Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: plentyofcents.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 22 Apr 2014 10:57:11 GMT
Pragma: no-cache
Location: http://www.plentyofcents.com/
Server: nginx/1.4.7
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=f5c916369940142fe28610eb52d5ce05; path=/
X-Pingback: http://www.plentyofcents.com/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: plentyofcents.com
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 22 Apr 2014 10:57:11 GMT
Pragma: no-cache
Location: http://www.plentyofcents.com/
Server: nginx/1.4.7
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=f5c916369940142fe28610eb52d5ce05; path=/
X-Pingback: http://www.plentyofcents.com/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: plentyofcents.com
Referer: http://www.google.com/search?q=plentyofcents.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: plentyofcents.com
Referer: http://www.google.com/search?q=plentyofcents.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://plentyofcents.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 22 Apr 2014 10:57:11 GMT Pragma: no-cache Location: http://www.plentyofcents.com/ Server: nginx/1.4.7 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=f5c916369940142fe28610eb52d5ce05; path=/ X-Pingback: http://www.plentyofcents.com/xmlrpc.php | clean |
http://www.plentyofcents.com/ | 200 OK Content-Length: 35664 Content-Type: text/html | clean |
http://www.plentyofcents.com/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://www.plentyofcents.com/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 78620 Content-Type: application/javascript | clean |
http://www.plentyofcents.com/wp-content/plugins/contact-form-plugin/js/script.js?ver=3.1.2 | 200 OK Content-Length: 531 Content-Type: application/javascript | clean |
http://www.plentyofcents.com/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://www.plentyofcents.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20100407 | 200 OK Content-Length: 12292 Content-Type: application/javascript | clean |
http://plentyofcents.com/?page_id=190 | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 22 Apr 2014 10:57:17 GMT Pragma: no-cache Location: http://www.plentyofcents.com/?page_id=190 Server: nginx/1.4.7 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=5f26c97fcce3b753e5be1dc312b64406; path=/ X-Pingback: http://www.plentyofcents.com/xmlrpc.php | clean |
http://www.plentyofcents.com/?page_id=190 | 200 OK Content-Length: 9477 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=7 | 200 OK Content-Length: 11000 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=15 | 200 OK Content-Length: 10744 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=13 | 200 OK Content-Length: 11762 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=11 | 200 OK Content-Length: 10402 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=9 | 200 OK Content-Length: 10395 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=17 | 200 OK Content-Length: 11466 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=192 | 200 OK Content-Length: 9418 Content-Type: text/html | clean |
http://www.plentyofcents.com/?page_id=194 | 200 OK Content-Length: 9390 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=plentyofcents.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://plentyofcents.com/
Result: plentyofcents.com is not infected or malware details are not published yet.
Result: plentyofcents.com is not infected or malware details are not published yet.