Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://camelaraymond.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: camelaraymond.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Mon, 05 Oct 2015 13:38:29 GMT Location: http://track.trustmarketcom.com/442222a5-9fb2-4f6e-b7f1-2a144b16d570?c=g_30916_7 Server: cloudflare-nginx Content-Type: text/html;charset=UTF-8 CF-RAY: 230986f4742d168e-ARN Set-Cookie: __cfduid=df8ead69e5991890db0f1e13c52a480821444052309; expires=Tue, 04-Oct-16 13:38:29 GMT; path=/; domain=.camelaraymond.com; HttpOnly | malicious |
URL: http://track.trustmarketcom.com/442222a5-9fb2-4f6e-b7f1-2a144b16d570?c=g_30916_7 (imitation of visitor from search engine) GET /442222a5-9fb2-4f6e-b7f1-2a144b16d570?c=g_30916_7 HTTP/1.1 Host: track.trustmarketcom.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, pre-check=0, post-check=0 Connection: Close Date: Mon, 05 Oct 2015 13:38:29 GMT Pragma: no-cache Location: http://advidi.optimuum.com/f77d28ba2e956a1c/cd?aff_id=1727&s1=442222a5-9fb2-4f6e-b7f1-2a144b16d570&s2=wJOFNNC6G481TLJNG8HFCGI0&s3=g_30916_7&s4= Server: Voluum-Traffic/1.0 Content-Length: 0 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: 442222a5-9fb2-4f6e-b7f1-2a144b16d570-v4=442222a5-9fb2-4f6e-b7f1-2a144b16d570; Domain=track.trustmarketcom.com; Path=/; HttpOnly Set-Cookie: voluum-cid-v4=%7B%0A%20%20%22cid%22%20%3A%20%22wJOFNNC6G481TLJNG8HFCGI0%22%2C%0A%20%20%22caid%22%20%3A%20%22442222a5-9fb2-4f6e-b7f1-2a144b16d570%22%0A%7D; Domain=track.trustmarketcom.com; Expires=Tue, 04-Oct-2016 13:38:29 GMT; Path=/; HttpOnly X-Robots-Tag: noindex, nofollow | malicious |
URL: http://advidi.optimuum.com/f77d28ba2e956a1c/cd?aff_id=1727&s1=442222a5-9fb2-4f6e-b7f1-2a144b16d570&s2=wJOFNNC6G481TLJNG8HFCGI0&s3=g_30916_7&s4= (imitation of visitor from search engine) GET /f77d28ba2e956a1c/cd?aff_id=1727&s1=442222a5-9fb2-4f6e-b7f1-2a144b16d570&s2=wJOFNNC6G481TLJNG8HFCGI0&s3=g_30916_7&s4= HTTP/1.1 Host: advidi.optimuum.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 05 Oct 2015 13:38:30 GMT Location: http://stuntoffer.com/?limited_offer=R40Q12UaGnLc&exit_block_type=noescape5&video=6&url=%5Bhttp%3A%2F%2Fadvidi.optimuum.com%2Fcb%2Fcb68a32a61c1c4e3%2F1eab9d73b4561371aa0f3033889acaec%5D Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html;charset=utf-8 Set-Cookie: cb68a32a61c1c4e3=%5B%5B148%5D%2C%5B2570%5D%2C%5B20299%5D%5D; max-age=2592000 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Who: redirects-front-euw1b X-XSS-Protection: 1; mode=block | suspicious |
Scanned pages/files
Request | Server response | Status |
http://camelaraymond.com/ | 403 Forbidden Content-Length: 155 Content-Type: text/html | clean |
http://camelaraymond.com/test404page.js | 403 Forbidden Content-Length: 155 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=camelaraymond.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://camelaraymond.com/
Result: camelaraymond.com is not infected or malware details are not published yet.
Result: camelaraymond.com is not infected or malware details are not published yet.