Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rvwineandbeer.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 21 Oct 2014 12:34:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Link: <http://rvwineandbeer.com/>; rel=shortlink
Set-Cookie: wfvt_2152143612=544652bdc304f; expires=Tue, 21-Oct-2014 13:04:05 GMT; path=/; httponly
X-Pingback: http://rvwineandbeer.com/xmlrpc.php
GET / HTTP/1.1
Host: rvwineandbeer.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 21 Oct 2014 12:34:05 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Link: <http://rvwineandbeer.com/>; rel=shortlink
Set-Cookie: wfvt_2152143612=544652bdc304f; expires=Tue, 21-Oct-2014 13:04:05 GMT; path=/; httponly
X-Pingback: http://rvwineandbeer.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: rvwineandbeer.com
Referer: http://www.google.com/search?q=rvwineandbeer.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rvwineandbeer.com
Referer: http://www.google.com/search?q=rvwineandbeer.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://rvwineandbeer.com/ | 200 OK Content-Length: 27815 Content-Type: text/html | clean |
http://rvwineandbeer.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes-ai1ec/vortex/js/event.min.js?ver=1.10.5-8 | 200 OK Content-Length: 970 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes/akita/framework/frontend/assets/js/prettyphoto.js?ver=3.1.3 | 200 OK Content-Length: 22477 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes/akita/framework/frontend/assets/js/superfish.js?ver=1.4.8 | 200 OK Content-Length: 3060 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes/akita/framework/frontend/assets/js/flexslider.js?ver=1.8 | 200 OK Content-Length: 11064 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes/akita/framework/frontend/assets/js/roundabout.js?ver=1.1 | 200 OK Content-Length: 17571 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes/akita/framework/frontend/assets/js/themeblvd.js?ver=1.0 | 200 OK Content-Length: 2101 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes/akita/framework/frontend/assets/js/ios-orientationchange-fix.js?ver=3.9.2 | 200 OK Content-Length: 1507 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/themes-ai1ec/vortex/js/general.min.js?ver=3.9.2 | 200 OK Content-Length: 4885 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-includes/js/comment-reply.min.js?ver=3.9.2 | 200 OK Content-Length: 757 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.45.0-2013.10.17 | 200 OK Content-Length: 14723 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.5.4 | 200 OK Content-Length: 8326 Content-Type: text/javascript | clean |
http://rvwineandbeer.com/wp-content/plugins/wp-lightbox-2/wp-lightbox-2.min.js?ver=1.3.4.1 | 200 OK Content-Length: 10630 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rvwineandbeer.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://rvwineandbeer.com/
Result: rvwineandbeer.com is not infected or malware details are not published yet.
Result: rvwineandbeer.com is not infected or malware details are not published yet.