Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xfilmes.tv
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 30 Sep 2014 00:14:26 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: AVS=m2idlhij0miq37mrv967dcuja3; path=/
X-Cache: HIT from Backend
GET / HTTP/1.1
Host: xfilmes.tv
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 30 Sep 2014 00:14:26 GMT
Pragma: no-cache
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: AVS=m2idlhij0miq37mrv967dcuja3; path=/
X-Cache: HIT from Backend
Second query (visit from search engine):
GET / HTTP/1.1
Host: xfilmes.tv
Referer: http://www.google.com/search?q=xfilmes.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xfilmes.tv
Referer: http://www.google.com/search?q=xfilmes.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://xfilmes.tv/ | 200 OK Content-Length: 47802 Content-Type: text/html | clean |
http://xfilmes.tv/templates/frontend/default/js/jquery-1.2.6.pack.js | 200 OK Content-Length: 31033 Content-Type: application/x-javascript | clean |
http://xfilmes.tv/templates/frontend/default/js/jquery.livequery.pack.js | 200 OK Content-Length: 2602 Content-Type: application/x-javascript | clean |
http://xfilmes.tv/templates/frontend/default/js/jquery.rotator-0.2.js | 200 OK Content-Length: 1328 Content-Type: application/x-javascript | clean |
http://xfilmes.tv/templates/frontend/default/js/jquery.avs-0.2.js | 200 OK Content-Length: 11778 Content-Type: application/x-javascript | clean |
http://xfilmes.tv/templates/frontend/default/js/jwplayer.js | 200 OK Content-Length: 155549 Content-Type: application/x-javascript | clean |
http://xfilmes.tv/templates/frontend/default/js/jscroller2-1.5.js | 200 OK Content-Length: 5321 Content-Type: application/x-javascript | clean |
http://adspaces.ero-advertising.com/adspace/72254.js | 200 OK Content-Length: 0 Content-Type: application/javascript | clean |
http://xfilmes.tv/signup | 200 OK Content-Length: 12386 Content-Type: text/html | clean |
http://xfilmes.tv/templates/frontend/default/js/jquery.signup-0.1.js | 200 OK Content-Length: 595 Content-Type: application/x-javascript | clean |
http://xfilmes.tv/login | 200 OK Content-Length: 9336 Content-Type: text/html | clean |
http://xfilmes.tv/invite | 200 OK Content-Length: 10851 Content-Type: text/html | clean |
http://xfilmes.tv/feedback | 200 OK Content-Length: 10908 Content-Type: text/html | clean |
http://xfilmes.tv/notices | 200 OK Content-Length: 7446 Content-Type: text/html | clean |
http://xfilmes.tv/community | 200 OK Content-Length: 14117 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xfilmes.tv
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xfilmes.tv/
Result: xfilmes.tv is not infected or malware details are not published yet.
Result: xfilmes.tv is not infected or malware details are not published yet.