Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=californiasurgicalinstitute.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://californiasurgicalinstitute.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: californiasurgicalinstitute.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 01 Dec 2014 14:27:35 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Mon, 01 Dec 2014 14:27:35 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: e6fd15eff7a643fd0ed25587e7316a13=it0nsekugakc1dvp4rsl62ai52; path=/
X-Powered-By: PHP/5.1.6
GET / HTTP/1.1
Host: californiasurgicalinstitute.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 01 Dec 2014 14:27:35 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Mon, 01 Dec 2014 14:27:35 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: e6fd15eff7a643fd0ed25587e7316a13=it0nsekugakc1dvp4rsl62ai52; path=/
X-Powered-By: PHP/5.1.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: californiasurgicalinstitute.com
Referer: http://www.google.com/search?q=californiasurgicalinstitute.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: californiasurgicalinstitute.com
Referer: http://www.google.com/search?q=californiasurgicalinstitute.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://californiasurgicalinstitute.com/ | 200 OK Content-Length: 71198 Content-Type: text/html | clean |
http://californiasurgicalinstitute.com/cache/js-d41d8cd98f00b204e9800998ecf8427e.php | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.californiasurgicalinstitute.com/components/com_rsform/controller/functions.js | 200 OK Content-Length: 23176 Content-Type: application/x-javascript | clean |
http://californiasurgicalinstitute.com/media/system/js/caption.js | 403 Forbidden Content-Length: 324 Content-Type: text/html | clean |
http://californiasurgicalinstitute.com/test404page.js | 404 Not Found Content-Length: 308 Content-Type: text/html | clean |
http://californiasurgicalinstitute.com/components/com_rsform/controller/functions.js | 200 OK Content-Length: 23176 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12746 Content-Type: application/javascript | clean |
http://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit | 200 OK Content-Length: 1427 Content-Type: text/javascript | clean |
http://www.getresponse.com/view_webform.js?wid=25166 | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 01 Dec 2014 14:52:13 GMT Location: http://app.getresponse.com/view_webform.js?wid=25166 Server: nginx Content-Length: 0 Content-Type: text/html | clean |
http://app.getresponse.com/view_webform.js?wid=25166 | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://www.googleadservices.com/pagead/conversion.js | 200 OK Content-Length: 10926 Content-Type: text/javascript | clean |