Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: napoleongrillar.se
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 08 Jan 2015 05:06:58 GMT
Pragma: no-cache
Location: http://www.napoleongrillar.se/
Server: Apache/2.2.3 (CentOS)
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: _icl_current_language=sv; expires=Fri, 09-Jan-2015 05:06:59 GMT; path=/
Set-Cookie: PHPSESSID=p99p3tcmd056bb5geel9br1ht2; path=/
X-Pingback: http://www.napoleongrillar.se/xmlrpc.php
X-Powered-By: PleskLin
...0 bytes of data.
GET / HTTP/1.1
Host: napoleongrillar.se
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 08 Jan 2015 05:06:58 GMT
Pragma: no-cache
Location: http://www.napoleongrillar.se/
Server: Apache/2.2.3 (CentOS)
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: _icl_current_language=sv; expires=Fri, 09-Jan-2015 05:06:59 GMT; path=/
Set-Cookie: PHPSESSID=p99p3tcmd056bb5geel9br1ht2; path=/
X-Pingback: http://www.napoleongrillar.se/xmlrpc.php
X-Powered-By: PleskLin
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: napoleongrillar.se
Referer: http://www.google.com/search?q=napoleongrillar.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: napoleongrillar.se
Referer: http://www.google.com/search?q=napoleongrillar.se
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://napoleongrillar.se/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 08 Jan 2015 05:06:58 GMT Pragma: no-cache Location: http://www.napoleongrillar.se/ Server: Apache/2.2.3 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: _icl_current_language=sv; expires=Fri, 09-Jan-2015 05:06:59 GMT; path=/ Set-Cookie: PHPSESSID=p99p3tcmd056bb5geel9br1ht2; path=/ X-Pingback: http://www.napoleongrillar.se/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.napoleongrillar.se/ | 200 OK Content-Length: 143273 Content-Type: text/html | clean |
http://www.napoleongrillar.se/wp-content/plugins/nextgen-download-gallery/js/download-form.min.js | 200 OK Content-Length: 743 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/pressapps-modal-login/js/modal-login.js | 200 OK Content-Length: 5102 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/pressapps-modal-login/js/modal.js | 200 OK Content-Length: 7778 Content-Type: application/x-javascript | clean |
http://napoleongrillar.se//www.napoleongrillar.se/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Thu, 08 Jan 2015 05:07:02 GMT Pragma: no-cache Location: http://www.napoleongrillar.se/www.napoleongrillar.se/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ Server: Apache/2.2.3 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT Set-Cookie: PHPSESSID=ueq0v8ojiqm15651m36q2nqor0; path=/ X-Pingback: http://www.napoleongrillar.se/xmlrpc.php X-Powered-By: PleskLin | clean |
http://www.napoleongrillar.se/www.napoleongrillar.se/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js/ | 404 Not Found Content-Length: 121762 Content-Type: text/html | clean |
http://www.napoleongrillar.se/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js | 200 OK Content-Length: 33 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7199 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/persist.js | 200 OK Content-Length: 24995 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/store.js | 200 OK Content-Length: 5337 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ngg_store.js | 200 OK Content-Length: 891 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/sitepress-multilingual-cms/res/js/language-selector.js | 200 OK Content-Length: 1103 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/lightbox/static/lightbox_context.js | 200 OK Content-Length: 890 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.tools.min.js | 200 OK Content-Length: 98513 Content-Type: application/x-javascript | clean |
http://www.napoleongrillar.se/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js | 200 OK Content-Length: 109886 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=napoleongrillar.se
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://napoleongrillar.se/
Result: napoleongrillar.se is not infected or malware details are not published yet.
Result: napoleongrillar.se is not infected or malware details are not published yet.