Scanned pages/files
| Request | Server response | Status |
http://gi-10.com/ | 200 OK Content-Length: 18802 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: !-- Hacked By fantastic roubla ---- #Designed By fantastic roubla ;)# -- <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<!-- Hacked By fantastic roubla ---- #Designed By fantastic roubla ;)# --> <html><head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta charset="utf-8"> <meta content="Hacked By fantastic roubla" name="subject"> <meta content="Hacked By fantastic roubla" name="Abstract"> <meta content="Hacked By fantastic roubla" name="description"> <meta content="hacked by fantastic ...[21304 bytes skipped]... | ||
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/document_iterator.js | 404 Not Found Content-Length: 389 Content-Type: text/html | clean |
http://gi-10.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/find_proxy.js | 404 Not Found Content-Length: 382 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/get_html_text.js | 404 Not Found Content-Length: 385 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/global_constants.js | 404 Not Found Content-Length: 388 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/name_injection_builder.js | 404 Not Found Content-Length: 394 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/number_injection_builder.js | 404 Not Found Content-Length: 396 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/menu_injection_builder.js | 404 Not Found Content-Length: 394 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/string_finder.js | 404 Not Found Content-Length: 385 Content-Type: text/html | clean |
http://gi-10.com/chrome-extension://lifbcibllhkdhoafpjfnlhfpfgnpldfl/change_sink.js | 404 Not Found Content-Length: 383 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gi-10.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Jun 2015 17:20:01 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 18802
Content-Type: text/html
Last-Modified: Fri, 27 Feb 2015 19:00:41 GMT
...18802 bytes of data.
GET / HTTP/1.1
Host: gi-10.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 26 Jun 2015 17:20:01 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 18802
Content-Type: text/html
Last-Modified: Fri, 27 Feb 2015 19:00:41 GMT
...18802 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gi-10.com
Referer: http://www.google.com/search?q=gi-10.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gi-10.com
Referer: http://www.google.com/search?q=gi-10.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gi-10.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gi-10.com/
Result: gi-10.com is not infected or malware details are not published yet.
Result: gi-10.com is not infected or malware details are not published yet.