Scanned pages/files
| Request | Server response | Status |
http://nvidia.com/ | HTTP/1.1 302 Object Moved Cache-Control: private Connection: close Location: http://www.nvidia.com/ Content-Type: text/html | clean |
http://www.nvidia.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 02 Aug 2014 18:44:18 GMT Location: http://www.nvidia.com/page/home.html Server: Microsoft-IIS/6.0 Content-Length: 159 Content-Type: text/html X-N: S X-Powered-By: ASP.NET X-UA-Compatible: IE=10 | clean |
http://www.nvidia.com/page/home.html | 200 OK Content-Length: 26584 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var axel = Math.random() + ""; var a = axel * 10000000000000; document.write('<iframe src="http://3773406.fls.doubleclick.net/activityi;src=3773406;type=landi772;cat=nvidi728;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 1x1 style: hidden src: http://3773406.fls.doubleclick.net/activityi;src=3773406;type=landi772;cat=nvidi728;ord=1? <iframe src="http://3773406.fls.doubleclick.net/activityi;src=3773406;type=landi772;cat=nvidi728;ord=1?" width="1" height="1" frameborder="0" style="display:none"> Hidden iFrame found. size: 1x1 style: hidden src: http://3773406.fls.doubleclick.net/activityi;src=3773406;type=landi772;cat=nvidi728;ord= <iframe src="http://3773406.fls.doubleclick.net/activityi;src=3773406;type=landi772;cat=nvidi728;ord=' + a + '?" width="1" height="1" frameborder="0" style="display:none"> | ||
http://www.nvidia.com/content/global/home.js | 200 OK Content-Length: 2617 Content-Type: application/x-javascript | clean |
http://nvidia.com/content/includes/redesign2010/js/AC_OETags.js | HTTP/1.1 302 Object Moved Cache-Control: private Connection: close Location: http://www.nvidia.com/content/includes/redesign2010/js/AC_OETags.js Content-Type: text/html | clean |
http://www.nvidia.com/content/includes/redesign2010/js/ac_oetags.js | 200 OK Content-Length: 4879 Content-Type: application/x-javascript | clean |
http://www.google.com/coop/cse/brand?form=cse-search-box&lang=en | 200 OK Content-Length: 2512 Content-Type: text/javascript | clean |
http://nvidia.com/content/includes/redesign2010/js/global_menu.js | HTTP/1.1 302 Object Moved Cache-Control: private Connection: close Location: http://www.nvidia.com/content/includes/redesign2010/js/global_menu.js Content-Type: text/html | clean |
http://www.nvidia.com/content/includes/redesign2010/js/global_menu.js | 200 OK Content-Length: 22179 Content-Type: application/x-javascript | clean |
http://nvidia.com/content/includes/redesign2010/js/mobile-menu-patch.js | HTTP/1.1 302 Object Moved Cache-Control: private Connection: close Location: http://www.nvidia.com/content/includes/redesign2010/js/mobile-menu-patch.js Content-Type: text/html | clean |
http://www.nvidia.com/content/includes/redesign2010/js/mobile-menu-patch.js | 200 OK Content-Length: 2237 Content-Type: application/x-javascript | clean |
http://www.nvidia.com/content/websidestory/omniture/production/omni-to-ga-pre-migration.js | 200 OK Content-Length: 708 Content-Type: application/x-javascript | clean |
http://nvidia.com//international.download.nvidia.com/includes/nvFrame/1.0/p/js/_libs/jquery-1.10.1-migrate.js/ | HTTP/1.1 302 Object Moved Cache-Control: private Connection: close Location: http://www.nvidia.com//international.download.nvidia.com/includes/nvFrame/1.0/p/js/_libs/jquery-1.10.1-migrate.js/ Content-Type: text/html | clean |
http://www.nvidia.com//international.download.nvidia.com/includes/nvframe/1.0/p/js/_libs/jquery-1.10.1-migrate.js/ | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.nvidia.com/test404page.js | 404 Not Found Content-Length: 19135 Content-Type: text/html | clean |
http://www.nvidia.com/content/includes/redesign2010/js/jquery.json-2.3.min.js | 200 OK Content-Length: 2177 Content-Type: application/x-javascript | clean |
http://www.nvidia.com/content/includes/redesign2010/js/jwplayer/jwplayer.js | 200 OK Content-Length: 155549 Content-Type: application/x-javascript | clean |
http://www.nvidia.com/content/includes/redesign2010/js/404.js | 200 OK Content-Length: 192 Content-Type: application/x-javascript | clean |
http://cts.channelintelligence.com/7240466_landing.js | 200 OK Content-Length: 1006 Content-Type: application/x-javascript | clean |
http://www.nvidia.com/content/includes/redesign2010/js/mobile-detection.js | 200 OK Content-Length: 1614 Content-Type: application/x-javascript | clean |
http://www.nvidia.com/content/includes/redesign2010/js/navbar.js | 200 OK Content-Length: 1410 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nvidia.com
Result:
HTTP/1.1 302 Object Moved
Cache-Control: private
Connection: close
Location: http://www.nvidia.com/
Content-Type: text/html
GET / HTTP/1.1
Host: nvidia.com
Result:
HTTP/1.1 302 Object Moved
Cache-Control: private
Connection: close
Location: http://www.nvidia.com/
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: nvidia.com
Referer: http://www.google.com/search?q=nvidia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nvidia.com
Referer: http://www.google.com/search?q=nvidia.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nvidia.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://nvidia.com/
Result: nvidia.com is not infected or malware details are not published yet.
Result: nvidia.com is not infected or malware details are not published yet.