Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wildrosehospital.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Sat, 04 Oct 2014 22:58:30 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bf86fcd4aa889ffb21daa38cc156e376=unlmniarenuaasch142k8qhe84; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: wildrosehospital.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Sat, 04 Oct 2014 22:58:30 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bf86fcd4aa889ffb21daa38cc156e376=unlmniarenuaasch142k8qhe84; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: wildrosehospital.org
Referer: http://www.google.com/search?q=wildrosehospital.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wildrosehospital.org
Referer: http://www.google.com/search?q=wildrosehospital.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://wildrosehospital.org/ | 200 OK Content-Length: 17129 Content-Type: text/html | clean |
http://wildrosehospital.org/site/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://wildrosehospital.org/site/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://wildrosehospital.org/site/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://wildrosehospital.org/site/templates/js_recycle/wright/js/html5.js | 200 OK Content-Length: 1540 Content-Type: application/javascript | clean |
http://wildrosehospital.org/site/ | 200 OK Content-Length: 17135 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/for-patients | 200 OK Content-Length: 13607 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/for-patients/hipaa-privacy-policy | 200 OK Content-Length: 46563 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/for-patients/patient-rights-responsibilies | 200 OK Content-Length: 56994 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/for-patients/patient-portal | 200 OK Content-Length: 13644 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/for-patients/community-health-needs-assessment-community-health-improvement-plan-2013-2018 | 200 OK Content-Length: 13726 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/find-a-physician | 200 OK Content-Length: 16975 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/find-a-clinic | 200 OK Content-Length: 17767 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/find-a-clinic/wild-rose | 200 OK Content-Length: 13887 Content-Type: text/html | clean |
http://wildrosehospital.org/site/index.php/find-a-clinic/wautoma | 200 OK Content-Length: 13863 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wildrosehospital.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wildrosehospital.org/
Result: wildrosehospital.org is not infected or malware details are not published yet.
Result: wildrosehospital.org is not infected or malware details are not published yet.