Scanned pages/files
Request | Server response | Status |
http://babymarket.pl/ | 200 OK Content-Length: 17022 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Mr.GaloW ...[16810 bytes skipped]... ; <div class="module"> <div class="mod-wrapper clearfix"> <h3 class="header"> <span>Kontakt</span> z nami </h3> <div class="mod-content clearfix"> <div class="mod-inner clearfix"> <div class="custom"> <p><img src="/images/contacts.png" border="0" align="left" /></p> <p>Hacked By Mr.GaloW</p> <p>Patch Your Site</p></div> </div> </div> </div> </div> <div class="gap"></div> </div></div> </div> </div> <div id="sp-maincol" class="clearfix"> <!--Module Position content1 to content4--> <div class="clr"></div> <!--Component Area--> <div id="in ...[3521 bytes skipped]... | ||
http://babymarket.pl/media/system/js/core.js | 200 OK Content-Length: 3616 Content-Type: application/x-javascript | clean |
http://babymarket.pl/media/system/js/mootools-core.js | 200 OK Content-Length: 83987 Content-Type: application/x-javascript | clean |
http://babymarket.pl/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/x-javascript | clean |
http://babymarket.pl/media/system/js/mootools-more.js | 200 OK Content-Length: 224389 Content-Type: application/x-javascript | clean |
http://babymarket.pl/plugins/system/helix/js/menu.js | 200 OK Content-Length: 4173 Content-Type: application/x-javascript | clean |
http://babymarket.pl/plugins/system/helix/js/equalheight.js | 200 OK Content-Length: 1150 Content-Type: application/x-javascript | clean |
http://babymarket.pl/plugins/system/helix/js/totop.js | 200 OK Content-Length: 1038 Content-Type: application/x-javascript | clean |
http://babymarket.pl/modules/mod_freeslider_sp1/assets/js/script.js | 200 OK Content-Length: 6714 Content-Type: application/x-javascript | clean |
http://babymarket.pl/index.php?option=com_content&view=article&id=102 | 200 OK Content-Length: 14216 Content-Type: text/html | clean |
http://babymarket.pl/index.php/o-firmie | 200 OK Content-Length: 14203 Content-Type: text/html | clean |
http://babymarket.pl/index.php/abc | 200 OK Content-Length: 13556 Content-Type: text/html | clean |
http://babymarket.pl/index.php/oferta | 200 OK Content-Length: 16696 Content-Type: text/html | clean |
http://babymarket.pl/plugins/content/simplepictureslideshow/files/besps.js | 200 OK Content-Length: 6088 Content-Type: application/x-javascript | clean |
http://babymarket.pl/index.php/oferta/akcesoria | 200 OK Content-Length: 13921 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: babymarket.pl
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 02 Oct 2014 10:56:27 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: abcc460f00c924a199adffc23503d76b=gso2v4qol2u8u12rtbavf3g630; path=/
X-Powered-By: PHP/5.4.24
GET / HTTP/1.1
Host: babymarket.pl
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 02 Oct 2014 10:56:27 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: abcc460f00c924a199adffc23503d76b=gso2v4qol2u8u12rtbavf3g630; path=/
X-Powered-By: PHP/5.4.24
Second query (visit from search engine):
GET / HTTP/1.1
Host: babymarket.pl
Referer: http://www.google.com/search?q=babymarket.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: babymarket.pl
Referer: http://www.google.com/search?q=babymarket.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=babymarket.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://babymarket.pl/
Result: babymarket.pl is not infected or malware details are not published yet.
Result: babymarket.pl is not infected or malware details are not published yet.