Re: url = -ozz.su/encode/login.php
IP: -45.10.88.69 See: https://www.virustotal.com/latest-scan/http://ozz.su/encode/login.php
where 4 detect. -http://ozz.su/encode/login.php is in Dr.Web malicious sites list!
See also: https://domainwat.ch/site/ozz.su
IP relation recent detections: https://www.virustotal.com/gui/ip-address/45.10.88.69/relations
On IP hoster: https://www.shodan.io/host/45.10.88.69
nginx services:
| http-ls: Volume /
| maxfiles limit reached (10)
| SIZE TIME FILENAME
| - 2020-05-01 20:55 __MACOSX/
| - 2020-04-18 15:32 __MACOSX/guadox/
| - 2020-04-18 15:43 _MACOSX/h1n1/
| - 2013-12-29 08:27 beta017.1/
| - 2020-02-24 19:01 blackbot/
| - 2015-03-12 03:46 encode/
| - 2020-04-18 15:35 guadox/
| 1.3K 2015-12-16 04:12 guadox/captcha.php
| - 2020-04-13 21:37 guadox/css/
| - 2020-04-13 21:37 guadox/fonts/
|
Retirable jQuery libraries: https://retire.insecurity.today/#!/scan/b88d43afa01af43f8cff0c9eda2969f654f05c03bd53620003ad68ae22b5d3a8
Links to widget_manager found: -https://jlinkjuice.blogspot.com/
polonus (volunteer 3rd party cold recon website security and website error-hunter)