Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://wpsqueeze.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: wpsqueeze.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 03 Sep 2014 02:09:24 GMT Location: http://nanacast.com/vp/103536/181150/ Server: Apache Content-Length: 0 Content-Type: text/html | malicious |
URL: http://nanacast.com/vp/103536/181150/ (imitation of visitor from search engine) GET /vp/103536/181150/ HTTP/1.1 Host: nanacast.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 03 Sep 2014 02:09:23 GMT Pragma: no-cache Location: http://wpsqueezepro.com/ Server: Apache/2.2.3 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM" Set-Cookie: ibiweb02=fi2le30o7akm92fsc75en5pb56; path=/ Set-Cookie: site_link_119645=181150_0_; expires=Thu, 03-Sep-2015 02:09:24 GMT; path=/ | suspicious |
Scanned pages/files
Request | Server response | Status |
http://wpsqueeze.com/ | 200 OK Content-Length: 6428 Content-Type: text/html | clean |
http://wpsqueeze.com/wp-content/themes/whitepaperongray/script.js | 200 OK Content-Length: 4468 Content-Type: application/javascript | clean |
http://www.statcounter.com/counter/counter_xhtml.js | 200 OK Content-Length: 9028 Content-Type: application/x-javascript | clean |
http://wpsqueeze.com/paper/index.php?action=order&dc= | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 03 Sep 2014 02:09:25 GMT Pragma: no-cache Location: /paper/?action=order Server: Apache Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" Set-Cookie: PHPSESSID=fc74e77631ce8a1cb80c294dfc3aa345; path=/ | clean |
http://wpsqueeze.com/paper/?action=order | 200 OK Content-Length: 5886 Content-Type: text/html | clean |
http://wpsqueeze.com/paper/script.js | 200 OK Content-Length: 4468 Content-Type: application/javascript | clean |
http://www.statcounter.com/counter/counter.js | 200 OK Content-Length: 15530 Content-Type: application/x-javascript | clean |
http://wpsqueeze.com/recommends/rapidaction | HTTP/1.1 302 Found Connection: close Date: Wed, 03 Sep 2014 02:09:28 GMT Location: http://www.myfavurls.com/?netkickstart:rapidaction Server: Apache Content-Length: 0 Content-Type: text/html | clean |
http://www.myfavurls.com/?netkickstart:rapidaction | HTTP/1.1 302 Found Connection: close Date: Wed, 03 Sep 2014 02:09:28 GMT Location: http://rapidactionprofits.com/?e=netkickstart Server: Apache Content-Length: 0 Content-Type: text/html | clean |
http://rapidactionprofits.com/?e=netkickstart | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 03 Sep 2014 02:09:28 GMT Pragma: no-cache Location: / Server: nginx/1.6.1 Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT P3P: CP="IDC DSP COR CURa ADMa OUR IND PHY ONL COM STA" Set-Cookie: PHPSESSID=5a5eca1436229451409bf2bb2ebaa56d; path=/ Set-Cookie: aff=webmaster%40netkickstart.com; expires=Thu, 03-Sep-2015 02:09:28 GMT; path=/; domain=.rapidactionprofits.com Set-Cookie: nick=netkickstart; expires=Thu, 03-Sep-2015 02:09:28 GMT; path=/; domain=.rapidactionprofits.com Set-Cookie: ref=deleted; expires=Tue, 03-Sep-2013 02:09:27 GMT; path=/; domain=.rapidactionprofits.com | clean |
http://rapidactionprofits.com/ | 200 OK Content-Length: 64519 Content-Type: text/html | clean |
http://rapidactionprofits.com/js/prototype.js | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |
http://rapidactionprofits.com/cgi-sys/js/simple-expand.min.js | 200 OK Content-Length: 2782 Content-Type: application/javascript | clean |
http://rapidactionprofits.com/js/ | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://rapidactionprofits.com/test404page.js | 404 Not Found Content-Length: 11812 Content-Type: text/html | clean |
http://wpsqueeze.com/recommends/js/miniajax.js | 404 Not Found Content-Length: 4267 Content-Type: text/html | clean |
http://wpsqueeze.com/recommends/inmotion | HTTP/1.1 302 Found Connection: close Date: Wed, 03 Sep 2014 02:09:34 GMT Location: http://www.myfavurls.com/?netkickstart:inmotion Server: Apache Content-Length: 0 Content-Type: text/html | clean |
http://www.myfavurls.com/?netkickstart:inmotion | HTTP/1.1 302 Found Connection: close Date: Wed, 03 Sep 2014 02:09:35 GMT Location: https://secure1.inmotionhosting.com/cgi-bin/gby/clickthru.cgi?id=zenpawn Server: Apache Content-Length: 0 Content-Type: text/html | clean |
https://secure1.inmotionhosting.com/cgi-bin/gby/clickthru.cgi?id=zenpawn | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 03 Sep 2014 02:09:35 GMT Location: http://www.inmotionhosting.com Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 Content-Length: 0 Content-Type: application/cgi P3P: policyref="/w3c/p3p.xml", CP="policyref=http://yoursite.com/w3c/p3p.xml, CP=ALL DSP TAIa PSAa PSDa OUR IND UNI COM NAV STA OTC" Set-Cookie: affiliates=zenpawn; domain=inmotionhosting.com; path=/; expires=Tue, 02-Dec-2014 02:09:35 GMT | clean |
http://www.inmotionhosting.com/ | 200 OK Content-Length: 44306 Content-Type: text/html | clean |
http://www.inmotionhosting.com//imh01-inmotionhosting1.netdna-ssl.com/js/libs/modernizr-2.5.3-respond-1.1.0.min.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 03 Sep 2014 02:09:38 GMT Via: 1.1 varnish Accept-Ranges: bytes Age: 0 Location: http://www.inmotionhosting.com/imh01-inmotionhosting1.netdna-ssl.com/js/libs/modernizr-2.5.3-respond-1.1.0.min.js Server: Apache Content-Length: 321 Content-Type: text/html; charset=iso-8859-1 X-Varnish: 1871808328 | clean |
http://www.inmotionhosting.com/imh01-inmotionhosting1.netdna-ssl.com/js/libs/modernizr-2.5.3-respond-1.1.0.min.js | 404 Not Found Content-Length: 29271 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wpsqueeze.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wpsqueeze.com/
Result: wpsqueeze.com is not infected or malware details are not published yet.
Result: wpsqueeze.com is not infected or malware details are not published yet.