Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://ozonemumbai.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: ozonemumbai.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Mon, 22 Sep 2014 09:11:23 GMT Location: http://vkusnaya.glisfabrications.com/1pix.gif?dcsdat=1340353752671&dcssip=&os=Windows%20XP&lang=en&flashVer=WIN%2010%2C1%2C102%2C64&dcsref=http%3A%2F%2Fozonemumbai.com%2F&playerURL=http%3A%2F%2Fozonemumbai.com%2F&videoId=1501416059001&dcsuri=/viewer/media_connect_error&playerId=1522730664001&mediaURL=http%3A%2F%2Fozonemumbai.com%2F&publisherId=89804535001&errorCode=NetStream.Play.StreamNotFound&affiliateId=&sourceId=89804535001&lineupId=1521712908001&playerTag= Server: Apache Content-Length: 713 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: SZO=23; path=/; domain=ozonemumbai.com; expires=Mon, 29-Sep-2014 10:00:23 GMT | suspicious |
URL: http://vkusnaya.glisfabrications.com/1pix.gif?dcsdat=1340353752671&dcssip=&os=Windows%20XP&lang=en&flashVer=WIN%2010%2C1%2C102%2C64&dcsref=http%3A%2F%2Fozonemumbai.com%2F&playerURL=http%3A%2F%2Fozonemumbai.com%2F&videoId=1501416059001&dcsuri=/viewer/media_connect_error&playerId=1522730664001&mediaURL=http%3A%2F%2Fozonemumbai.com%2F&publisherId=89804535001&errorCode=NetStream.Play.StreamNotFound&affiliateId=&sourceId=89804535001&lineupId=1521712908001&playerTag= (imitation of visitor from search engine) GET /1pix.gif?dcsdat=1340353752671&dcssip=&os=Windows%20XP&lang=en&flashVer=WIN%2010%2C1%2C102%2C64&dcsref=http%3A%2F%2Fozonemumbai.com%2F&playerURL=http%3A%2F%2Fozonemumbai.com%2F&videoId=1501416059001&dcsuri=/viewer/media_connect_error&playerId=1522730664001&mediaURL=http%3A%2F%2Fozonemumbai.com%2F&publisherId=89804535001&errorCode=NetStream.Play.StreamNotFound&affiliateId=&sourceId=89804535001&lineupId=1521712908001&playerTag= HTTP/1.1 Host: vkusnaya.glisfabrications.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 22 Sep 2014 09:11:24 GMT Location: http://www.google.com/ Server: nginx/1.1.4 Content-Length: 160 Content-Type: text/html | suspicious |
Scanned pages/files
| Request | Server response | Status |
http://ozonemumbai.com/ | 200 OK Content-Length: 5651 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By CaptSalkus48 <html>
<meta name="google-site-verification" content="Hacked By CaptSalkus48"/> <meta http-equiv="Content-Language" content="en-us-id"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <meta name="author" content="CaptSalkus48 "> <meta name="description" content="CROT BY CaptSalkus48, Got hacked"> <meta name="robots schedule" content="auto" ...[6069 bytes skipped]... | ||
http://masterendi.googlecode.com/files/salju.js | 403 Forbidden Content-Length: 2151 Content-Type: text/html | clean |
http://masterendi.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://masterendi.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com/files/Anti%20Klik.js | 403 Forbidden Content-Length: 2157 Content-Type: text/html | clean |
http://tuyulz-blogspot.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://ozonemumbai.com//www.google.com/ | 404 Not Found Content-Length: 332 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ozonemumbai.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ozonemumbai.com/
Result: ozonemumbai.com is not infected or malware details are not published yet.
Result: ozonemumbai.com is not infected or malware details are not published yet.