Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.halloweencostumesforteenagers.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.halloweencostumesforteenagers.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:22 GMT Location: http://doctorceme.ru/ Server: nginx/1.6.1 Content-Length: 292 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.halloweencostumesforteenagers.com/ | 200 OK Content-Length: 28692 Content-Type: text/html | clean |
http://www.halloweencostumesforteenagers.com/wp-includes/js/comment-reply.min.js?ver=3.6.1 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://www.halloweencostumesforteenagers.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://www.halloweencostumesforteenagers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/wp-spamfree/js/wpsf-js.php | 200 OK Content-Length: 1526 Content-Type: application/x-javascript | clean |
http://www.tkqlhce.com/s5105yEA-136DA23GPVUXQRVQ?target=_blank&mouseover=Y | 200 OK Content-Length: 1359 Content-Type: text/javascript | clean |
http://www.dpbolvw.net/l2116i2zoqsv1zrs4DJILEFLL?target=_blank&mouseover=Y | 200 OK Content-Length: 1299 Content-Type: text/javascript | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.40.0-2013.08.13 | 200 OK Content-Length: 14625 Content-Type: application/javascript | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.5.2 | 200 OK Content-Length: 8326 Content-Type: application/javascript | clean |
http://www.halloweencostumesforteenagers.com/costumes/While_Stocks_Last_Click_Here_for_/80/1 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:28 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=1&cloaked_url=costumes/While_Stocks_Last_Click_Here_for_/80/1 Server: nginx/1.6.1 Content-Length: 465 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=1&cloaked_url=costumes/while_stocks_last_click_here_for_/80/1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:29 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/Teen/_/N-31/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/teen/_/n-31/results1.aspx | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 31 Aug 2014 05:53:29 GMT Pragma: no-cache Location: http://cj.dotomi.com/2581wktsA/krw/BHHEB89/BED9GA9/8/8/8?f=a960%3Dw884%25IP%25HU%25HUBBB.q9Dr37891t7.r31%25HUq63B7t%25HU8tt2%25HU_%25HU2-IG%25HU6t79087G.p74C<<w884%3A%2F%2FBBB.ys353rD.r31%3ANF%2Fr0xrz-ILKGNHG-IOOLIFG<<V<< Server: Resin/3.1.8 Content-Type: text/html Expires: Sun, 31 Aug 2014 05:53:29 GMT P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT" | clean |
http://cj.dotomi.com/2581wktsa/krw/bhheb89/bed9ga9/8/8/8?f=a960%3dw884%25ip%25hu%25hubbb.q9dr37891t7.r31%25huq63b7t%25hu8tt2%25hu_%25hu2-ig%25hu6t79087g.p74c<<w884%3a%2f%2fbbb.ys353rd.r31%3anf%2fr0xrz-ilkgnhg-ioolifg<<v<< | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://cj.dotomi.com/test404page.js | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://www.halloweencostumesforteenagers.com/costumes/Halloween_Costumes_for_Teenagers/80/2 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:30 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=2&cloaked_url=costumes/Halloween_Costumes_for_Teenagers/80/2 Server: nginx/1.6.1 Content-Length: 464 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=2&cloaked_url=costumes/halloween_costumes_for_teenagers/80/2 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:31 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/Teen/_/N-31/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.halloweencostumesforteenagers.com/costumes/link/80/3 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:31 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=3&cloaked_url=costumes/link/80/3 Server: nginx/1.6.1 Content-Length: 436 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=3&cloaked_url=costumes/link/80/3 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:33 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-captain+america+costume/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/n-/ntt-captain+america+costume/results1.aspx | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 31 Aug 2014 05:53:32 GMT Pragma: no-cache Location: http://cj.dotomi.com/q2101vpyxF/pw0/GMMJGDE/GJIELFE/D/D/D?c=rJGA%3D6IIE%25SZ%25Re%25ReLLL.0JN1DHIJB3H.1DB%25Re0GDLH3%25Re_%25ReC-%25ReCII-1zEIz7C%2BzB3G71z%2B1DHIJB3%25ReG3HJAIHQ.zHEM<<6IIE%3A%2F%2FLLL.82DFD1N.1DB%3AXP%2F1A719-SVUQXRQ-SYYVSPQ<<f<< Server: Resin/3.1.8 Content-Type: text/html Expires: Sun, 31 Aug 2014 05:53:33 GMT P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT" | clean |
http://cj.dotomi.com/q2101vpyxf/pw0/gmmjgde/gjielfe/d/d/d?c=rjga%3d6iie%25sz%25re%25relll.0jn1dhijb3h.1db%25re0gdlh3%25re_%25rec-%25recii-1zeiz7c%2bzb3g71z%2b1dhijb3%25reg3hjaihq.zhem<<6iie%3a%2f%2flll.82dfd1n.1db%3axp%2f1a719-svuqxrq-syyvspq<<f<< | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://www.halloweencostumesforteenagers.com/costumes/link/80/4 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:33 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=4&cloaked_url=costumes/link/80/4 Server: nginx/1.6.1 Content-Length: 436 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=4&cloaked_url=costumes/link/80/4 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:34 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-bee+teen/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/n-/ntt-bee+teen/results1.aspx | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 31 Aug 2014 05:53:34 GMT Pragma: no-cache Location: http://cj.dotomi.com/pq80dlutB/lsx/CIIFC9A/CFEAHBA/9/9/9?i=oFC6%3D2EEA%25OV%25Na%25NaHHH.wFJx9DEF7zD.x97%25NawC9HDz%25Na_%25Na8-%25Na8EE-wzz%2BEzz8%25NaCzDF6EDM.vDAI<<2EEA%3A%2F%2FHHH.4y9B9xJ.x97%3ATL%2Fx63x5-ORQMTNM-OUUROLM<<b<< Server: Resin/3.1.8 Content-Type: text/html Expires: Sun, 31 Aug 2014 05:53:34 GMT P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT" | clean |
