Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jatiluwih.org
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 31 Dec 2015 03:48:55 GMT
Location: http://www.jatiluwih.org/
Server: ghs
Content-Length: 222
Content-Type: text/html; charset=UTF-8
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
...222 bytes of data.
GET / HTTP/1.1
Host: jatiluwih.org
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 31 Dec 2015 03:48:55 GMT
Location: http://www.jatiluwih.org/
Server: ghs
Content-Length: 222
Content-Type: text/html; charset=UTF-8
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
...222 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jatiluwih.org
Referer: http://www.google.com/search?q=jatiluwih.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jatiluwih.org
Referer: http://www.google.com/search?q=jatiluwih.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://jatiluwih.org/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:48:55 GMT Location: http://www.jatiluwih.org/ Server: ghs Content-Length: 222 Content-Type: text/html; charset=UTF-8 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.jatiluwih.org/ | 200 OK Content-Length: 144916 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.5.1/jquery.min.js | 200 OK Content-Length: 85260 Content-Type: text/javascript | clean |
http://jatiluwih.org//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:48:57 GMT Location: http://www.jatiluwih.org//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ Server: ghs Content-Length: 297 Content-Type: text/html; charset=UTF-8 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.jatiluwih.org//translate.google.com/translate_a/element.js?cb=googletranslateelementinit/ | 404 Not Found Content-Length: 127942 Content-Type: text/html | clean |
http://www.jatiluwih.org/feeds/posts/default/-/Berita%20Baru?orderby=updated&alt=json-in-script&callback=labelthumbs | 200 OK Content-Length: 2681 Content-Type: text/javascript | clean |
http://daylogs.com/dw.js | 200 OK Content-Length: 9297 Content-Type: text/javascript | clean |
http://widget.networkedblogs.com/getwidget?bid=1361285 | 200 OK Content-Length: 14555 Content-Type: application/javascript | clean |
http://jatiluwih.org//s7.addthis.com/js/300/addthis_widget.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:48:59 GMT Location: http://www.jatiluwih.org//s7.addthis.com/js/300/addthis_widget.js/ Server: ghs Content-Length: 263 Content-Type: text/html; charset=UTF-8 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.jatiluwih.org//s7.addthis.com/js/300/addthis_widget.js/ | 404 Not Found Content-Length: 127663 Content-Type: text/html | clean |
http://feedjit.com/serve/?vv=1512&tft=3&dd=0&wid=a0cb491dad3049538ebcb323c3936d9a&pid=0&proid=0&bc=FFFFFF&tc=000000&brd1=012B6B&lnk=135D9E&hc=FFFFFF&hfc=2853A8&btn=C99700&ww=298&wne=2&srefs=0 | 200 OK Content-Length: 44273 Content-Type: application/x-javascript | clean |
http://www.jscache.com/wejs?wtype=certificateOfExcellence&uniq=733&locationId=1822321&lang=in&year=2015&display_version=2 | 200 OK Content-Length: 174 Content-Type: application/x-javascript | clean |
http://jatiluwih.org/js/cookiechoices.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:49:02 GMT Location: http://www.jatiluwih.org/js/cookiechoices.js Server: ghs Content-Length: 241 Content-Type: text/html; charset=UTF-8 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.jatiluwih.org/js/cookiechoices.js | 200 OK Content-Length: 6340 Content-Type: application/x-javascript | clean |
https://www.blogger.com/static/v1/widgets/278981662-widgets.js | 200 OK Content-Length: 101226 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 13354 Content-Type: application/javascript | clean |
http://jatiluwih.org//www.blogger.com/rearrange?blogID=2950477520922206225&widgetType=PageList&widgetId=PageList1&action=editWidget§ionId=crosscol/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:49:03 GMT Location: http://www.jatiluwih.org//www.blogger.com/rearrange?blogID=2950477520922206225&widgetType=PageList&widgetId=PageList1&action=editWidget§ionId=crosscol/ Server: ghs Content-Length: 368 Content-Type: text/html; charset=UTF-8 X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://www.jatiluwih.org//www.blogger.com/rearrange?blogid=2950477520922206225&widgettype=pagelist&widgetid=pagelist1&action=editwidget§ionid=crosscol/ | 404 Not Found Content-Length: 128472 Content-Type: text/html | clean |
http://www.jatiluwih.org/p/akte-notaris-jtb.html | 200 OK Content-Length: 134620 Content-Type: text/html | clean |
https://www.blogger.com/static/v1/jsbin/2443413180-comment_from_post_iframe.js | 200 OK Content-Length: 13362 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jatiluwih.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jatiluwih.org/
Result: jatiluwih.org is not infected or malware details are not published yet.
Result: jatiluwih.org is not infected or malware details are not published yet.