Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=galicjaband.pl
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://galicjaband.pl/ | 200 OK Content-Length: 19306 Content-Type: text/html | clean |
http://galicjaband.pl/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://galicjaband.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://galicjaband.pl/wp-content/themes/rockwell/js/freshlib.js?ver=3.9.1 | 200 OK Content-Length: 4448 Content-Type: application/javascript | clean |
http://galicjaband.pl/wp-content/themes/rockwell/js/main.js?ver=3.9.1 | 200 OK Content-Length: 3594 Content-Type: application/javascript | clean |
http://galicjaband.pl/wp-content/themes/rockwell/templates/header/header-1.js?ver=3.9.1 | 200 OK Content-Length: 846 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(document).ready(function($){
$('#menu-navigation').find('.sub-menu').parent().addClass('has-sub-menu'); $('#menu-navigation').find('.sub-menu').each(function(){ $(this).children('li').each(function(index){ if(index%2 ==0) $(this).addClass('odd'); else $(this).addClass('even'); }); }); if($.browser.msie && $.browser.version == 7 ) { var level = 0; $('#menu-navigation').find('li').hover(function(){ if(level != 0){ } level ++; },function(){ level --; }); } var menu_height=parseInt($('#navigation').outerHeight()) - 1; $('#menu-navigation').children('li').children('.sub-menu').css('top',menu_height); }); Antivirus reports:
| ||
http://galicjaband.pl/wp-content/themes/rockwell/js/prettyphoto/js/jquery.prettyPhoto.js?ver=3.9.1 | 200 OK Content-Length: 23509 Content-Type: application/javascript | clean |
http://galicjaband.pl/wp-content/themes/rockwell/js/jquery.easing.js?ver=3.9.1 | 200 OK Content-Length: 7115 Content-Type: application/javascript | clean |
http://galicjaband.pl/wp-content/themes/rockwell/templates/slider/slider-1.js?ver=3.9.1 | 200 OK Content-Length: 16666 Content-Type: application/javascript | clean |
http://galicjaband.pl/?page_id=7 | 404 Not Found Content-Length: 8286 Content-Type: text/html | clean |
http://galicjaband.pl/?page_id=12 | 200 OK Content-Length: 14667 Content-Type: text/html | clean |
http://galicjaband.pl/?page_id=69 | 200 OK Content-Length: 9127 Content-Type: text/html | clean |
http://galicjaband.pl/?page_id=60 | 200 OK Content-Length: 11818 Content-Type: text/html | clean |
http://galicjaband.pl/?page_id=57 | 200 OK Content-Length: 9114 Content-Type: text/html | clean |
http://galicjaband.pl/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: galicjaband.pl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 04 Aug 2014 23:06:15 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
X-Pingback: http://galicjaband.pl/xmlrpc.php
GET / HTTP/1.1
Host: galicjaband.pl
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 04 Aug 2014 23:06:15 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
X-Pingback: http://galicjaband.pl/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: galicjaband.pl
Referer: http://www.google.com/search?q=galicjaband.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: galicjaband.pl
Referer: http://www.google.com/search?q=galicjaband.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.