Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.curtisohlson.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.curtisohlson.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sun, 25 Oct 2015 21:47:31 GMT Location: http://track.trustmarketcom.com/442222a5-9fb2-4f6e-b7f1-2a144b16d570?c=g_40915_4 Server: cloudflare-nginx Content-Type: text/html;charset=UTF-8 CF-RAY: 23b11ed3ce2e2af7-WAW Set-Cookie: __cfduid=daf33a50eb12b6b3af2c2c46ab85223ac1445809651; expires=Mon, 24-Oct-16 21:47:31 GMT; path=/; domain=.curtisohlson.com; HttpOnly | malicious |
URL: http://track.trustmarketcom.com/442222a5-9fb2-4f6e-b7f1-2a144b16d570?c=g_40915_4 (imitation of visitor from search engine) GET /442222a5-9fb2-4f6e-b7f1-2a144b16d570?c=g_40915_4 HTTP/1.1 Host: track.trustmarketcom.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, pre-check=0, post-check=0 Connection: Close Date: Sun, 25 Oct 2015 21:47:31 GMT Pragma: no-cache Location: http://advidi.optimuum.com/f77d28ba2e956a1c/cd?aff_id=1727&s1=442222a5-9fb2-4f6e-b7f1-2a144b16d570&s2=wIJCUM7A310UET2O0H4ATFQM&s3=g_40915_4&s4= Server: Voluum-Traffic/1.0 Content-Length: 0 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: 442222a5-9fb2-4f6e-b7f1-2a144b16d570-v4=442222a5-9fb2-4f6e-b7f1-2a144b16d570; Domain=track.trustmarketcom.com; Path=/; HttpOnly Set-Cookie: voluum-cid-v4=%7B%0A%20%20%22cid%22%20%3A%20%22wIJCUM7A310UET2O0H4ATFQM%22%2C%0A%20%20%22caid%22%20%3A%20%22442222a5-9fb2-4f6e-b7f1-2a144b16d570%22%0A%7D; Domain=track.trustmarketcom.com; Expires=Mon, 24-Oct-2016 21:47:32 GMT; Path=/; HttpOnly X-Robots-Tag: noindex, nofollow | malicious |
URL: http://advidi.optimuum.com/f77d28ba2e956a1c/cd?aff_id=1727&s1=442222a5-9fb2-4f6e-b7f1-2a144b16d570&s2=wIJCUM7A310UET2O0H4ATFQM&s3=g_40915_4&s4= (imitation of visitor from search engine) GET /f77d28ba2e956a1c/cd?aff_id=1727&s1=442222a5-9fb2-4f6e-b7f1-2a144b16d570&s2=wIJCUM7A310UET2O0H4ATFQM&s3=g_40915_4&s4= HTTP/1.1 Host: advidi.optimuum.com Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 25 Oct 2015 21:47:32 GMT Location: http://stuntoffer.com/?limited_offer=R40Q12UaGnLc&exit_block_type=noescape5&video=15&url=%5Bhttp%3A%2F%2Fadvidi.optimuum.com%2Fcb%2Fcb68a32a61c1c4e3%2F9a1fbaaae5424f42e5de649216aba35b%5D Server: nginx/1.0.15 Content-Length: 0 Content-Type: text/html;charset=utf-8 Set-Cookie: cb68a32a61c1c4e3=%5B%5B146%5D%2C%5B2570%5D%2C%5B20299%5D%5D; max-age=2592000 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Who: redirects-front-euw1b X-XSS-Protection: 1; mode=block | suspicious |
Scanned pages/files
Request | Server response | Status |
http://www.curtisohlson.com/ | 403 Forbidden Content-Length: 155 Content-Type: text/html | clean |
http://www.curtisohlson.com/test404page.js | 403 Forbidden Content-Length: 155 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=curtisohlson.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://curtisohlson.com/
Result: curtisohlson.com is not infected or malware details are not published yet.
Result: curtisohlson.com is not infected or malware details are not published yet.