Scanned pages/files
| Request | Server response | Status |
http://hornetmum.com/ | 200 OK Content-Length: 13890 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Hero BOy <!DOCTYPE html> <html lang="en-US" prefix="og: http://ogp.me/ns# fb: http://ogp.me/ns/fb#"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-7" /> <title>Hacked By Hero BOy</title> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0"> <link rel="stylesheet" type="text/css" href="http://fonts.googleapis.com/css?family=Droid+Sans:regular,bold" /> <link rel="stylesheet" type="text/css" href="http://fonts.googleapis.com/css?family=Droid+Serif:regular,bold" /> <link rel="stylesheet" href=" ...[16159 bytes skipped]... | ||
http://hornetmum.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-content/themes/infinitythemetrust/js/jquery.prettyPhoto.js?ver=3.1.2 | 200 OK Content-Length: 23508 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-content/themes/infinitythemetrust/js/jquery.isotope.min.js?ver=1.3.110525 | 200 OK Content-Length: 15022 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-content/themes/infinitythemetrust/js/jquery.flexslider-min.js?ver=1.7 | 200 OK Content-Length: 23585 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-content/themes/infinitythemetrust/js/jquery.infinitescroll.min.js?ver=2.0 | 200 OK Content-Length: 10997 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-content/themes/infinitythemetrust/js/theme_trust.js?ver=1.0 | 200 OK Content-Length: 2965 Content-Type: application/javascript | clean |
http://hornetmum.com/wp-admin/nav-menus.php | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Sat, 06 Dec 2014 05:06:19 GMT Pragma: no-cache Location: http://hornetmum.com/wp-login.php?redirect_to=http%3A%2F%2Fhornetmum.com%2Fwp-admin%2Fnav-menus.php&reauth=1 Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Content-Length: 0 Content-Type: text/html Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=5d1edf1054feb0ed32cf57607ad962b5; path=/ Set-Cookie: wfvt_-1707022015=54828ecc4d30d; expires=Sat, 06-Dec-2014 05:36:20 GMT; path=/ | clean |
http://hornetmum.com/wp-login.php?redirect_to=http%3a%2f%2fhornetmum.com%2fwp-admin%2fnav-menus.php&reauth=1 | HTTP/1.1 302 Found Connection: close Date: Sat, 06 Dec 2014 05:06:21 GMT Location: http://127.0.0.1?redirect_to=http%253a%252f%252fhornetmum.com%252fwp-admin%252fnav-menus.php&reauth=1 Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4 Content-Length: 289 Content-Type: text/html; charset=iso-8859-1 | clean |
http://127.0.0.1?redirect_to=http%253a%252f%252fhornetmum.com%252fwp-admin%252fnav-menus.php&reauth=1/ | 200 OK Content-Length: 3882 Content-Type: text/html | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6898 Content-Type: text/javascript | clean |
http://hornetmum.com/terms.html | 404 Not Found Content-Length: 327 Content-Type: text/html | clean |
http://hornetmum.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://hornetmum.com/privacy.html | 404 Not Found Content-Length: 329 Content-Type: text/html | clean |
http://hornetmum.com/projects/paint-roller-refill-4inch/ | 404 Not Found Content-Length: 352 Content-Type: text/html | clean |
http://hornetmum.com/projects/hornet-hose-clamp-5inch/ | 404 Not Found Content-Length: 350 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hornetmum.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 06 Dec 2014 05:06:04 GMT
Pragma: no-cache
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-7
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2b049272e2e17e3ad9f63eec6ab70cbb; path=/
Set-Cookie: wfvt_-1707022015=54828ebdbe08a; expires=Sat, 06-Dec-2014 05:36:05 GMT; path=/
X-Pingback: http://hornetmum.com/xmlrpc.php
X-Powered-By: PHP/5.4.35
GET / HTTP/1.1
Host: hornetmum.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 06 Dec 2014 05:06:04 GMT
Pragma: no-cache
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/0.9.8e-fips-rhel5 mod_bwlimited/1.4
Content-Type: text/html; charset=UTF-7
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=2b049272e2e17e3ad9f63eec6ab70cbb; path=/
Set-Cookie: wfvt_-1707022015=54828ebdbe08a; expires=Sat, 06-Dec-2014 05:36:05 GMT; path=/
X-Pingback: http://hornetmum.com/xmlrpc.php
X-Powered-By: PHP/5.4.35
Second query (visit from search engine):
GET / HTTP/1.1
Host: hornetmum.com
Referer: http://www.google.com/search?q=hornetmum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hornetmum.com
Referer: http://www.google.com/search?q=hornetmum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hornetmum.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hornetmum.com/
Result: hornetmum.com is not infected or malware details are not published yet.
Result: hornetmum.com is not infected or malware details are not published yet.