Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gobeyond.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gobeyond.info/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.gobeyond.info/ | 200 OK Content-Length: 122801 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var axel = Math.random() + ""; var a = axel * 10000000000000; document.write('<iframe src="http://4018114.fls.doubleclick.net/activityi;src=4018114;type=giochi;cat=lp_go0;ord=1;num=' + a + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://4018114.fls.doubleclick.net/activityi;src=4018114;type=giochi;cat=lp_go0;ord=1;num=1? <iframe src="http://4018114.fls.doubleclick.net/activityi;src=4018114;type=giochi;cat=lp_go0;ord=1;num=1?" width="1" height="1" frameborder="0" style="display:none"> Hidden iFrame found. size: 1x1 style: hidden src: http://4018114.fls.doubleclick.net/activityi;src=4018114;type=giochi;cat=lp_go0;ord=1;num= <iframe src="http://4018114.fls.doubleclick.net/activityi;src=4018114;type=giochi;cat=lp_go0;ord=1;num=' + a + '?" width="1" height="1" frameborder="0" style="display:none"> | ||
http://www.gobeyond.info//connect.facebook.net/it_IT/sdk.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:27 GMT Location: http://www.gobeyond.info/connect.facebook.net/it_IT/sdk.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 266 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/connect.facebook.net/it_it/sdk.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info/test404page.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:28 GMT Location: http://www.gobeyond.info/ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 290 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/ajax.googleapis.com/ajax/libs/jquery/1.11.0/jquery.min.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:28 GMT Location: http://www.gobeyond.info/maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 292 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/maxcdn.bootstrapcdn.com/bootstrap/3.2.0/js/bootstrap.min.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//cdnjs.cloudflare.com/ajax/libs/jquery-scrollTo/1.4.11/jquery.scrollTo.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:29 GMT Location: http://www.gobeyond.info/cdnjs.cloudflare.com/ajax/libs/jquery-scrollTo/1.4.11/jquery.scrollTo.min.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 309 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/cdnjs.cloudflare.com/ajax/libs/jquery-scrollto/1.4.11/jquery.scrollto.min.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//cdnjs.cloudflare.com/ajax/libs/jquery.cycle2/20140415/jquery.cycle2.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:29 GMT Location: http://www.gobeyond.info/cdnjs.cloudflare.com/ajax/libs/jquery.cycle2/20140415/jquery.cycle2.min.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 307 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/cdnjs.cloudflare.com/ajax/libs/jquery.cycle2/20140415/jquery.cycle2.min.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//cdnjs.cloudflare.com/ajax/libs/jquery.touchswipe/1.6.4/jquery.touchSwipe.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:30 GMT Location: http://www.gobeyond.info/cdnjs.cloudflare.com/ajax/libs/jquery.touchswipe/1.6.4/jquery.touchSwipe.min.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 312 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/cdnjs.cloudflare.com/ajax/libs/jquery.touchswipe/1.6.4/jquery.touchswipe.min.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//ajax.aspnetcdn.com/ajax/jquery.validate/1.13.0/jquery.validate.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:30 GMT Location: http://www.gobeyond.info/ajax.aspnetcdn.com/ajax/jquery.validate/1.13.0/jquery.validate.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 298 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/ajax.aspnetcdn.com/ajax/jquery.validate/1.13.0/jquery.validate.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info//ajax.aspnetcdn.com/ajax/jquery.validate/1.13.0/additional-methods.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 07 Mar 2015 04:54:30 GMT Location: http://www.gobeyond.info/ajax.aspnetcdn.com/ajax/jquery.validate/1.13.0/additional-methods.min.js Server: Apache/2.4.10 (Amazon) OpenSSL/1.0.1k-fips PHP/5.5.20 Content-Length: 305 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.gobeyond.info/ajax.aspnetcdn.com/ajax/jquery.validate/1.13.0/additional-methods.min.js | 404 Not Found Content-Length: 4390 Content-Type: text/html | clean |
http://www.gobeyond.info/static/dist/frontend.min.js | 200 OK Content-Length: 35164 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gobeyond.info
Result:
GET / HTTP/1.1
Host: gobeyond.info
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: gobeyond.info
Referer: http://www.google.com/search?q=gobeyond.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gobeyond.info
Referer: http://www.google.com/search?q=gobeyond.info
Result:
The result is similar to the first query. There are no suspicious redirects found.