Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hobomomo.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 07 Apr 2015 06:38:50 GMT
Accept-Ranges: bytes
ETag: "1508232-3659a-5131c93d971f5"
Server: Apache
Content-Length: 222618
Content-Type: text/html
Last-Modified: Tue, 07 Apr 2015 06:32:24 GMT
...222618 bytes of data.
GET / HTTP/1.1
Host: hobomomo.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 07 Apr 2015 06:38:50 GMT
Accept-Ranges: bytes
ETag: "1508232-3659a-5131c93d971f5"
Server: Apache
Content-Length: 222618
Content-Type: text/html
Last-Modified: Tue, 07 Apr 2015 06:32:24 GMT
...222618 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hobomomo.com
Referer: http://www.google.com/search?q=hobomomo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hobomomo.com
Referer: http://www.google.com/search?q=hobomomo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://hobomomo.com/ | 200 OK Content-Length: 222618 Content-Type: text/html | clean |
http://hobomomo.com/js/jQ.js | 200 OK Content-Length: 284184 Content-Type: text/javascript | clean |
http://hobomomo.com/js/entryVote.js | 200 OK Content-Length: 2979 Content-Type: text/javascript | clean |
http://hobomomo.com/js/pUp.js | 200 OK Content-Length: 241 Content-Type: text/javascript | clean |
http://hobomomo.com/js/jqueryCookie.js | 200 OK Content-Length: 3140 Content-Type: text/javascript | clean |
http://hobomomo.com/js/cat.js | 200 OK Content-Length: 552 Content-Type: text/javascript | clean |
http://blogroll.livedoor.net/js/blogroll.js | 200 OK Content-Length: 15522 Content-Type: application/x-javascript | clean |
http://rc9.i2i.jp/view/index.php?00803597&js | 200 OK Content-Length: 10417 Content-Type: text/javascript | clean |
http://rc9.i2i.jp/bin/get.x?00803597&&1 | 200 OK Content-Length: 6770 Content-Type: text/html | clean |
http://rc9.i2i.jp/bin/+i2i_ad_link+ | 404 Not Found Content-Length: 275 Content-Type: text/html | clean |
http://rc9.i2i.jp/test404page.js | 404 Not Found Content-Length: 272 Content-Type: text/html | clean |
http://counter1.fc2.com/counter.php?id=89354659 | 200 Ok Content-Length: 1134 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hobomomo.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hobomomo.com/
Result: hobomomo.com is not infected or malware details are not published yet.
Result: hobomomo.com is not infected or malware details are not published yet.