Scanned pages/files
| Request | Server response | Status |
http://bassgarage.ru/ | 200 OK Content-Length: 87185 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED By XUGURX ...[51341 bytes skipped]... =component&link=457763fe0ed097e281bda54b5fcb14076669a87b" title="E-mail" onclick="window.open(this.href,'win2','width=400,height=350,menubar=yes,resizable=yes'); return false;"><img src="/images/M_images/emailButton.png" alt="E-mail" /></a> </td> </tr> </table> <table class="contentpaneopen"> <tr> <td valign="top" colspan="2"> <p>HACKED By XUGURX</p> <p align="center">Â </p> <p align="center"><img src="http://c1110.hizliresim.com/q/n/1w6t.jpg" border="0" /></p> <p align="center"><span style="font-family: Verdana; color: #666666; font-size: x-large;"><strong>hacked by xugurx</strong></span></p> <p align="center"><span style="font-family: Tahoma; color: #b22222; font-size: x-small;"><strong><span style="font ...[52649 bytes skipped]... | ||
http://bassgarage.ru/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://bassgarage.ru/includes/js/JSCookMenu.js | 200 OK Content-Length: 29759 Content-Type: application/javascript | clean |
http://bassgarage.ru/includes/js/ThemeOffice/theme.js | 200 OK Content-Length: 1725 Content-Type: application/javascript | clean |
http://bassgarage.ru/modules/mod_virtuemart_universal/files/mootools_tooltip.js | 200 OK Content-Length: 411 Content-Type: application/javascript | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=1&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 67787 Content-Type: text/html | clean |
http://bassgarage.ru/components/com_virtuemart/fetchscript.php?gzip=0&subdir[0]=/themes/default&file[0]=theme.js&subdir[1]=/js&file[1]=sleight.js&subdir[2]=/js/mootools&file[2]=mootools-release-1.11.js&subdir[3]=/js/mootools&file[3]=mooPrompt.js | 200 OK Content-Length: 56684 Content-Type: text/javascript | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=2&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 67207 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=3&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 68347 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=4&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 71335 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=5&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 161725 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=6&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 98259 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=7&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 105118 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=8&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 76309 Content-Type: text/html | clean |
http://bassgarage.ru/index.php?page=shop.browse&category_id=9&option=com_virtuemart&Itemid=57 | 200 OK Content-Length: 66072 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bassgarage.ru
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Tue, 24 Feb 2015 19:39:12 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Tue, 24 Feb 2015 19:39:12 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: d0b05afd83f2e312740ed58da87ac4eb=3qk1p70n8248tngdbglm5gu9l2; path=/
Set-Cookie: virtuemart=3qk1p70n8248tngdbglm5gu9l2
X-Powered-By: PHP/5.4.33
GET / HTTP/1.1
Host: bassgarage.ru
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Tue, 24 Feb 2015 19:39:12 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Tue, 24 Feb 2015 19:39:12 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: d0b05afd83f2e312740ed58da87ac4eb=3qk1p70n8248tngdbglm5gu9l2; path=/
Set-Cookie: virtuemart=3qk1p70n8248tngdbglm5gu9l2
X-Powered-By: PHP/5.4.33
Second query (visit from search engine):
GET / HTTP/1.1
Host: bassgarage.ru
Referer: http://www.google.com/search?q=bassgarage.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bassgarage.ru
Referer: http://www.google.com/search?q=bassgarage.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bassgarage.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bassgarage.ru/
Result: bassgarage.ru is not infected or malware details are not published yet.
Result: bassgarage.ru is not infected or malware details are not published yet.