Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wom.edu.pl
Result:
HTTP/1.1 200 OK
Date: Sat, 04 Oct 2014 20:28:38 GMT
Server: IdeaWebServer/v0.80
Content-Type: text/html; charset=UTF-8
X-Pingback: http://wom.edu.pl/xmlrpc.php
GET / HTTP/1.1
Host: wom.edu.pl
Result:
HTTP/1.1 200 OK
Date: Sat, 04 Oct 2014 20:28:38 GMT
Server: IdeaWebServer/v0.80
Content-Type: text/html; charset=UTF-8
X-Pingback: http://wom.edu.pl/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: wom.edu.pl
Referer: http://www.google.com/search?q=wom.edu.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wom.edu.pl
Referer: http://www.google.com/search?q=wom.edu.pl
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://wom.edu.pl/ | 200 OK Content-Length: 42666 Content-Type: text/html | clean |
http://wom.edu.pl/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/plugins/cookie-law-info/js/cookielawinfo.js?ver=3.9.2 | 200 OK Content-Length: 6032 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/themes/hueman/js/jquery.flexslider.min.js?ver=3.9.2 | 200 OK Content-Length: 21426 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.9.3 | 200 OK Content-Length: 9658 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 | 200 OK Content-Length: 10630 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/themes/hueman/js/jquery.jplayer.min.js?ver=3.9.2 | 200 OK Content-Length: 48815 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/themes/hueman/js/scripts.js?ver=3.9.2 | 200 OK Content-Length: 3921 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-content/cache/js/static/eeecde2f93ae3ff4c3962356586bb6ec.js | 200 OK Content-Length: 116782 Content-Type: application/javascript | clean |
http://wom.edu.pl/?cat=6 | 200 OK Content-Length: 40617 Content-Type: text/html | clean |
http://wom.edu.pl/?p=720 | 200 OK Content-Length: 31078 Content-Type: text/html | clean |
http://wom.edu.pl/wp-content/themes/hueman/js/jquery.sharrre.min.js?ver=3.9.2 | 200 OK Content-Length: 14221 Content-Type: application/javascript | clean |
http://wom.edu.pl/wp-includes/js/comment-reply.min.js?ver=3.9.2 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wom.edu.pl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wom.edu.pl/
Result: wom.edu.pl is not infected or malware details are not published yet.
Result: wom.edu.pl is not infected or malware details are not published yet.