Scanned pages/files
| Request | Server response | Status |
http://baccaratsystems.com/ | 200 OK Content-Length: 122372 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-HACKED BY Injector(PCA) +ACYAJg Virus Site +ADw-DIV style+AD0AIg-DISPLAY: none+ACIAP ...[100130 bytes skipped]... unction-set-avia-backend.php</b> on line <b>604</b><br /> <link rel="icon" href="http://baccaratsystems.com/wp-content/uploads/2014/10/admin-ajax.php_.png" type="image/png"> <!-- add feeds, pingback and stuff--> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="alternate" type="application/rss+xml" title="+ADw-/title+AD4-HACKED BY Injector(PCA) +ACYAJg Virus Site +ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- RSS2 Feed" href="<br /> <b>Warning</b>: html_entity_decode() [<a href='function.html-entity-decode'>function.html-entity-decode</a>]: charset `UTF-7' not supported, assuming iso-8859-1 in <b>/home/baccrtsyst/public_html/wp-content/themes/enfold/framework/php/function-set-avia-backend.php</b> on line <b>604</b><br /> http://baccaratsystems.com/feed/" /> ...[46127 bytes skipped]... | ||
http://baccaratsystems.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-content/themes/enfold/js/avia-compat.js?ver=2 | 200 OK Content-Length: 1105 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-content/themes/enfold/js/avia.js?ver=2 | 200 OK Content-Length: 97607 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-content/themes/enfold/js/shortcodes.js?ver=2 | 200 OK Content-Length: 125992 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-content/themes/enfold/js/aviapopup/jquery.magnific-popup.min.js?ver=2 | 200 OK Content-Length: 20947 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=2.16.2 | 200 OK Content-Length: 77780 Content-Type: application/javascript | clean |
http://baccaratsystems.com/wp-includes/js/mediaelement/wp-mediaelement.js?ver=4.2.4 | 200 OK Content-Length: 926 Content-Type: application/javascript | clean |
http://baccaratsystems.com/function.html-entity-decode | 200 OK Content-Length: 115327 Content-Type: text/html | clean |
http://baccaratsystems.com/function.session-start | 200 OK Content-Length: 115327 Content-Type: text/html | clean |
http://baccaratsystems.com/?s= | 200 OK Content-Length: 106600 Content-Type: text/html | clean |
http://baccaratsystems.com/sample-page/ | 200 OK Content-Length: 109370 Content-Type: text/html | clean |
http://baccaratsystems.com/wp-includes/js/comment-reply.min.js?ver=4.2.4 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://baccaratsystems.com/sample-page/function.html-entity-decode | 200 OK Content-Length: 115327 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: baccaratsystems.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 19 Aug 2015 06:44:14 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.3.10
GET / HTTP/1.1
Host: baccaratsystems.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 19 Aug 2015 06:44:14 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/1.0.0-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.3.10
Second query (visit from search engine):
GET / HTTP/1.1
Host: baccaratsystems.com
Referer: http://www.google.com/search?q=baccaratsystems.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: baccaratsystems.com
Referer: http://www.google.com/search?q=baccaratsystems.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=baccaratsystems.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://baccaratsystems.com/
Result: baccaratsystems.com is not infected or malware details are not published yet.
Result: baccaratsystems.com is not infected or malware details are not published yet.