Scanned pages/files
| Request | Server response | Status |
http://bluestargems.com/ | 200 OK Content-Length: 532 Content-Type: text/html | clean |
http://bluestargems.com/shop/index.php | 200 OK Content-Length: 13151 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By SALAR Security Team ...[11804 bytes skipped]... k. Accurate size, contrast, un-limited quantity, precision cutting, and early delivery supply are the policies of <STRONG>BLUE STAR TRADING CO., LTD.</STRONG> </FONT></FONT></P> <P align=left><IMG height=326 alt="" hspace=0 src="/ktmlpro/images/color%20card.gif?0.16139451316177972" width=532 border=0></P> <html> <head><title>Hacked By SALAR Security Team</title></head><body bgcolor="black"> <center><img src="http://sade90.persiangig.com/image/Netsalar.jpg"><font color="red"><h2>Hacked By SALAR Security Team</h2></font><font color="ffffff"></font><font color="red"><h2>Netsalar was here !</h2></font> </body></html></td> </tr> </table> <!----//End Area---> <!----//S ...[5219 bytes skipped]... | ||
http://bluestargems.com/shop/
index.php | 404 Not Found Content-Length: 214 Content-Type: text/html | clean |
http://bluestargems.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://bluestargems.com/shop/
content.php?webId=2&menuId=4&menuName=About Us | 404 Not Found Content-Length: 216 Content-Type: text/html | clean |
http://bluestargems.com/shop/
product_cat.php | 404 Not Found Content-Length: 220 Content-Type: text/html | clean |
http://bluestargems.com/shop/
content.php?contentGroup=3 | 404 Not Found Content-Length: 216 Content-Type: text/html | clean |
http://bluestargems.com/shop/
content.php?webId=2&menuId=3&menuName=Contact Us | 404 Not Found Content-Length: 216 Content-Type: text/html | clean |
http://bluestargems.com/shop/content_view.php?contentGroup=3&contentId=3 | 200 OK Content-Length: 9645 Content-Type: text/html | clean |
http://bluestargems.com/shop/product_view1.php?productId=31 | 200 OK Content-Length: 9996 Content-Type: text/html | clean |
http://bluestargems.com/shop/ | 200 OK Content-Length: 13151 Content-Type: text/html | clean |
http://bluestargems.com/shop/product.php | 200 OK Content-Length: 23492 Content-Type: text/html | clean |
http://bluestargems.com/shop/product_view1.php?productId=30 | 200 OK Content-Length: 10495 Content-Type: text/html | clean |
http://bluestargems.com/shop/product_view1.php?productId=29 | 200 OK Content-Length: 9767 Content-Type: text/html | clean |
http://bluestargems.com/shop/product_view1.php?productId=28 | 200 OK Content-Length: 9809 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bluestargems.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 09 May 2015 11:19:22 GMT
Accept-Ranges: bytes
ETag: "36f263-214-daa31b00"
Server: Apache/2.2.3 (CentOS)
Content-Length: 532
Content-Type: text/html; charset=TIS-620
Last-Modified: Wed, 16 Jul 2014 07:55:56 GMT
...532 bytes of data.
GET / HTTP/1.1
Host: bluestargems.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 09 May 2015 11:19:22 GMT
Accept-Ranges: bytes
ETag: "36f263-214-daa31b00"
Server: Apache/2.2.3 (CentOS)
Content-Length: 532
Content-Type: text/html; charset=TIS-620
Last-Modified: Wed, 16 Jul 2014 07:55:56 GMT
...532 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: bluestargems.com
Referer: http://www.google.com/search?q=bluestargems.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bluestargems.com
Referer: http://www.google.com/search?q=bluestargems.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bluestargems.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bluestargems.com/
Result: bluestargems.com is not infected or malware details are not published yet.
Result: bluestargems.com is not infected or malware details are not published yet.