Scanned pages/files
Request | Server response | Status |
http://jiin.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 15 Jan 2015 07:03:25 GMT Location: http://jp.jiin.com Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7i mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.6 Content-Length: 408 Content-Type: text/html; charset=iso-8859-1 | clean |
http://jp.jiin.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 15 Jan 2015 07:03:25 GMT Location: http://jiin.com Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7i mod_auth_passthrough/2.1 mod_bwlimited/1.4 mod_fcgid/2.3.6 Content-Length: 387 Content-Type: text/html; charset=iso-8859-1 | clean |
http://jiin.com/ | 200 OK Content-Length: 44234 Content-Type: text/html | clean |
http://jiin.com/wp-content/themes/CherryFramework/js/jquery-1.7.2.min.js?ver=1.7.2 | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/themes/CherryFramework/js/jquery-migrate-1.2.1.min.js?ver=1.2.1 | 200 OK Content-Length: 7199 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-includes/js/swfobject.js?ver=2.2-20120417 | 200 OK Content-Length: 10231 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/themes/CherryFramework/js/modernizr.js?ver=2.0.6 | 200 OK Content-Length: 12314 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/themes/CherryFramework/js/jflickrfeed.js?ver=1.0 | 200 OK Content-Length: 1078 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/plugins/cherry-plugin/lib/js/jquery.easing.1.3.js?ver=1.3 | 200 OK Content-Length: 3307 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/themes/CherryFramework/js/custom.js?ver=1.0 | 200 OK Content-Length: 7118 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/themes/CherryFramework/bootstrap/js/bootstrap.min.js?ver=2.3.0 | 200 OK Content-Length: 28756 Content-Type: application/x-javascript | clean |
http://jiin.com/wp-content/plugins/cherry-plugin/lib/js/elasti-carousel/jquery.elastislide.js?ver=1.2.6 | 200 OK Content-Length: 6252 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(j,c,l){c.fn.touchwipe=function(a){var b={min_move_x:20,min_move_y:20,wipeLeft:function(){},wipeRight:function(){},wipeUp:function(){},wipeDown:function(){},preventDefaultEvents:!0};a&&c.extend(b,a);this.each(function(){function a(){this.removeEventListener("touchmove",c);d=null;k=!1}function c(h){b.preventDefaultEvents&&h.preventDefault();if(k){var f=d-h.touches[0].pageX;h=e-h.touches[0].pageY;Math.abs(f)>=b.min_move_x?(a(),0<f?b.wipeLeft():b.wipeRight()):Math.abs new c.elastislide(a,this))});return this}})(window,jQuery); Antivirus reports:
| ||
http://jiin.net//maps.googleapis.com/maps/api/js?v=3.exp&sensor=false&ver=4.1/ | 404 Not Found Content-Length: 530 Content-Type: text/html | clean |
http://jiin.net/test404page.js | 404 Not Found Content-Length: 513 Content-Type: text/html | clean |
http://jiin.com/wp-content/themes/CherryFramework/js/jquery.mobile.customized.min.js | 200 OK Content-Length: 17219 Content-Type: application/x-javascript | clean |
http://jiin.net//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 554 Content-Type: text/html | clean |
http://jiin.net//b.hatena.ne.jp/js/bookmark_button.js/ | 404 Not Found Content-Length: 536 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jiin.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 15 Jan 2015 07:03:25 GMT
Location: http://jp.jiin.com
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7i mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.6
Content-Length: 408
Content-Type: text/html; charset=iso-8859-1
...408 bytes of data.
GET / HTTP/1.1
Host: jiin.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 15 Jan 2015 07:03:25 GMT
Location: http://jp.jiin.com
Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7i mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_fcgid/2.3.6
Content-Length: 408
Content-Type: text/html; charset=iso-8859-1
...408 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jiin.net
Referer: http://www.google.com/search?q=jiin.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jiin.net
Referer: http://www.google.com/search?q=jiin.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jiin.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jiin.net/
Result: jiin.net is not infected or malware details are not published yet.
Result: jiin.net is not infected or malware details are not published yet.