Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dewatajourney.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://dewatajourney.com/ | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://dewatajourney.com/test404page.js | HTTP/1.1 302 Found Date: Sun, 27 Apr 2014 20:53:07 GMT Location: http://pagesinxt.com/?dn=dewatajourney.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close | clean |
http://pagesinxt.com/?dn=dewatajourney.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Sun, 27 Apr 2014 20:53:07 GMT Location: http://mypageresults.com/?dn=dewatajourney.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=dewatajourney.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2527 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: dewatajourney.com <!--
top.location="http://mypageresults.com/?dn=dewatajourney.com&fp=XK%2Fz4yf3IBji6WpypvJUOjCFBgiVUP2eKIbU2xQrGL64bfWredzN6q%2BeQzcUb%2BXi05Ju%2B4DLyxdJnIFh6eMCcg%3D%3D&prvtof=q01bakksfoH%2BjywNi90f7fS48XiYd1NEP9AU9FpWiQY%3D&poru=dfR9g5jMjrSllpOMsqkiQAyCZK7JIa13VtdRiiyXwNXT7UW5n67ff5tycvZIi5kKxUMdlizh3rudKbQi7FEYA%2Bq7TQL5Cxq21%2FF8%2FrTRSx4%3D&cifr=1&flrdr=yes&nxte=js"; /* --> <script type="text/javascript"> <!-- dimensionUpdated = 0; < ...[2383 bytes skipped]... | ||
http://mypageresults.com/?dn=dewatajourney.com&fp=XK%2Fz4yf3IBji6WpypvJUOjCFBgiVUP2eKIbU2xQrGL64bfWredzN6q%2BeQzcUb%2BXi05Ju%2B4DLyxdJnIFh6eMCcg%3D%3D&prvtof=840vb4tsQiaZccVf%2Fke92fumDPmETfTjy1TvMm5elhs%3D&poru=cjfCC1NSVCFjQ6Rb0z%2BXhM3WlOHR1PSmrEj54haCPXj3VPOVGfqalmQqUH0r1SlHkXpr2Jt2Bvt1tD2M8dxU3bq5RgweVAwMqDUx%2FNt4QSI%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://mypageresults.com/test404page.js | HTTP/1.1 302 Found Date: Sun, 27 Apr 2014 20:53:09 GMT Location: http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close | clean |
http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Sun, 27 Apr 2014 20:53:09 GMT Location: http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache Vary: Accept-Encoding Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2531 Content-Type: text/html | clean |
http://mypageresults.com/?dn=mypageresults.com&fp=S%2BZlcg69IxsuawqDS%2BwBTfOYwhY1JOf7KcVGo2dvbx1br6DkiDovL8TwjTbmHbdpdp%2FLfT%2BKyS8HT%2BUBsWsLGA%3D%3D&prvtof=TI8SPOBPcFpOi62Dv%2BK85W4pHyYFK%2Fx2DRmixJhCHZg%3D&poru=FJ7JOvrkM3BwrmHjK6%2BSEMIlSWkHcuMPs5hE%2B1FnelvDv3iDIraIQ5gd0nvCv486c887QY3xS2a7TCnWn2GJNQACZleKRMDhy%2BpYmv6umK4%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 272 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: dewatajourney.com
Result:
HTTP/1.1 200 OK
Date: Sun, 27 Apr 2014 20:53:07 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 271
Content-Type: text/html; charset=UTF-8
Set-Cookie: vsid=903vr1461775871721645; expires=Fri, 26-Apr-2019 20:53:07 GMT; path=/; domain=dewatajourney.com; httponly
X-Cnection: close
...271 bytes of data.
GET / HTTP/1.1
Host: dewatajourney.com
Result:
HTTP/1.1 200 OK
Date: Sun, 27 Apr 2014 20:53:07 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 271
Content-Type: text/html; charset=UTF-8
Set-Cookie: vsid=903vr1461775871721645; expires=Fri, 26-Apr-2019 20:53:07 GMT; path=/; domain=dewatajourney.com; httponly
X-Cnection: close
...271 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: dewatajourney.com
Referer: http://www.google.com/search?q=dewatajourney.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: dewatajourney.com
Referer: http://www.google.com/search?q=dewatajourney.com
Result:
The result is similar to the first query. There are no suspicious redirects found.