Scanned pages/files
Request | Server response | Status |
http://www.mobimag.ru/ | 200 OK Content-Length: 61424 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: !-- Hacked By Krond -- ...[69874 bytes skipped]... //cft2.mobi.ru/_templates/mobi_main/images/ajax-loader.gif" width="32" height="32"></div> <div class="FeedBackResult" id="FeedBackResult"></div> </form> </div> </div> <script type="text/javascript"> $(function() { $('.LBImage').lightBox(); }); </script> </div> <!-- Hacked By Krond --> <script src="http://cft2.mobi.ru/js/jquery172min.js" type="text/javascript"></script> <script src="http://cft2.mobi.ru/js/jquerymetadata.js" type="text/javascript"></script> <script src="http://cft2.mobi.ru/js/openxtag.js" type="text/javascript"></script> <script language="JavaScript"> var fullscreen_banner_hide_delay_timer; var fullscreen_banner_hide_delay_timer_counter; var fullscreen_banner_hi ...[4831 bytes skipped]... | ||
http://cft2.mobi.ru/js/jquery172min.js | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://cft2.mobi.ru/js/jquerymetadata.js | 200 OK Content-Length: 4055 Content-Type: application/x-javascript | clean |
http://cft2.mobi.ru/js/openxtag.js | 200 OK Content-Length: 5898 Content-Type: application/x-javascript | clean |
https://w.uptolike.com/widgets/v1/zp.js?pid=45326 | 200 OK Content-Length: 41936 Content-Type: application/javascript | clean |
http://www.mobimag.ru/test404page.js | 404 Not Found Content-Length: 28048 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mobimag.ru
Result:
GET / HTTP/1.1
Host: mobimag.ru
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mobimag.ru
Referer: http://www.google.com/search?q=mobimag.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mobimag.ru
Referer: http://www.google.com/search?q=mobimag.ru
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mobimag.ru
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mobimag.ru/
Result: mobimag.ru is not infected or malware details are not published yet.
Result: mobimag.ru is not infected or malware details are not published yet.