Scanned pages/files
| Request | Server response | Status |
http://forkidshop.com/ | 200 OK Content-Length: 9976 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY AlIrHaBi ...[8139 bytes skipped]... 670" height="78" /></td> </tr> </table><table width="670" border="0" cellpadding="0" cellspacing="0"> <tr> <td width="323"> <div style="height:86px;width:670px;background:url(images/toy_head.png) no-repeat"> <div style="padding-top:30px;padding-left:70px;font:20px Tahoma;color:#FFF;"> HACKED BY AlIrHaBi </div> </div> </td> </tr> <tr> <td valign="top" background="images/toy_13.png"><table width="81%" border="0" align="center"> <tr> <td><div id="product"> <ul class="product2column"><li><div class="productlock"> <br /> <a href="product_de ...[3953 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://forkidshop.com/ajax/jquery.advancedslider.min.js | 200 OK Content-Length: 18292 Content-Type: application/javascript | clean |
http://forkidshop.com/login.php | 200 OK Content-Length: 8597 Content-Type: text/html | clean |
http://forkidshop.com/register.php | 200 OK Content-Length: 28077 Content-Type: text/html | clean |
http://forkidshop.com/product_sort.php?id=35 | 200 OK Content-Length: 7924 Content-Type: text/html | clean |
http://forkidshop.com/product_detail.php?id=67&idz=23 | 200 OK Content-Length: 12845 Content-Type: text/html | clean |
http://www.central.co.th/javascripts/jqzoom/js/jqzoom.pack.1.0.1.js | 404 Not Found Content-Length: 146007 Content-Type: text/html | clean |
http://www.central.co.th//static1.central.co.th/scripts/modernizr.custom.md5.02009db489ef4805210aafa21a6b8276.js/ | 404 Not Found Content-Length: 146052 Content-Type: text/html | clean |
http://www.central.co.th//static8.central.co.th/scripts/jquery-1.9.1.min.md5.98633ae75f394ff33b926bb1d523a155.js/ | 404 Not Found Content-Length: 146052 Content-Type: text/html | clean |
http://www.central.co.th//static2.central.co.th/scripts/jquery.productslide.md5.28ab3bca689e819bf13251b9a3eaa223.js/ | 404 Not Found Content-Length: 146055 Content-Type: text/html | clean |
http://www.central.co.th//static2.central.co.th/scripts/modernizr.custom.productslide.md5.afce2bb1f6f729ccff3b88fb5ea97ebc.js/ | 404 Not Found Content-Length: 146065 Content-Type: text/html | clean |
http://www.central.co.th//static3.central.co.th/scripts/bootstrap.md5.bc344bd52733ae3d9cf3ec335c46d5e3.js/ | 404 Not Found Content-Length: 146045 Content-Type: text/html | clean |
http://www.central.co.th//static3.central.co.th/scripts/jquery-ui.min.md5.33ea0343696043f338e55d708e9e13f8.js/ | 404 Not Found Content-Length: 146049 Content-Type: text/html | clean |
http://www.central.co.th//static8.central.co.th/scripts/popup.md5.9548c9bf21ea79541a04c516e3f882c4.js/ | 404 Not Found Content-Length: 146041 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: forkidshop.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 16 Jun 2015 21:31:00 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=fe0b0ca18365347c319bdfd4bff5e8d5; path=/
X-Powered-By: PHP/5.4.39
GET / HTTP/1.1
Host: forkidshop.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 16 Jun 2015 21:31:00 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=fe0b0ca18365347c319bdfd4bff5e8d5; path=/
X-Powered-By: PHP/5.4.39
Second query (visit from search engine):
GET / HTTP/1.1
Host: forkidshop.com
Referer: http://www.google.com/search?q=forkidshop.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: forkidshop.com
Referer: http://www.google.com/search?q=forkidshop.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=forkidshop.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://forkidshop.com/
Result: forkidshop.com is not infected or malware details are not published yet.
Result: forkidshop.com is not infected or malware details are not published yet.