Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://dedonairbiog.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: dedonairbiog.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:29 GMT Location: http://www.searchremagnified.com/?dn=dedonairbiog.com&pid=9PO28A2FW Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: gvc=908vr1439289292127871; expires=Sun, 31-Mar-2019 20:15:29 GMT; path=/; domain=dedonairbiog.com; httponly X-Cnection: close X-Powered-By: PHP/5.3.21 | malicious |
URL: http://www.searchremagnified.com/?dn=dedonairbiog.com&pid=9PO28A2FW (imitation of visitor from search engine) GET /?dn=dedonairbiog.com&pid=9PO28A2FW HTTP/1.1 Host: www.searchremagnified.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:29 GMT Location: http://freeresultsguide.com/?dn=dedonairbiog.com&pid=9PO28A2FW Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 341 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | suspicious |
Scanned pages/files
Request | Server response | Status |
http://dedonairbiog.com/content/ | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:29 GMT Location: http://www.searchremagnified.com/?dn=dedonairbiog.com&pid=9PO28A2FW Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: gvc=901vr1439289295129736; expires=Sun, 31-Mar-2019 20:15:29 GMT; path=/; domain=dedonairbiog.com; httponly X-Cnection: close X-Powered-By: PHP/5.3.21 | clean |
http://www.searchremagnified.com/?dn=dedonairbiog.com&pid=9po28a2fw | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:29 GMT Location: http://freeresultsguide.com/?dn=dedonairbiog.com&pid=9po28a2fw Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 341 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://freeresultsguide.com/?dn=dedonairbiog.com&pid=9po28a2fw | 200 OK Content-Length: 2455 Content-Type: text/html | clean |
http://freeresultsguide.com/?dn=dedonairbiog.com&fp=onWK%2FJHafWU17cxkW5cwAsYG0b1EtgOyeYL4mFufOlhkroIp7ykPPtvOkWiB9lg0qVmOEOEysu0QMg2QtpK2zg%3D%3D&prvtof=127Xu6IHr%2BaQZvJJpSkBuda48wwEefjjYlB82%2BenESM%3D&poru=OWscKT4aVU4c8SHwEW%2BPG%2BoWr3UPKTAG3uFIFeAfBGyDVXgb0HS4tVW3%2F4QQc%2FFDNdzidlRDWNRtLSSHZoY5AQVVQJ23Wi%2FQstVIRSkwcv8%3D& | 200 OK Content-Length: 272 Content-Type: text/html | clean |
http://freeresultsguide.com/test404page.js | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:31 GMT Location: http://pagesinxt.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close X-Powered-By: PHP/5.3.21 | clean |
http://pagesinxt.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:31 GMT Location: http://mypageresults.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 338 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=freeresultsguide.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2525 Content-Type: text/html | clean |
http://mypageresults.com/?dn=freeresultsguide.com&fp=89fIskN2nI5Zg%2FiN5sRieVTsKNJxaeBNcLomCBmO4XWMFqqjbbIijYDN8YFhNS0XV9B8KyjyUtV5imtecdQlog%3D%3D&prvtof=jROf6E6%2FA4ioGp%2FntC%2BJAUpe%2BCcsVTUy%2F9Cx89FkYuA%3D&poru=KnEzDLS2JIZUruYHPdJzo3d00t1ZwveOpu1fzT2FCEkzGPlQfcMZNPHWvdwUHadMOMC02yPXaIWIgXSIHgJfdM2lmAx6vrJgd%2BQGhXkfedY%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 271 Content-Type: text/html | clean |
http://mypageresults.com/test404page.js | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:32 GMT Location: http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (CentOS) Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Cnection: close X-Powered-By: PHP/5.3.21 | clean |
http://pagesinxt.com/?dn=mypageresults.com&flrdr=yes&nxte=js | HTTP/1.1 302 Found Date: Tue, 01 Apr 2014 20:15:33 GMT Location: http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js Server: Apache/2.2.3 (Red Hat) Vary: Accept-Encoding Content-Length: 335 Content-Type: text/html; charset=iso-8859-1 X-Cnection: close | clean |
http://mypageresults.com/?dn=mypageresults.com&flrdr=yes&nxte=js | 200 OK Content-Length: 2493 Content-Type: text/html | clean |
http://mypageresults.com/?dn=mypageresults.com&fp=q9KxHRUptZKvB4kWk6tP%2B2fOTBsC7qGLivt4F7YPxwzl57uIUOZn6mmpBpkKhBcy3ZUA2DyaJ3cv4YZcQTaLPw%3D%3D&prvtof=6Cm82MBhoJ3atVGycyDMBxRdDXc42BlfpwrSNY4vFwA%3D&poru=jxFSiSlfqSZ7at50Ym6HD5GupRfTemPKhaU1r3LrxqMGlhRbl9uH2GsZIV%2Bo1N0hxsco3kdBxW%2BmUI40x2vjVAMmUWE2biqdkD7PwzW7q9A%3D&flrdr=yes&nxte=js | 200 OK Content-Length: 272 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=dedonairbiog.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://dedonairbiog.com/
Result: dedonairbiog.com is not infected or malware details are not published yet.
Result: dedonairbiog.com is not infected or malware details are not published yet.