Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net/hop/?CBRehoppp2=https%3A%2F%2Fssl.clickbank.net%2Forder%2Frestricted.html%3FerrCode%3Dnowhitelist%26cbhopvendor%3Dgermanabs&hstr=1412785734417%7Canderlange%7C%7Cd3d2e7cdfv%7Cgermanabs&code=%7B0%2C+15%7D&key=99339EEE&parms=&s=default&ds=-1 (imitation of visitor from search engine) GET /hop/?CBRehoppp2=https%3A%2F%2Fssl.clickbank.net%2Forder%2Frestricted.html%3FerrCode%3Dnowhitelist%26cbhopvendor%3Dgermanabs&hstr=1412785734417%7Canderlange%7C%7Cd3d2e7cdfv%7Cgermanabs&code=%7B0%2C+15%7D&key=99339EEE&parms=&s=default&ds=-1 HTTP/1.1 Host: ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Cache-Control: no-store Connection: close Date: Wed, 08 Oct 2014 16:28:54 GMT Pragma: no-cache Location: https://ssl.clickbank.net/order/restricted.html?errCode=nowhitelist&cbhopvendor=germanabs Server: Apache/2.2.29 (FreeBSD) mod_jk/1.2.40 mod_ssl/2.2.29 OpenSSL/0.9.8y Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html;charset=UTF-8 Expires: 0 P3P: CP="ADM OUR IND COM" | suspicious |
Scanned pages/files
Request | Server response | Status |
http://ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net/test404page.js | HTTP/1.1 301 Moved Permanently Cache-Control: no-store Connection: close Date: Wed, 08 Oct 2014 16:28:59 GMT Pragma: no-cache Location: http://ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net/hop/test404page.js?CBRehoppp2=https%3A%2F%2Fssl.clickbank.net%2Forder%2Frestricted.html%3FerrCode%3Dnowhitelist%26cbhopvendor%3Dgermanabs&hstr=1412785739637%7Canderlange%7C%7C4sq48xef9g%7Cgermanabs&code=%7B0%2C+15%7D&key=FF906970&parms=&s=default&ds=-1 Server: Apache/2.2.29 (FreeBSD) mod_jk/1.2.40 mod_ssl/2.2.29 OpenSSL/0.9.8y Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html;charset=UTF-8 Expires: 0 P3P: CP="ADM OUR IND COM" Set-Cookie: p=01.0373BE1FA09E04F382E8E659BF3B5C8A5656DA0C844A8F3513AEB4C7F294A57CDFD74790BDC4422D4DB9FB588129914EFE35AAF0; Domain=.clickbank.net; Expires=Mon, 06-Apr-2015 16:28:59 GMT; Path=/ Set-Cookie: q=01.E32689E9D1CBDC53E373FDE45C8B38EA7316D15B0003FB588BEB715473933656156961AA848F080604E3404004304FB71CAD48E8; Domain=.clickbank.net; Expires=Mon, 07-Oct-2019 16:28:59 GMT; Path=/ | clean |
http://ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net/hop/test404page.js?cbrehoppp2=https%3a%2f%2fssl.clickbank.net%2forder%2frestricted.html%3ferrcode%3dnowhitelist%26cbhopvendor%3dgermanabs&hstr=1412785739637%7canderlange%7c%7c4sq48xef9g%7cgermanabs&code=%7b0%2c+15%7d&key=ff906970&parms=&s=default&ds=-1 | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net/
Result: ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net is not infected or malware details are not published yet.
Result: ad138vx6tk-8xaofpg-2rwgm90.hop.clickbank.net is not infected or malware details are not published yet.