Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hmb-watch.ca
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 16 Aug 2014 02:59:14 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: kpg_stop_spammers_time=1408157958; expires=Sat, 16-Aug-2014 03:00:18 GMT
Set-Cookie: PHPSESSID=ba804117237e4dfda52333b2e73beae4; path=/
Set-Cookie: bd_check_cookie=1
Set-Cookie: 2015287825=1074181204
X-Died: timeout at scan.pm line 1546.
X-Pingback: http://hmb-watch.ca/xmlrpc.php
X-UA-Compatible: IE=edge,chrome=1
GET / HTTP/1.1
Host: hmb-watch.ca
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 16 Aug 2014 02:59:14 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: kpg_stop_spammers_time=1408157958; expires=Sat, 16-Aug-2014 03:00:18 GMT
Set-Cookie: PHPSESSID=ba804117237e4dfda52333b2e73beae4; path=/
Set-Cookie: bd_check_cookie=1
Set-Cookie: 2015287825=1074181204
X-Died: timeout at scan.pm line 1546.
X-Pingback: http://hmb-watch.ca/xmlrpc.php
X-UA-Compatible: IE=edge,chrome=1
Second query (visit from search engine):
GET / HTTP/1.1
Host: hmb-watch.ca
Referer: http://www.google.com/search?q=hmb-watch.ca
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hmb-watch.ca
Referer: http://www.google.com/search?q=hmb-watch.ca
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://hmb-watch.ca/ | 200 OK Content-Length: 14639 Content-Type: text/html | clean |
http://hmb-watch.ca/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://hmb-watch.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://hmb-watch.ca/wp-content/plugins/weaver-plus/plus-js/weaver-hide-div.js?ver=3.9.2 | 200 OK Content-Length: 787 Content-Type: application/javascript | clean |
http://hmb-watch.ca/wp-content/plugins/sidebar-login/assets/js/blockui.min.js?ver=2.57 | 200 OK Content-Length: 9021 Content-Type: application/javascript | clean |
http://hmb-watch.ca/wp-content/plugins/sidebar-login/assets/js/sidebar-login.min.js?ver=2.7.1 | 200 OK Content-Length: 1290 Content-Type: application/javascript | clean |
http://hmb-watch.ca/wp-content/plugins/bitdefender-antispam-for-wordpress//js/bd-js.php | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://hmb-watch.ca/registration-page | 200 OK Content-Length: 45887 Content-Type: text/html | clean |
http://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 | 200 OK Content-Length: 1476 Content-Type: text/javascript | clean |
http://tdn.gtranslate.net/tdn-bin/queue.js | 200 OK Content-Length: 0 Content-Type: application/javascript | clean |
http://hmb-watch.ca/neighbourhood-watch | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://hmb-watch.ca/test404page.js | 404 Not Found Content-Length: 11839 Content-Type: text/html | clean |
http://hmb-watch.ca/neighbourhood-watch/child-print-program | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://hmb-watch.ca/newsletter | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://hmb-watch.ca/contact | 200 OK Content-Length: 45924 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hmb-watch.ca
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hmb-watch.ca/
Result: hmb-watch.ca is not infected or malware details are not published yet.
Result: hmb-watch.ca is not infected or malware details are not published yet.