Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kokubunji-rr.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kokubunji-rr.com/ | 200 OK Content-Length: 12576 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Krad Xin | BD GREY HAT HACKERS <!DOCTYPE html> <html dir="ltr" lang="ja"> <head> <meta charset="UTF-7" /> <title>Hacked by Krad Xin | BD GREY HAT HACKERS</title> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <meta name="description" content="å½å寺ã®Dj Bar Яr" /> <meta name="keywords" content="å½å寺,Dj,Bar,Яr,ã¢ã¼ã«" /> <meta http-equiv="Content-Type" content="text/javascript" /> <meta http-equiv="Content-Type" content="text/css" /> <meta name='robots' content='noindex,no ...[14546 bytes skipped]... | ||
http://kokubunji-rr.com/shared/js/jquery-1.4.4.min.js | 403 Forbidden Content-Length: 4321 Content-Type: text/html | clean |
http://kokubunji-rr.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Mon, 12 Jan 2015 19:14:27 GMT Location: http://46.161.41.247/dolos.php Server: Apache Vary: Accept-Encoding Content-Length: 214 Content-Type: text/html; charset=iso-8859-1 | clean |
http://46.161.41.247/dolos.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://46.161.41.247/test404page.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://kokubunji-rr.com/shared/js/swfobject.js | 403 Forbidden Content-Length: 4321 Content-Type: text/html | clean |
http://kokubunji-rr.com/shared/js/common.js | 403 Forbidden Content-Length: 4321 Content-Type: text/html | clean |
http://earnmoneydo.com/tds/?wordpress_theme&keyword=side &from=http://kokubunji-rr.com/&inreferer= | 200 OK Content-Length: 5329 Content-Type: text/html | clean |
http://earnmoneydo.com/vendors/jquery/jquery-1.6.4.min.js | 200 OK Content-Length: 91668 Content-Type: application/javascript | clean |
http://earnmoneydo.com/vendors/jquery/jquery-ui-1.8.16.min.js | 200 OK Content-Length: 201875 Content-Type: application/javascript | clean |
http://earnmoneydo.com/cache/js/default/elgg.1406500737.js | 200 OK Content-Length: 62119 Content-Type: text/javascript | clean |
http://earnmoneydo.com/ | 200 OK Content-Length: 44623 Content-Type: text/html | clean |
http://earnmoneydo.com/login | 200 OK Content-Length: 6292 Content-Type: text/html | clean |
http://earnmoneydo.com/forgotpassword | 200 OK Content-Length: 5986 Content-Type: text/html | clean |
http://earnmoneydo.com/activity | 200 OK Content-Length: 44596 Content-Type: text/html | clean |
http://earnmoneydo.com/js/lib/ui.river.js | 200 OK Content-Length: 360 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kokubunji-rr.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Jan 2015 19:14:25 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
X-Pingback: http://kokubunji-rr.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: kokubunji-rr.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 12 Jan 2015 19:14:25 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
X-Pingback: http://kokubunji-rr.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: kokubunji-rr.com
Referer: http://www.google.com/search?q=kokubunji-rr.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kokubunji-rr.com
Referer: http://www.google.com/search?q=kokubunji-rr.com
Result:
The result is similar to the first query. There are no suspicious redirects found.