New scan:

Malware Scanner report for whatismilf.info

Malicious/Suspicious/Total urls checked
13/0/15
13 pages have malicious code. See details below
Blacklists
Found
The website is marked by Yandex as suspicious.

The website "whatismilf.info" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/65
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=whatismilf.info

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://whatismilf.info/

Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://whatismilf.info/
200 OK
Content-Length: 19260
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://yui.yahooapis.com/combo?2.8.0r4/build/yahoo-dom-event/yahoo-dom-event.js&2.8.0r4/build/element/element-min.js&2.8.0r4/build/container/container-min.js&2.8.0r4/build/connection/connection-min.js
200 OK
Content-Length: 134230
Content-Type: application/javascript
clean
http://whatismilf.info/thumbchange-r5.js
200 OK
Content-Length: 2987
Content-Type: application/javascript
clean
http://whatismilf.info/category_video/6/1/Asian+MILF
200 OK
Content-Length: 17817
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/3/1/Granny
200 OK
Content-Length: 17784
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/9/1/Hot+Sexy+Mom
200 OK
Content-Length: 17127
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/10/1/Lesbian+MILF
200 OK
Content-Length: 16944
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/5/1/Mature
200 OK
Content-Length: 17738
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/4/1/My+Wife
200 OK
Content-Length: 17454
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/7/1/New+MILF
200 OK
Content-Length: 17202
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/category_video/8/1/Over+40
200 OK
Content-Length: 17703
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/tag_video/vidjo+hot
200 OK
Content-Length: 19115
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/tag_video/free+mature+over+50
200 OK
Content-Length: 19129
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/tag_video/allover50+sexy+foto
200 OK
Content-Length: 19292
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]

http://whatismilf.info/tag_video/40s+women+anal+videos
200 OK
Content-Length: 19150
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var puShown = false;
function doOpen(url)
{
if ( puShown == true )
{
return true;
}
var wFeatures = "toolbar=0,statusbar=1,resizable=1,scrollbars=0,menubar=0,location=1,directories=0";
if(navigator.userAgent.indexOf('Chrome') != -1){
wFeatures = "scrollbar=yes";
}
pu_window= window.open('about:blank','wmPu',wFeatures + ',height=10,width=10');

... 1627 bytes are skipped ...
cument.attachEvent( 'onclick', checkTarget );
}
else if ( document.addEventListener )
{
document.addEventListener( 'click', checkTarget, false );
}
}
function checkTarget(e)
{
if ( !getCookie('popundr') ) {
var e = e || window.event;
var win = doOpen('http://bit.ly/1byn0xg');
setCookie('popundr', 1, 24*60*60*1000);
}
}
initPu();

Antivirus reports:

Avast
JS:PornPop-D [PUP]


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: whatismilf.info

Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 19 Sep 2014 00:01:33 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=jsj0sv0pr56sovsm4eft8mj0p5; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: whatismilf.info
Referer: http://www.google.com/search?q=whatismilf.info

Result:
The result is similar to the first query. There are no suspicious redirects found.