Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://stevewattsoakharvest.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: stevewattsoakharvest.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 11 Apr 2014 10:53:12 GMT Location: http://nopillnosteel.com/ Server: nginx/1.4.7 Content-Length: 307 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://nopillnosteel.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: nopillnosteel.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Fri, 11 Apr 2014 10:53:12 GMT Location: http://medicalwki.com Server: nginx Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.28 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://stevewattsoakharvest.com/ | 200 OK Content-Length: 6981 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js?ver=1.4.2 | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://stevewattsoakharvest.com/wp-content/themes/Proyecto/js/superfish.js?ver=3.4.1 | 200 OK Content-Length: 3833 Content-Type: application/javascript | clean |
http://stevewattsoakharvest.com/wp-content/themes/Proyecto/js/custom.js?ver=3.4.1 | 200 OK Content-Length: 730 Content-Type: application/javascript | clean |
http://stevewattsoakharvest.com/wp-content/themes/Proyecto/js/jquery.nivo.slider.js?ver=3.4.1 | 200 OK Content-Length: 17462 Content-Type: application/javascript | clean |
http://stevewattsoakharvest.com/?page_id=2 | 200 OK Content-Length: 8237 Content-Type: text/html | clean |
http://stevewattsoakharvest.com/wp-includes/js/comment-reply.js?ver=3.4.1 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://stevewattsoakharvest.com/wp-admin/ | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Fri, 11 Apr 2014 10:53:18 GMT Pragma: no-cache Location: http://stevewattsoakharvest.com/wp-login.php?redirect_to=http%3A%2F%2Fstevewattsoakharvest.com%2Fwp-admin%2F&reauth=1 Server: nginx/1.4.7 Content-Length: 0 Content-Type: text/html Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Fri, 11 Apr 2014 10:53:18 GMT Set-Cookie: wfvt_1523507054=5347c99decca9; expires=Fri, 11-Apr-2014 11:23:17 GMT; path=/ | clean |
http://stevewattsoakharvest.com/wp-login.php?redirect_to=http%3a%2f%2fstevewattsoakharvest.com%2fwp-admin%2f&reauth=1 | 406 Not Acceptable Content-Length: 226 Content-Type: text/html | clean |
http://stevewattsoakharvest.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Fri, 11 Apr 2014 10:53:18 GMT Location: http://nopillnosteel.com/ Server: nginx/1.4.7 Content-Length: 283 Content-Type: text/html; charset=iso-8859-1 | clean |
http://nopillnosteel.com/ | HTTP/1.1 302 Found Connection: close Date: Fri, 11 Apr 2014 10:53:19 GMT Location: http://medicalwki.com Server: nginx Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.28 | clean |
http://medicalwki.com/ | 403 Forbidden Content-Length: 168 Content-Type: text/html | clean |
http://medicalwki.com/test404page.js | 403 Forbidden Content-Length: 168 Content-Type: text/html | clean |
http://stevewattsoakharvest.com/wp-login.php | 406 Not Acceptable Content-Length: 226 Content-Type: text/html | clean |
http://stevewattsoakharvest.com/?feed=rss2 | 200 OK Content-Length: 1671 Content-Type: text/xml | clean |
http://stevewattsoakharvest.com/?feed=comments-rss2 | 200 OK Content-Length: 1486 Content-Type: text/xml | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=stevewattsoakharvest.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://stevewattsoakharvest.com/
Result: stevewattsoakharvest.com is not infected or malware details are not published yet.
Result: stevewattsoakharvest.com is not infected or malware details are not published yet.