Scanned pages/files
Request | Server response | Status |
http://omnisiz.com/ | 200 OK Content-Length: 26486 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HackeD By Explo!T3r ...[20708 bytes skipped]... <!-- <li style="height:176px!important;"> --> <li style="margin:0 40px 10px 0;"> <div class="wrap_images" style="background:url(img/tc/cfbtighteningserum.jpg) center no-repeat;"><a href="shoppage.php?shopid=71" target="_self"><img src="images/spacer.gif" title="HackeD By Explo!T3r"/></a></div> <!-- <img src="" width="75" height="18" class="k-icon2"/> --> <img src="images/lycon_28.png" width="190" height="11" style="margin-top:5px;" /> <p class="name" style="color:40154e;"><a href="shoppage.php?shopid=71" target="_self"> HackeD By Explo!T3r</a></p> <p></p> ...[10368 bytes skipped]... | ||
http://ie7-js.googlecode.com/svn/version/2.1(beta4)/IE9.js | 200 OK Content-Length: 41514 Content-Type: text/javascript | clean |
http://omnisiz.com/ajax/jquery.js | 200 OK Content-Length: 54075 Content-Type: application/x-javascript | clean |
http://omnisiz.com/index.php | 200 OK Content-Length: 26450 Content-Type: text/html | clean |
http://omnisiz.com/page.php?id=1 | 200 OK Content-Length: 14755 Content-Type: text/html | clean |
http://omnisiz.com/lycon.php | 200 OK Content-Length: 20284 Content-Type: text/html | clean |
http://omnisiz.com/priori.php | 200 OK Content-Length: 20417 Content-Type: text/html | clean |
http://omnisiz.com/olavie.php | 200 OK Content-Length: 19638 Content-Type: text/html | clean |
http://omnisiz.com/taiji.php | 200 OK Content-Length: 18221 Content-Type: text/html | clean |
http://omnisiz.com/ourclients.php | 200 OK Content-Length: 18295 Content-Type: text/html | clean |
http://omnisiz.com/page.php?id=7 | 200 OK Content-Length: 14904 Content-Type: text/html | clean |
http://omnisiz.com/page.php?id=8 | 200 OK Content-Length: 18458 Content-Type: text/html | clean |
http://omnisiz.com/skype:+6622910584?call&origin=%7B'agent'%3A'FFTB%2F7.3.16540.9015'%2C'browser'%3A'mozilla%2F32.0'%2C'fingerprint'%3A'%7B4AE5AF56-0724-4661-B586-0209D4159C3C%7D'%2C'uiid'%3A'0'%2C'number_type'%3A'SPNR'%2C'url'%3A'http%3A%2F%2Fwww.omnisiz.com%2Fspaw_editor%2Fempty%2Fempty.html'%7D | 404 Not Found Content-Length: 215 Content-Type: text/html | clean |
http://omnisiz.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://omnisiz.com/skype:+6622910584?sms&origin=%7B'agent'%3A'FFTB%2F7.3.16540.9015'%2C'browser'%3A'mozilla%2F32.0'%2C'fingerprint'%3A'%7B4AE5AF56-0724-4661-B586-0209D4159C3C%7D'%2C'uiid'%3A'0'%2C'number_type'%3A'SPNR'%2C'url'%3A'http%3A%2F%2Fwww.omnisiz.com%2Fspaw_editor%2Fempty%2Fempty.html'%7D | 404 Not Found Content-Length: 215 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: omnisiz.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 14 Dec 2015 02:26:33 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=83ovsvjrnpt1e5erjcoa7batu4; path=/
X-Powered-By: PHP/5.3.23
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: omnisiz.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 14 Dec 2015 02:26:33 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=83ovsvjrnpt1e5erjcoa7batu4; path=/
X-Powered-By: PHP/5.3.23
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: omnisiz.com
Referer: http://www.google.com/search?q=omnisiz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: omnisiz.com
Referer: http://www.google.com/search?q=omnisiz.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=omnisiz.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://omnisiz.com/
Result: omnisiz.com is not infected or malware details are not published yet.
Result: omnisiz.com is not infected or malware details are not published yet.