http://cj.dotomi.com/pq80dlutb/lsx/ciifc9a/cfeahba/9/9/9?i=ofc6%3d2eea%25ov%25na%25nahhh.wfjx9def7zd.x97%25nawc9hdz%25na_%25na8-%25na8ee-wzz%2bezz8%25naczdf6edm.vdai<<2eea%3a%2f%2fhhh.4y9b9xj.x97%3atl%2fx63x5-orqmtnm-ouurolm<<b<< | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://www.halloweencostumesforteenagers.com/costumes/Captain_America_costumes/80/5 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:35 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=5&cloaked_url=costumes/Captain_America_costumes/80/5 Server: nginx/1.6.1 Content-Length: 456 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=5&cloaked_url=costumes/captain_america_costumes/80/5 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:36 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-captain+america+costume/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.halloweencostumesforteenagers.com/costumes/Sunflower_Bee_costume/80/6 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:36 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=6&cloaked_url=costumes/Sunflower_Bee_costume/80/6 Server: nginx/1.6.1 Content-Length: 453 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=6&cloaked_url=costumes/sunflower_bee_costume/80/6 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:37 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-bee+teen/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.halloweencostumesforteenagers.com/costumes/link/80/7 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:37 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=7&cloaked_url=costumes/link/80/7 Server: nginx/1.6.1 Content-Length: 436 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=7&cloaked_url=costumes/link/80/7 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:38 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-mad+hatter+costume/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/n-/ntt-mad+hatter+costume/results1.aspx | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 31 Aug 2014 05:53:38 GMT Pragma: no-cache Location: http://cj.dotomi.com/36103dlutB/lsx/CIIFC9A/CFEAHBA/9/9/9?i=oFC6%3D2EEA%25OV%25Na%25NaHHH.wFJx9DEF7zD.x97%25NawC9HDz%25Na_%25Na8-%25Na8EE-7vy%2B2vEEzC%2Bx9DEF7z%25NaCzDF6EDM.vDAI<<2EEA%3A%2F%2FHHH.4y9B9xJ.x97%3ATL%2Fx63x5-ORQMTNM-OUUROLM<<b<< Server: Resin/3.1.8 Content-Type: text/html Expires: Sun, 31 Aug 2014 05:53:39 GMT P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT" | clean |
http://cj.dotomi.com/36103dlutb/lsx/ciifc9a/cfeahba/9/9/9?i=ofc6%3d2eea%25ov%25na%25nahhh.wfjx9def7zd.x97%25nawc9hdz%25na_%25na8-%25na8ee-7vy%2b2veezc%2bx9def7z%25naczdf6edm.vdai<<2eea%3a%2f%2fhhh.4y9b9xj.x97%3atl%2fx63x5-orqmtnm-ouurolm<<b<< | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
http://www.halloweencostumesforteenagers.com/costumes/Mad_Hatter_Halloween_Costumes_for_Teenagers/80/8 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:39 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=8&cloaked_url=costumes/Mad_Hatter_Halloween_Costumes_for_Teenagers/80/8 Server: nginx/1.6.1 Content-Length: 475 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=8&cloaked_url=costumes/mad_hatter_halloween_costumes_for_teenagers/80/8 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:40 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-mad+hatter+costume/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.halloweencostumesforteenagers.com/costumes/link/80/9 | HTTP/1.1 302 Found Connection: close Date: Sun, 31 Aug 2014 05:53:41 GMT Location: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=9&cloaked_url=costumes/link/80/9 Server: nginx/1.6.1 Content-Length: 436 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php?post_id=80&link_num=9&cloaked_url=costumes/link/80/9 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 31 Aug 2014 05:53:42 GMT Location: http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/N-/Ntt-Sleestak/results1.aspx Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html X-Redirect-Src: http://www.halloweencostumesforteenagers.com/wp-content/plugins/link-cloaking-plugin/wplc_redirector.php | clean |
http://www.jdoqocy.com/click-3651821-3996301?url=http://www.buycostumes.com/browse/_/n-/ntt-sleestak/results1.aspx | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 31 Aug 2014 05:53:42 GMT Pragma: no-cache Location: http://cj.dotomi.com/jn121lnwvD/nuz/EKKHEBC/EHGCJDC/B/B/B?q=twtn%3Djvvr%255C%254H%254Hyyy.dw0equvwogu.eqo%254Hdtqyug%254H_%254Hp-%254Hpvv-ungguvcm%254Htguwnvu3.curz<<jvvr%3A%2F%2Fyyy.lfqsqe0.eqo%3AA2%2Fenkem-5873A43-5BB8523<<I<< Server: Resin/3.1.8 Content-Type: text/html Expires: Sun, 31 Aug 2014 05:53:42 GMT P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT" | clean |
http://cj.dotomi.com/jn121lnwvd/nuz/ekkhebc/ehgcjdc/b/b/b?q=twtn%3djvvr%255c%254h%254hyyy.dw0equvwogu.eqo%254hdtqyug%254h_%254hp-%254hpvv-ungguvcm%254htguwnvu3.curz<<jvvr%3a%2f%2fyyy.lfqsqe0.eqo%3aa2%2fenkem-5873a43-5bb8523<<i<< | 404 Not Found Content-Length: 50 Content-Type: image/gif | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=halloweencostumesforteenagers.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://halloweencostumesforteenagers.com/
Result: halloweencostumesforteenagers.com is not infected or malware details are not published yet.
Result: halloweencostumesforteenagers.com is not infected or malware details are not published yet.