Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: provenceshop.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 30 Jan 2015 22:07:26 GMT
Location: http://www.provenceshop.net/
Server: Apache
Content-Length: 236
Content-Type: text/html; charset=iso-8859-1
...236 bytes of data.
GET / HTTP/1.1
Host: provenceshop.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 30 Jan 2015 22:07:26 GMT
Location: http://www.provenceshop.net/
Server: Apache
Content-Length: 236
Content-Type: text/html; charset=iso-8859-1
...236 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: provenceshop.net
Referer: http://www.google.com/search?q=provenceshop.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: provenceshop.net
Referer: http://www.google.com/search?q=provenceshop.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://provenceshop.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 30 Jan 2015 22:07:26 GMT Location: http://www.provenceshop.net/ Server: Apache Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.provenceshop.net/ | HTTP/1.1 200 OK Date: Fri, 30 Jan 2015 22:07:26 GMT Accept-Ranges: bytes ETag: "20b7c1f49b3cd01:4f1e56" Server: Microsoft-IIS/6.0 Content-Length: 18980 Content-Location: http://www.provenceshop.net/index.html Content-Type: text/html Last-Modified: Fri, 30 Jan 2015 14:49:31 GMT MicrosoftOfficeWebServer: 5.0_Pub X-Powered-By: ASP.NET | clean |
http://www.provenceshop.net/index.html | 200 OK Content-Length: 18980 Content-Type: text/html | clean |
http://www.provenceshop.net/res/x5engine.js | 200 OK Content-Length: 51890 Content-Type: application/x-javascript | clean |
http://provenceshop.net/res/x5cart.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 30 Jan 2015 22:07:28 GMT Location: http://www.provenceshop.net/res/x5cart.js Server: Apache Content-Length: 249 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.provenceshop.net/res/x5cart.js | 200 OK Content-Length: 15435 Content-Type: application/x-javascript | clean |
http://provenceshop.net/index.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 30 Jan 2015 22:07:29 GMT Location: http://www.provenceshop.net/index.html Server: Apache Content-Length: 246 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.provenceshop.net/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://provenceshop.net/cartina_francia.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 30 Jan 2015 22:07:29 GMT Location: http://www.provenceshop.net/cartina_francia.html Server: Apache Content-Length: 256 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.provenceshop.net/cartina_francia.html | 200 OK Content-Length: 28034 Content-Type: text/html | clean |
http://www.provenceshop.net/come_imbottigliare.html | 200 OK Content-Length: 16351 Content-Type: text/html | clean |
http://www.provenceshop.net/in_generale.html | 200 OK Content-Length: 19176 Content-Type: text/html | clean |
http://www.provenceshop.net/contatta_il_sommelier.html | 200 OK Content-Length: 15030 Content-Type: text/html | clean |
http://www.provenceshop.net/nuvo_champagne__vodka.html | 200 OK Content-Length: 16206 Content-Type: text/html | clean |
http://www.provenceshop.net/champagne_dom_perignon.html | 200 OK Content-Length: 19166 Content-Type: text/html | clean |
http://www.provenceshop.net/champagne_moet__chandon.html | 200 OK Content-Length: 18044 Content-Type: text/html | clean |
http://www.provenceshop.net/champagne_veuve_clicquot.html | 200 OK Content-Length: 19659 Content-Type: text/html | clean |
http://www.provenceshop.net/champagne_louis_roederer.html | 200 OK Content-Length: 19313 Content-Type: text/html | clean |
http://www.provenceshop.net/champagne_ruinart.html | 200 OK Content-Length: 18363 Content-Type: text/html | clean |
http://www.provenceshop.net/champagne_deutz.html | 200 OK Content-Length: 18382 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=provenceshop.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://provenceshop.net/
Result: provenceshop.net is not infected or malware details are not published yet.
Result: provenceshop.net is not infected or malware details are not published yet.