Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: perwoll.ro
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 08 Jun 2014 00:09:06 GMT
Location: http://www.perwoll.ro
Server: Apache
Content-Length: 0
Content-Type: text/html
Set-Cookie: fe_typo_user=6f46132c58f9e5a69a6cd7803713b71a; path=/
X-Powered-By: PHP/5.3.28
...0 bytes of data.
GET / HTTP/1.1
Host: perwoll.ro
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 08 Jun 2014 00:09:06 GMT
Location: http://www.perwoll.ro
Server: Apache
Content-Length: 0
Content-Type: text/html
Set-Cookie: fe_typo_user=6f46132c58f9e5a69a6cd7803713b71a; path=/
X-Powered-By: PHP/5.3.28
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: perwoll.ro
Referer: http://www.google.com/search?q=perwoll.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: perwoll.ro
Referer: http://www.google.com/search?q=perwoll.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://perwoll.ro/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 08 Jun 2014 00:09:06 GMT Location: http://www.perwoll.ro Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=6f46132c58f9e5a69a6cd7803713b71a; path=/ X-Powered-By: PHP/5.3.28 | clean |
http://www.perwoll.ro/ | 200 OK Content-Length: 46958 Content-Type: text/html | clean |
http://www.perwoll.ro/typo3conf/ext/imagecycle/res/jquery/js/jquery-1.8.2.min.js?1358160727 | 200 OK Content-Length: 93436 Content-Type: application/javascript | clean |
http://perwoll.ro/typo3conf/ext/imagecycle/res/jquery/js/jquery.cycle.all-2.9999.8.min.js?1358160727 | 200 OK Content-Length: 27709 Content-Type: application/javascript | clean |
http://perwoll.ro/typo3conf/ext/imagecycle/res/jquery/js/jquery.easing-1.3.js?1358160727 | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://perwoll.ro/typo3temp/javascript_9a38f34785.js?1370439871 | 200 OK Content-Length: 929 Content-Type: application/javascript | clean |
http://perwoll.ro/fileadmin/templates/js/video-js/video.js | 200 OK Content-Length: 145550 Content-Type: application/javascript | clean |
http://perwoll.ro/fileadmin/templates/js/autoloader.js | 200 OK Content-Length: 635 Content-Type: application/javascript | clean |
http://perwoll.ro/fileadmin/templates/js/prefixfree.js | 200 OK Content-Length: 5879 Content-Type: application/javascript | clean |
http://perwoll.ro/fileadmin/templates/js/bootstrap.js | 200 OK Content-Length: 4750 Content-Type: application/javascript | clean |
http://perwoll.ro/fileadmin/templates/js/popup.js | 200 OK Content-Length: 3061 Content-Type: application/javascript | clean |
http://perwoll.ro/fileadmin/templates/js/scroll.js | 200 OK Content-Length: 928 Content-Type: application/javascript | clean |
http://perwoll.ro/footer-ro/termeni-si-conditii-de-utilizare/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 08 Jun 2014 00:09:09 GMT Location: http://www.perwoll.ro Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=ec4a42b18372c92bc94ae1ef21cc78c4; path=/ X-Powered-By: PHP/5.3.28 | clean |
http://www.perwoll.ro/test404page.js | 404 Not Found Content-Length: 1421 Content-Type: text/html | clean |
http://perwoll.ro/footer-ro/declaratia-de-confidentialitate/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 08 Jun 2014 00:09:10 GMT Location: http://www.perwoll.ro Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=6703010552fb08efe5f92dc8290eae55; path=/ X-Powered-By: PHP/5.3.28 | clean |
http://perwoll.ro/footer-ro/imprint/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 08 Jun 2014 00:09:11 GMT Location: http://www.perwoll.ro Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=f4016185391a93a5450df0a3b0ad4e47; path=/ X-Powered-By: PHP/5.3.28 | clean |
http://perwoll.ro/footer-ro/note-for-us-residents/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 08 Jun 2014 00:09:11 GMT Location: http://www.perwoll.ro Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=cfb2973aa8a66fe9423437b540550e57; path=/ X-Powered-By: PHP/5.3.28 | clean |
http://perwoll.ro/footer-ro/contact/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 08 Jun 2014 00:09:11 GMT Location: http://www.perwoll.ro Server: Apache Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=31a0bd03858f5d0862937022380273ab; path=/ X-Powered-By: PHP/5.3.28 | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=perwoll.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://perwoll.ro/
Result: perwoll.ro is not infected or malware details are not published yet.
Result: perwoll.ro is not infected or malware details are not published yet.