Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: birdfluecure.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 21 Aug 2014 12:14:19 GMT
Pragma: no-cache
Location: http://www.birdfluecure.com/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=3c5838d76f3f6b82340d9a98fc920742; path=/
X-Pingback: http://www.birdfluecure.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: birdfluecure.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 21 Aug 2014 12:14:19 GMT
Pragma: no-cache
Location: http://www.birdfluecure.com/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=3c5838d76f3f6b82340d9a98fc920742; path=/
X-Pingback: http://www.birdfluecure.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: birdfluecure.com
Referer: http://www.google.com/search?q=birdfluecure.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: birdfluecure.com
Referer: http://www.google.com/search?q=birdfluecure.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://birdfluecure.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 21 Aug 2014 12:14:19 GMT Pragma: no-cache Location: http://www.birdfluecure.com/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=3c5838d76f3f6b82340d9a98fc920742; path=/ X-Pingback: http://www.birdfluecure.com/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://www.birdfluecure.com/ | 200 OK Content-Length: 8383 Content-Type: text/html | clean |
http://www.birdfluecure.com/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-includes/js/swfobject.js?ver=2.2 | 200 OK Content-Length: 10220 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/plugins/cforms/js/cforms.js | 200 OK Content-Length: 16408 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-includes/js/tw-sack.js?ver=1.6.1 | 200 OK Content-Length: 3619 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/plugins/wp-polls/polls-js-packed.js?ver=2.31 | 200 OK Content-Length: 2690 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/plugins/wp-useronline/useronline-js-packed.js?ver=2.31 | 200 OK Content-Length: 1030 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/themes/WhosWho/js/jquery.js | 200 OK Content-Length: 31033 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/themes/WhosWho/js/slider.js | 200 OK Content-Length: 1247 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/themes/WhosWho/js/superfish.js | 200 OK Content-Length: 3827 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/themes/WhosWho/js/hoverIntent.js | 200 OK Content-Length: 3257 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/themes/WhosWho/js/jquery.scrollable.js | 200 OK Content-Length: 6815 Content-Type: application/javascript | clean |
http://www.birdfluecure.com/wp-content/themes/WhosWho/js/jquery.mousewheel.js | 200 OK Content-Length: 2361 Content-Type: application/javascript | clean |
http://birdfluecure.com/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 21 Aug 2014 12:14:39 GMT Pragma: no-cache Location: http://www.birdfluecure.com/test404page.js Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Thu, 21 Aug 2014 12:14:39 GMT Set-Cookie: PHPSESSID=0ef488a925d946944aa176e569059a20; path=/ X-Pingback: http://www.birdfluecure.com/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://www.birdfluecure.com/test404page.js | HTTP/1.1 302 Found Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 21 Aug 2014 12:14:39 GMT Pragma: no-cache Location: / Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Thu, 21 Aug 2014 12:14:39 GMT Set-Cookie: PHPSESSID=c466361b43b82b88100348fe4fa98048; path=/ Status: 301 Moved Permanently X-Pingback: http://www.birdfluecure.com/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=birdfluecure.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://birdfluecure.com/
Result: birdfluecure.com is not infected or malware details are not published yet.
Result: birdfluecure.com is not infected or malware details are not published yet.