Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: robhib.weebly.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Thu, 31 Dec 2015 03:47:58 GMT
ETag: W/"501fcd976bbee3fa96a19ac40f36c5a7"
Server: Apache
Content-Type: text/html; charset=UTF-8
Set-Cookie: is_mobile=0; path=/; domain=robhib.weebly.com
Set-Cookie: language=en; expires=Thu, 14-Jan-2016 03:47:58 GMT; Max-Age=1209600; path=/
X-Host: app-64-47.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
X-W-DC: SFO
GET / HTTP/1.1
Host: robhib.weebly.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Thu, 31 Dec 2015 03:47:58 GMT
ETag: W/"501fcd976bbee3fa96a19ac40f36c5a7"
Server: Apache
Content-Type: text/html; charset=UTF-8
Set-Cookie: is_mobile=0; path=/; domain=robhib.weebly.com
Set-Cookie: language=en; expires=Thu, 14-Jan-2016 03:47:58 GMT; Max-Age=1209600; path=/
X-Host: app-64-47.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
X-W-DC: SFO
Second query (visit from search engine):
GET / HTTP/1.1
Host: robhib.weebly.com
Referer: http://www.google.com/search?q=robhib.weebly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: robhib.weebly.com
Referer: http://www.google.com/search?q=robhib.weebly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.robhib.weebly.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:47:58 GMT Location: http://robhib.weebly.com/ Server: Apache Content-Length: 233 Content-Type: text/html; charset=iso-8859-1 X-W-DC: SFO | clean |
http://robhib.weebly.com/ | 200 OK Content-Length: 20196 Content-Type: text/html | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://www.robhib.weebly.com//cdn2.editmysite.com/js/site/main.js?buildTime=1421874240/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:47:59 GMT Location: http://robhib.weebly.com/cdn2.editmysite.com/js/site/main.js?buildTime=1421874240/ Server: Apache Content-Length: 290 Content-Type: text/html; charset=iso-8859-1 X-W-DC: SFO | clean |
http://robhib.weebly.com/cdn2.editmysite.com/js/site/main.js?buildtime=1421874240/ | 404 Not Found Content-Length: 1497 Content-Type: text/html | clean |
http://robhib.weebly.com/test404page.js | 404 Not Found Content-Length: 1497 Content-Type: text/html | clean |
http://www.robhib.weebly.com//cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1450484896/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 31 Dec 2015 03:48:01 GMT Location: http://robhib.weebly.com/cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1450484896/ Server: Apache Content-Length: 298 Content-Type: text/html; charset=iso-8859-1 X-W-DC: SFO | clean |
http://robhib.weebly.com/cdn2.editmysite.com/js/site/footersignup.js?buildtime=1450484896/ | 404 Not Found Content-Length: 1497 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=robhib.weebly.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://robhib.weebly.com/
Result: robhib.weebly.com is not infected or malware details are not published yet.
Result: robhib.weebly.com is not infected or malware details are not published yet.