Scanned pages/files
Request | Server response | Status |
http://401k-advantage.com/ | 200 OK Content-Length: 10440 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Krad Xin RSS Feed ...[197 bytes skipped]... > <head profile="http://gmpg.org/xfn/11"> <meta http-equiv="Content-Type" content="text/html; charset=UTF-7" /> <title>401Kï¼ç¢ºå®æ åºå¹´éï¼ã®ã¢ããã³ãã¼ã¸</title> <link rel="stylesheet" href="http://401k-advantage.com/wp/wp-content/themes/401k/style.css" type="text/css" media="screen" /> <link rel="alternate" type="application/rss+xml" title="Hacked by Krad Xin RSS Feed" href="http://401k-advantage.com/feed" /> <link rel="pingback" href="http://401k-advantage.com/wp/xmlrpc.php" /> <link rel='stylesheet' id='contact-form-7-css' href='http://401k-advantage.com/wp/wp-content/plugins/contact-form-7/styles.css?ver=2.4.4' type='text/css' media='all' /> <script type='text/javascript' src='http://401k-advantage.com/wp/wp-includes/js/l10n.js?ver=20101110'></script> <script type='text/javascript' ...[10784 bytes skipped]... | ||
http://401k-advantage.com/wp/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/x-javascript | clean |
http://401k-advantage.com/wp/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 78620 Content-Type: application/x-javascript | clean |
http://401k-advantage.com/about401k.html | 200 OK Content-Length: 8779 Content-Type: text/html | clean |
http://401k-advantage.com/about401k/senior-life.html | 200 OK Content-Length: 12203 Content-Type: text/html | clean |
http://401k-advantage.com/about401k/retirement-allowance.html | 200 OK Content-Length: 10022 Content-Type: text/html | clean |
http://401k-advantage.com/about401k/efficiency-operation.html | 200 OK Content-Length: 10215 Content-Type: text/html | clean |
http://401k-advantage.com/about401k/401k-introduction.html | 200 OK Content-Length: 9848 Content-Type: text/html | clean |
http://401k-advantage.com/about401k/401k-introduction.html/for-company | 404 Not Found Content-Length: 9038 Content-Type: text/html | clean |
http://www.google.com/jsapi?key=ABQIAAAASFzcBLyJy0T9qjQPH0o33xROWihuzz8CwENELB8IQKI_vHLMTRRWoqlXmSISOvY9mjwtrZeiI_iscQ | 200 OK Content-Length: 24633 Content-Type: text/javascript | clean |
http://401k-advantage.com/category/%e5%8b%95%e7%94%bb%ef%bc%9a%e7%a2%ba%e5%ae%9a%e6%8b%a0%e5%87%ba%e5%b9%b4%e9%87%91 | 200 OK Content-Length: 8759 Content-Type: text/html | clean |
http://401k-advantage.com/%e3%83%9e%e3%83%b3%e3%82%ac%ef%bc%9a%e7%af%80%e7%b4%84%e3%81%97%e3%81%aa%e3%81%8c%e3%82%89%e3%81%98%e3%81%b6%e3%82%93%e5%b9%b4%e9%87%91%ef%bc%88%e5%90%b9%e3%81%8d%e6%9b%bf%e3%81%88%ef%bc%89.html | 200 OK Content-Length: 8840 Content-Type: text/html | clean |
http://401k-advantage.com/category/seminar-info | 200 OK Content-Length: 27543 Content-Type: text/html | clean |
http://401k-advantage.com/%e7%af%80%e7%a8%8e%e3%81%a7%e3%81%95%e3%82%89%e3%81%ab%ef%bc%93%ef%bc%90%ef%bc%85%e4%bb%a5%e4%b8%8a%e3%81%ae%e5%88%a9%e7%9b%8a%e3%82%92%e4%b8%8a%e3%81%92%e3%82%8b%e6%96%b9%e6%b3%95%e3%82%92%e6%95%99.html | 200 OK Content-Length: 9703 Content-Type: text/html | clean |
http://401k-advantage.com/company.html | 200 OK Content-Length: 8758 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 401k-advantage.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 09 Jun 2015 17:59:59 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
X-Pingback: http://401k-advantage.com/wp/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: 401k-advantage.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 09 Jun 2015 17:59:59 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
X-Pingback: http://401k-advantage.com/wp/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: 401k-advantage.com
Referer: http://www.google.com/search?q=401k-advantage.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 401k-advantage.com
Referer: http://www.google.com/search?q=401k-advantage.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=401k-advantage.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://401k-advantage.com/
Result: 401k-advantage.com is not infected or malware details are not published yet.
Result: 401k-advantage.com is not infected or malware details are not published yet.