Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: premiumhdv.com
Result:
GET / HTTP/1.1
Host: premiumhdv.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: premiumhdv.com
Referer: http://www.google.com/search?q=premiumhdv.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: premiumhdv.com
Referer: http://www.google.com/search?q=premiumhdv.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.premiumhdv.com/ | 200 OK Content-Length: 82965 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js | 200 OK Content-Length: 85925 Content-Type: text/javascript | clean |
http://www.premiumhdv.com/player/swfobject.js | 200 OK Content-Length: 6880 Content-Type: text/javascript | clean |
http://www.premiumhdv.com/javascript/counter.php | 200 OK Content-Length: 820 Content-Type: application/x-javascript | clean |
https://secure.zombaio.com/External/loc-scr/?62790486w4abf3a276ba36969ff2b9b83a5fdda5d | 200 OK Content-Length: 272 Content-Type: text/plain | clean |
http://secure.zombaio.com/test404page.js | 404 Not Found Content-Length: 5172 Content-Type: text/html | clean |
http://www.premiumhdv.com//mc.yandex.ru/metrika/watch.js/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Fri, 01 Aug 2014 08:40:27 GMT Pragma: no-cache Location: / Server: lighttpd Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=htashbsirmvjr61agpf0bp9k21; path=/ Set-Cookie: uniq=raw; expires=Sat, 02-Aug-2014 08:40:27 GMT; path=/ Set-Cookie: uniq_first=1; expires=Sat, 02-Aug-2014 08:40:27 GMT; path=/ Set-Cookie: u_referer=NO_REFERER; expires=Sat, 02-Aug-2014 08:40:27 GMT; path=/ Set-Cookie: prg=19; expires=Sun, 31-Aug-2014 08:40:27 GMT; path=/ X-Powered-By: PHP/5.3.9 | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=premiumhdv.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://premiumhdv.com/
Result: premiumhdv.com is not infected or malware details are not published yet.
Result: premiumhdv.com is not infected or malware details are not published yet.