Scanned pages/files
Request | Server response | Status |
http://grzejniki.pl/ | 200 OK Content-Length: 43282 Content-Type: text/html | clean |
http://blog.grzejniki.pl/wp-includes/js/jquery/jquery.js?ver=1.3.2 | 200 OK Content-Length: 57276 Content-Type: application/javascript | clean |
http://blog.grzejniki.pl/wp-content/plugins/uk-cookie-consent/js/uk-cookie-consent-js.js?ver=2.9.1 | 200 OK Content-Length: 1143 Content-Type: application/javascript | clean |
http://blog.grzejniki.pl/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.0 | 200 OK Content-Length: 9027 Content-Type: application/javascript | clean |
http://blog.grzejniki.pl/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.0.2 | 200 OK Content-Length: 927 Content-Type: application/javascript | clean |
http://lite.piclens.com/current/piclens_optimized.js | 200 OK Content-Length: 21750 Content-Type: application/x-javascript | clean |
http://blog.grzejniki.pl/wp-content/themes/mystique/js/jquery.mystique.js?ver=2.4.2 | 200 OK Content-Length: 56979 Content-Type: application/javascript | clean |
http://grzejniki.pl/?mystique=jquery_init&ver=2.4.2 | 200 OK Content-Length: 3457 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var $lang=new Array(); $lang[0]="Pisanie. ProszÄ czekaÄ..."; $lang[1]="Twój komentarz zostaÅ dodany."; $lang[2]="Napisz kolejny komentarz"; jQuery(document).ready(function ($) { if (isIE6) { jQuery('#page').append("<div class='crap-browser-warning'>Używasz starej i peÅnej bÅÄdów przeglÄ darki. Przejdź na <a href='http://www.mozilla.com/firefox/'>normalnÄ przeglÄ darkÄ</a> lub pomyÅl o <a href='http://ww setup_comment_controls(); setup_comment_ajax(); jQuery('a.print').click(function() { jQuery('.post.single').printElement({printMode:'popup'}); return false; }); jQuery("#navigation").attr("role", "navigation"); jQuery("#primary-content").attr("role", "main"); jQuery("#sidebar").attr("role", "complementary"); jQuery("#searchform").attr("role", "search"); }); Antivirus reports:
| ||
http://grzejniki.pl/index.php/o-nas-2/ | 200 OK Content-Length: 25973 Content-Type: text/html | clean |
http://grzejniki.pl/index.php/o-nas-2/?mystique=jquery_init&ver=2.4.2 | 200 OK Content-Length: 3457 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var $lang=new Array(); $lang[0]="Pisanie. ProszÄ czekaÄ..."; $lang[1]="Twój komentarz zostaÅ dodany."; $lang[2]="Napisz kolejny komentarz"; jQuery(document).ready(function ($) { if (isIE6) { jQuery('#page').append("<div class='crap-browser-warning'>Używasz starej i peÅnej bÅÄdów przeglÄ darki. Przejdź na <a href='http://www.mozilla.com/firefox/'>normalnÄ przeglÄ darkÄ</a> lub pomyÅl o <a href='http://ww setup_comment_controls(); setup_comment_ajax(); jQuery('a.print').click(function() { jQuery('.post.single').printElement({printMode:'popup'}); return false; }); jQuery("#navigation").attr("role", "navigation"); jQuery("#primary-content").attr("role", "main"); jQuery("#sidebar").attr("role", "complementary"); jQuery("#searchform").attr("role", "search"); }); Antivirus reports:
| ||
http://grzejniki.pl/index.php/o-nas-2/o-nas/ | 200 OK Content-Length: 24089 Content-Type: text/html | clean |
http://grzejniki.pl/index.php/o-nas-2/o-nas/?mystique=jquery_init&ver=2.4.2 | 200 OK Content-Length: 3457 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var $lang=new Array(); $lang[0]="Pisanie. ProszÄ czekaÄ..."; $lang[1]="Twój komentarz zostaÅ dodany."; $lang[2]="Napisz kolejny komentarz"; jQuery(document).ready(function ($) { if (isIE6) { jQuery('#page').append("<div class='crap-browser-warning'>Używasz starej i peÅnej bÅÄdów przeglÄ darki. Przejdź na <a href='http://www.mozilla.com/firefox/'>normalnÄ przeglÄ darkÄ</a> lub pomyÅl o <a href='http://ww setup_comment_controls(); setup_comment_ajax(); jQuery('a.print').click(function() { jQuery('.post.single').printElement({printMode:'popup'}); return false; }); jQuery("#navigation").attr("role", "navigation"); jQuery("#primary-content").attr("role", "main"); jQuery("#sidebar").attr("role", "complementary"); jQuery("#searchform").attr("role", "search"); }); Antivirus reports:
| ||
http://grzejniki.pl/index.php/cookie-policy/ | 200 OK Content-Length: 29636 Content-Type: text/html | clean |
http://grzejniki.pl/index.php/cookie-policy/?mystique=jquery_init&ver=2.4.2 | 200 OK Content-Length: 3457 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var $lang=new Array(); $lang[0]="Pisanie. ProszÄ czekaÄ..."; $lang[1]="Twój komentarz zostaÅ dodany."; $lang[2]="Napisz kolejny komentarz"; jQuery(document).ready(function ($) { if (isIE6) { jQuery('#page').append("<div class='crap-browser-warning'>Używasz starej i peÅnej bÅÄdów przeglÄ darki. Przejdź na <a href='http://www.mozilla.com/firefox/'>normalnÄ przeglÄ darkÄ</a> lub pomyÅl o <a href='http://ww setup_comment_controls(); setup_comment_ajax(); jQuery('a.print').click(function() { jQuery('.post.single').printElement({printMode:'popup'}); return false; }); jQuery("#navigation").attr("role", "navigation"); jQuery("#primary-content").attr("role", "main"); jQuery("#sidebar").attr("role", "complementary"); jQuery("#searchform").attr("role", "search"); }); Antivirus reports:
| ||
http://grzejniki.pl/index.php/cookie-policy-2/ | 200 OK Content-Length: 24702 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: grzejniki.pl
Result:
HTTP/1.1 200 OK
Date: Sun, 01 Jun 2014 20:50:24 GMT
Server: IdeaWebServer/v0.80
Content-Type: text/html; charset=UTF-8
X-Pingback: http://blog.grzejniki.pl/xmlrpc.php
GET / HTTP/1.1
Host: grzejniki.pl
Result:
HTTP/1.1 200 OK
Date: Sun, 01 Jun 2014 20:50:24 GMT
Server: IdeaWebServer/v0.80
Content-Type: text/html; charset=UTF-8
X-Pingback: http://blog.grzejniki.pl/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: grzejniki.pl
Referer: http://www.google.com/search?q=grzejniki.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: grzejniki.pl
Referer: http://www.google.com/search?q=grzejniki.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=grzejniki.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://grzejniki.pl/
Result: grzejniki.pl is not infected or malware details are not published yet.
Result: grzejniki.pl is not infected or malware details are not published yet.