=/; domain=.slimspots.com Set-Cookie: PHPSESSID=6nt8953smj8itgbdqrkjpl1aj7; path=/ Set-Cookie: userid=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.slimspots.com Set-Cookie: password=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.slimspots.com X-Powered-By: PHP/5.5.11-1~dotdeb.1 | clean |
http://slimspread.com/adspace.php?a=pu&n=0 | 200 OK Content-Length: 39 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: private-teens.info
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 17 Sep 2014 21:57:23 GMT
Pragma: no-cache
Server: lighttpd/1.4.19
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1c9ec6189d6e64ec0ffa160b016ad856; path=/
X-Powered-By: PHP/5.3.3-7+squeeze14
GET / HTTP/1.1
Host: private-teens.info
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 17 Sep 2014 21:57:23 GMT
Pragma: no-cache
Server: lighttpd/1.4.19
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1c9ec6189d6e64ec0ffa160b016ad856; path=/
X-Powered-By: PHP/5.3.3-7+squeeze14
Second query (visit from search engine):
GET / HTTP/1.1
Host: private-teens.info
Referer: http://www.google.com/search?q=private-teens.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: private-teens.info
Referer: http://www.google.com/search?q=private-teens.info
Result:
The result is similar to the first query. There are no suspicious redirects found.