Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: w8fw.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 09 May 2015 02:48:51 GMT
Age: 86192
Vary: Accept-Encoding,Cookie, User-Agent
Content-Type: text/html; charset=UTF-8
X-Backend: wpaas_web_040
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES:Forced
X-Pingback: http://w8fw.com/xmlrpc.php
X-Port: port_10454
GET / HTTP/1.1
Host: w8fw.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 09 May 2015 02:48:51 GMT
Age: 86192
Vary: Accept-Encoding,Cookie, User-Agent
Content-Type: text/html; charset=UTF-8
X-Backend: wpaas_web_040
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES:Forced
X-Pingback: http://w8fw.com/xmlrpc.php
X-Port: port_10454
Second query (visit from search engine):
GET / HTTP/1.1
Host: w8fw.com
Referer: http://www.google.com/search?q=w8fw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: w8fw.com
Referer: http://www.google.com/search?q=w8fw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.w8fw.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 09 May 2015 02:48:50 GMT Age: 86193 Location: http://w8fw.com/ Vary: Accept-Encoding,Cookie, User-Agent Content-Type: text/html; charset=UTF-8 X-Backend: wpaas_web_042 X-Cache: cached X-Cache-Hit: HIT X-Cacheable: YES:Forced X-Pingback: http://w8fw.com/xmlrpc.php X-Port: port_10454 | clean |
http://w8fw.com/ | 200 OK Content-Length: 26152 Content-Type: text/html | clean |
http://w8fw.com/wp-includes/js/jquery/jquery.js?ver=1.11.2 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://w8fw.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/google-language-translator/js/flags.js?ver=4.2.2 | 200 OK Content-Length: 1417 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/responsive-lightbox/assets/swipebox/source/jquery.swipebox.min.js?ver=4.2.2 | 200 OK Content-Length: 9589 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=4.2.2 | 200 OK Content-Length: 4904 Content-Type: application/javascript | clean |
http://w8fw.com/wp-includes/js/hoverIntent.min.js?ver=1.8.1 | 200 OK Content-Length: 1115 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/megamenu/js/maxmegamenu.js?ver=1.7.3.1 | 200 OK Content-Length: 6497 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/themes/hueman/js/jquery.flexslider.min.js?ver=4.2.2 | 200 OK Content-Length: 16959 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/foobox-image-lightbox/js/foobox.free.min.js?ver=1.0.5 | 200 OK Content-Length: 45119 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/grid-gallery-ready/src/GirdGallery/Colorbox/jquery-colorbox/jquery.colorbox-min.js | 200 OK Content-Length: 17006 Content-Type: application/javascript | clean |
http://www.w8fw.com//translate.google.com/translate_a/element.js?cb=GoogleLanguageTranslatorInit/ | 404 Not Found Content-Length: 1 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.1.2 | 200 OK Content-Length: 11192 Content-Type: application/javascript | clean |
http://w8fw.com/wp-content/themes/hueman/js/scripts.js?ver=4.2.2 | 200 OK Content-Length: 3921 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=w8fw.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://w8fw.com/
Result: w8fw.com is not infected or malware details are not published yet.
Result: w8fw.com is not infected or malware details are not published yet.