Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: getawaywheels.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 06 Jan 2015 17:52:27 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 6749
Content-Type: text/html
Last-Modified: Tue, 25 Nov 2014 18:02:16 GMT
...6749 bytes of data.
GET / HTTP/1.1
Host: getawaywheels.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 06 Jan 2015 17:52:27 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 6749
Content-Type: text/html
Last-Modified: Tue, 25 Nov 2014 18:02:16 GMT
...6749 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: getawaywheels.com
Referer: http://www.google.com/search?q=getawaywheels.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: getawaywheels.com
Referer: http://www.google.com/search?q=getawaywheels.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://getawaywheels.com/ | 200 OK Content-Length: 6749 Content-Type: text/html | clean |
http://getawaywheels.com/jquery/js/jquery-1.5.1.min.js | 200 OK Content-Length: 85260 Content-Type: application/javascript | clean |
http://getawaywheels.com/jquery/js/jquery-ui-1.8.14.custom.min.js | 200 OK Content-Length: 210246 Content-Type: application/javascript | clean |
http://dev.jquery.com/view/trunk/plugins/validate/jquery.validate.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 06 Jan 2015 17:52:29 GMT Location: http://bugs.jquery.com/view/trunk/plugins/validate/jquery.validate.js Server: nginx/0.7.65 Content-Length: 185 Content-Type: text/html | clean |
http://bugs.jquery.com/view/trunk/plugins/validate/jquery.validate.js | 404 Not Found Content-Length: 529 Content-Type: text/html | clean |
http://bugs.jquery.com/test404page.js | 404 Not Found Content-Length: 7284 Content-Type: text/html | clean |
http://bugs.jquery.com/chrome/common/js/jquery.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://bugs.jquery.com/chrome/common/js/babel.js | 200 OK Content-Length: 4907 Content-Type: application/x-javascript | clean |
http://bugs.jquery.com/chrome/common/js/trac.js | 200 OK Content-Length: 3836 Content-Type: application/x-javascript | clean |
http://bugs.jquery.com/chrome/common/js/search.js | 200 OK Content-Length: 2310 Content-Type: application/x-javascript | clean |
http://static.jquery.com/files/rocker/scripts/custom.js | 200 OK Content-Length: 10920 Content-Type: application/x-javascript | clean |
http://bugs.jquery.com/ | 200 OK Content-Length: 11259 Content-Type: text/html | clean |
http://bugs.jquery.com/chrome/common/js/folding.js | 200 OK Content-Length: 7809 Content-Type: application/x-javascript | clean |
http://bugs.jquery.com/report | 200 OK Content-Length: 9975 Content-Type: text/html | clean |
http://bugs.jquery.com/ticketgraph | 200 OK Content-Length: 7867 Content-Type: text/html | clean |
http://bugs.jquery.com/chrome/ticketgraph/jquery.flot.min.js | 200 OK Content-Length: 32993 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=getawaywheels.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://getawaywheels.com/
Result: getawaywheels.com is not infected or malware details are not published yet.
Result: getawaywheels.com is not infected or malware details are not published yet.