Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hidalgocold.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 29 Jan 2015 06:26:30 GMT
Server: nginx/1.4.6 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://hidalgocold.com/xmlrpc.php
X-Powered-By: PHP/5.5.9-1ubuntu4.5
GET / HTTP/1.1
Host: hidalgocold.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 29 Jan 2015 06:26:30 GMT
Server: nginx/1.4.6 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://hidalgocold.com/xmlrpc.php
X-Powered-By: PHP/5.5.9-1ubuntu4.5
Second query (visit from search engine):
GET / HTTP/1.1
Host: hidalgocold.com
Referer: http://www.google.com/search?q=hidalgocold.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hidalgocold.com
Referer: http://www.google.com/search?q=hidalgocold.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.hidalgocold.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 29 Jan 2015 06:26:29 GMT Location: http://hidalgocold.com/ Server: nginx/1.4.6 (Ubuntu) Content-Type: text/html; charset=UTF-8 X-Pingback: http://hidalgocold.com/xmlrpc.php X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://hidalgocold.com/ | 200 OK Content-Length: 26167 Content-Type: text/html | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/jquery.js?ver=3.4.2 | 200 OK Content-Length: 94839 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/plugins/shortcodes-ultimate/js/jwplayer.js?ver=3.9.5 | 200 OK Content-Length: 93588 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/plugins/shortcodes-ultimate/js/nivoslider.js?ver=3.9.5 | 200 OK Content-Length: 15919 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/plugins/shortcodes-ultimate/js/jcarousel.js?ver=3.9.5 | 200 OK Content-Length: 15650 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/plugins/shortcodes-ultimate/js/init.js?ver=3.9.5 | 200 OK Content-Length: 1860 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/jquery.easing.1.3.js?ver=3.4.2 | 200 OK Content-Length: 8097 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/jquery.isotope.min.js?ver=3.4.2 | 200 OK Content-Length: 15876 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/superfish.js?ver=3.4.2 | 200 OK Content-Length: 3713 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/supersubs.js?ver=3.4.2 | 200 OK Content-Length: 3297 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/jquery.prettyPhoto.js?ver=3.4.2 | 200 OK Content-Length: 25216 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/jquery.flexslider-min.js?ver=3.4.2 | 200 OK Content-Length: 16377 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/jquery.fitvids.js?ver=3.4.2 | 200 OK Content-Length: 2382 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/underscore.js?ver=3.4.2 | 200 OK Content-Length: 12820 Content-Type: application/x-javascript | clean |
http://hidalgocold.com/wp-content/themes/hidalgocold/js/bootstrap.min.js?ver=3.4.2 | 200 OK Content-Length: 25563 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hidalgocold.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hidalgocold.com/
Result: hidalgocold.com is not infected or malware details are not published yet.
Result: hidalgocold.com is not infected or malware details are not published yet.