Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cornandcow.co.nz
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mfgco.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Dec 2014 10:51:55 GMT
Location: http://www.mfgco.com/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://192.249.112.236/~mfgcoc5/xmlrpc.php
X-Powered-By: PHP/5.3.29
...0 bytes of data.
GET / HTTP/1.1
Host: mfgco.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Mon, 29 Dec 2014 10:51:55 GMT
Location: http://www.mfgco.com/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://192.249.112.236/~mfgcoc5/xmlrpc.php
X-Powered-By: PHP/5.3.29
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mfgco.com
Referer: http://www.google.com/search?q=mfgco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mfgco.com
Referer: http://www.google.com/search?q=mfgco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.cornandcow.co.nz/ | HTTP/1.1 302 Found Connection: close Date: Thu, 25 Sep 2014 13:26:27 GMT Location: http://jarks.co.nz Server: Apache/2.2.16 (Debian) Vary: Accept-Encoding Content-Length: 288 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://jarks.co.nz/ | 200 OK Content-Length: 18792 Content-Type: text/html | clean |
http://jarks.co.nz/wp-content/plugins/wp-minify/min/?f=wp-includes/js/jquery/jquery.js,wp-includes/js/jquery/jquery-migrate.min.js,wp-content/themes/white-rock/js/libs/modernizr-2.0.6.min.js,wp-content/themes/white-rock/js/plugins.js,wp-content/themes/white-rock/js/script.js,wp-content/themes/white-rock/js/progression-shortcodes-lib.js,wp-includes/js/comment-reply.min.js,wp-content/themes/white-rock/js/jquery.gomap-1.3.2.min.js&m=1411348569 | 200 OK Content-Length: 214298 Content-Type: application/x-javascript | clean |
http://maps.google.com/maps/api/js?sensor=true&ver=20120206 | 200 OK Content-Length: 5023 Content-Type: text/javascript | clean |
http://jarks.co.nz/wp-content/plugins/wysija-newsletters/js/validate/languages/jquery.validationEngine-en.js?ver=2.6.6 | 200 OK Content-Length: 11023 Content-Type: application/javascript | clean |
http://jarks.co.nz/wp-content/plugins/wysija-newsletters/js/validate/jquery.validationEngine.js?ver=2.6.6 | 200 OK Content-Length: 69692 Content-Type: application/javascript | clean |
http://jarks.co.nz/wp-content/plugins/wysija-newsletters/js/front-subscribers.js?ver=2.6.6 | 200 OK Content-Length: 3171 Content-Type: application/javascript | clean |
http://www.cornandcow.co.nz/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 25 Sep 2014 13:26:42 GMT Location: http://jarks.co.nz Server: Apache/2.2.16 (Debian) Vary: Accept-Encoding Content-Length: 288 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://jarks.co.nz/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |