Scanned pages/files
Request | Server response | Status |
http://thebarhops.com/ | 200 OK Content-Length: 43792 Content-Type: text/html | clean |
http://www.thebarhops.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/weptile-image-slider-widget/js/weptile-image-slider-widget.js?ver=3.8.3 | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/weptile-image-slider-widget/nivo-slider/jquery.nivo.slider.pack.js?ver=3.8.3 | 200 OK Content-Length: 12388 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.3 | 200 OK Content-Length: 9986 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/nextgen-gallery/js/jquery.cycle.all.min.js?ver=2.9995 | 200 OK Content-Length: 26590 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.06 | 200 OK Content-Length: 1791 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/themes/thebarhops/templates/header/header-1.js | 200 OK Content-Length: 846 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function($){
$('#menu-navigation').find('.sub-menu').parent().addClass('has-sub-menu'); $('#menu-navigation').find('.sub-menu').each(function(){ $(this).children('li').each(function(index){ if(index%2 ==0) $(this).addClass('odd'); else $(this).addClass('even'); }); }); if($.browser.msie && $.browser.version == 7 ) { var level = 0; $('#menu-navigation').find('li').hover(function(){ if(level != 0){ } level ++; },function(){ level --; }); } var menu_height=parseInt($('#navigation').outerHeight()) - 1; $('#menu-navigation').children('li').children('.sub-menu').css('top',menu_height); }); Antivirus reports:
| ||
http://www.thebarhops.com/wp-content/themes/thebarhops/js/prettyphoto/js/jquery.prettyPhoto.js | 200 OK Content-Length: 23509 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/themes/thebarhops/js/jquery.easing.js | 200 OK Content-Length: 7115 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/themes/thebarhops/templates/slider/slider-1.js | 200 OK Content-Length: 16259 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/themes/thebarhops/js/main.js | 200 OK Content-Length: 6210 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.46.0-2013.11.21 | 200 OK Content-Length: 14798 Content-Type: application/x-javascript | clean |
http://www.thebarhops.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.6 | 200 OK Content-Length: 7691 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thebarhops.com
Result:
HTTP/1.1 200 OK
Date: Fri, 25 Jul 2014 05:42:03 GMT
Server: Microsoft-IIS/7.0
Content-Length: 43792
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.18
X-Powered-By: ASP.NET
...43792 bytes of data.
GET / HTTP/1.1
Host: thebarhops.com
Result:
HTTP/1.1 200 OK
Date: Fri, 25 Jul 2014 05:42:03 GMT
Server: Microsoft-IIS/7.0
Content-Length: 43792
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.18
X-Powered-By: ASP.NET
...43792 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: thebarhops.com
Referer: http://www.google.com/search?q=thebarhops.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thebarhops.com
Referer: http://www.google.com/search?q=thebarhops.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thebarhops.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://thebarhops.com/
Result: thebarhops.com is not infected or malware details are not published yet.
Result: thebarhops.com is not infected or malware details are not published yet.