Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://wwwpetaldas.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: wwwpetaldas.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:46 GMT Location: http://www.searchremagnified.com/?dn=wwwpetaldas.com&pid=9PO28A2FW Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: gvc=909vr1452989864802145; expires=Tue, 16-Apr-2019 16:49:46 GMT; path=/; domain=wwwpetaldas.com; httponly X-Cnection: close X-Powered-By: PHP/5.3.21 | malicious |
URL: http://www.searchremagnified.com/?dn=wwwpetaldas.com&pid=9PO28A2FW (imitation of visitor from search engine) GET /?dn=wwwpetaldas.com&pid=9PO28A2FW HTTP/1.1 Host: www.searchremagnified.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:47 GMT Location: http://freeresultsguide.com/?dn=wwwpetaldas.com&pid=9PO28A2FW Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 340 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | suspicious |
Scanned pages/files
| Request | Server response | Status |
http://wwwpetaldas.com/content/ | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:46 GMT Location: http://www.searchremagnified.com/?dn=wwwpetaldas.com&pid=9PO28A2FW Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: gvc=910vr1452989869026101; expires=Tue, 16-Apr-2019 16:49:46 GMT; path=/; domain=wwwpetaldas.com; httponly X-Cnection: close X-Powered-By: PHP/5.3.21 | clean |
http://www.searchremagnified.com/?dn=wwwpetaldas.com&pid=9po28a2fw | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:47 GMT Location: http://freeresultsguide.com/?dn=wwwpetaldas.com&pid=9po28a2fw Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 340 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://freeresultsguide.com/?dn=wwwpetaldas.com&pid=9po28a2fw | 200 OK Content-Length: 2453 Content-Type: text/html | clean |
http://freeresultsguide.com/?dn=wwwpetaldas.com&fp=DJ%2B1Rx2KvZwoCzhg1X9x1bow4hl%2FPBYym1fuLbe8wN9uAqmoJ3fI4msyc0ncJOfLulCG8CDvzBPPtYHpbWM0SQ%3D%3D&prvtof=BSECsSZklY1%2FruqMkEmXSVTFP3IGyygMUPFSNc1CjW0%3D&poru=BPrPH5dGHYNDbHBl952gUsysjXLl8IVzY87R7Vnz3Kz4bC2cAcs8BXVqeCVdsYenjiXOfejg0QwQwt3pif3wNWlLOFtIBY8tUbwDL6lwLAQ%3D& | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://freeresultsguide.com/test404page.js | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:48 GMT Location: http://pagesinxt.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close X-Powered-By: PHP/5.3.21 | clean |
http://pagesinxt.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:48 GMT Location: http://mypageresults.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 338 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2525 Content-Type: text/html | clean |
http://mypageresults.com/?dn=freeresultsguide.com&fp=ZfvsP5TQ9Hcl66ZjIZv%2BoVFjeCutfC8iVI8HQoLQfxIrMqOnNa9bMHlRgvpec076UcucVm3YIA5E4tyU5sZ7jw%3D%3D&prvtof=X%2B8w%2Bsk0jO4%2BbAy8oPhr45TsHZFpPSXuby6Jp4d7BG4%3D&poru=nh1JA28ESu6isyOCLnI9ZNxlZL%2FnLoGkjkTCqUfXWVluWwIydMCsaEeeJAdQm3V3rW8xSNYuuiBWPSBUgoH38idUD5QthE6W4QlHNYfeRU0%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://mypageresults.com/test404page.js | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:50 GMT Location: http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close X-Powered-By: PHP/5.3.21 | clean |
http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Thu, 17 Apr 2014 16:49:50 GMT Location: http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 335 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2495 Content-Type: text/html | clean |
http://mypageresults.com/?dn=mypageresults.com&fp=4aG0fgfZv4nYii184Poy8SwbOgbHOvA1F3sjgOmvP%2B1p4rJinVhwk7fd%2BzXGWsut3L54G4HHgcGaru0uXZJnUw%3D%3D&prvtof=zP61FDujWG4bQBZBpE%2B%2FFthNqsp6eWwNHkJY92To2jk%3D&poru=DMjMqhXK8BDQosHaJ4tft3v6IbIaYiA5%2B09iAzXf1u9B5nUloN5qhzLgcO%2BOunutXlDLNHvj4aWKhEZ1w4%2BJ%2BeynZnxqL8vvwrI7gZxAEm0%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 271 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wwwpetaldas.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wwwpetaldas.com/
Result: wwwpetaldas.com is not infected or malware details are not published yet.
Result: wwwpetaldas.com is not infected or malware details are not published yet.