Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jcook.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Sep 2014 15:03:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 437
Content-Type: text/html; charset=ISO-8859-1
Last-Modified: Sun, 18 Dec 2011 17:16:35 GMT
...437 bytes of data.
GET / HTTP/1.1
Host: jcook.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Sep 2014 15:03:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 437
Content-Type: text/html; charset=ISO-8859-1
Last-Modified: Sun, 18 Dec 2011 17:16:35 GMT
...437 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jcook.info
Referer: http://www.google.com/search?q=jcook.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jcook.info
Referer: http://www.google.com/search?q=jcook.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://jcook.info/ | HTTP/1.1 200 OK Connection: close Date: Thu, 25 Sep 2014 15:03:24 GMT Server: Apache Vary: Accept-Encoding Content-Length: 437 Content-Type: text/html; charset=ISO-8859-1 Last-Modified: Sun, 18 Dec 2011 17:16:35 GMT | clean |
http://jcook.info/jcook.net/index.html | 200 OK Content-Length: 992 Content-Type: text/html | clean |
http://jcook.info/phpbb | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 25 Sep 2014 15:03:26 GMT Location: http://jcook.info/phpbb/ Server: Apache Content-Length: 292 Content-Type: text/html; charset=iso-8859-1 | clean |
http://jcook.info/phpbb/ | 200 OK Content-Length: 7585 Content-Type: text/html | clean |
http://jcook.info/phpbb/./styles/prosilver/template/styleswitcher.js | 200 OK Content-Length: 2517 Content-Type: text/javascript | clean |
http://jcook.info/./styles/prosilver/template/forum_fn.js | HTTP/1.1 302 Found Connection: close Date: Thu, 25 Sep 2014 15:03:28 GMT Location: http://containerabsolut.ru/fakir/index.php Server: Apache Content-Length: 286 Content-Type: text/html; charset=iso-8859-1 | clean |
http://containerabsolut.ru/fakir/index.php | 500 Can't connect to containerabsolut.ru:80 (Bad hostname) Content-Length: 170 Content-Type: text/plain | clean |
http://containerabsolut.ru/test404page.js | 500 Can't connect to containerabsolut.ru:80 (Bad hostname) Content-Length: 170 Content-Type: text/plain | clean |
http://jcook.info/jcook.net/kimberly/ | 200 OK Content-Length: 391 Content-Type: text/html | clean |
http://jcook.info/jcook.net/kimberly/recent/index.html | 200 OK Content-Length: 1079 Content-Type: text/html | clean |
http://jcook.info/jcook.net/kimberly/recent/00000001.JPG | 200 OK Content-Length: 300952 Content-Type: image/jpeg | clean |
http://jcook.info/theinn/ | 401 Authorization Required Content-Length: 162 Content-Type: text/html | clean |
http://jcook.info/zenphoto | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 25 Sep 2014 15:03:31 GMT Location: http://jcook.info/zenphoto/ Server: Apache Content-Length: 295 Content-Type: text/html; charset=iso-8859-1 | clean |
http://jcook.info/zenphoto/ | 200 OK Content-Length: 7001 Content-Type: text/html | clean |
http://jcook.info/zenphoto/zp-core/js/jquery.js | 200 OK Content-Length: 94020 Content-Type: text/javascript | clean |
http://jcook.info/zenphoto/zp-core/js/zenphoto.js | 200 OK Content-Length: 1343 Content-Type: text/javascript | clean |
http://jcook.info/zenphoto/zp-core/js/admin.js | 200 OK Content-Length: 9101 Content-Type: text/javascript | clean |
http://jcook.info/zenphoto/trina-40th-skydiving/ | 200 OK Content-Length: 8033 Content-Type: text/html | clean |
http://jcook.info/zenphoto/zp-core/zp-extensions/colorbox_js/jquery.colorbox-min.js | 200 OK Content-Length: 9596 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jcook.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jcook.info/
Result: jcook.info is not infected or malware details are not published yet.
Result: jcook.info is not infected or malware details are not published yet.