Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: xxxworldxxx.com
Result:
GET / HTTP/1.1
Host: xxxworldxxx.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: xxxworldxxx.com
Referer: http://www.google.com/search?q=xxxworldxxx.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: xxxworldxxx.com
Referer: http://www.google.com/search?q=xxxworldxxx.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.xxxworldxxx.com/ | 200 OK Content-Length: 84880 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/flowplayer-3.1.2.min.js | 200 OK Content-Length: 15933 Content-Type: application/x-javascript | clean |
http://adspaces.ero-advertising.com/adspace/245593.js | 200 OK Content-Length: 1276 Content-Type: application/javascript | clean |
http://adspaces.ero-advertising.com/adspace/59902.js | 200 OK Content-Length: 16444 Content-Type: application/javascript | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.0.985.89320&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL2dhbGxlcmllc3BheXNlcnZlY29tMTQxNzA2MjkyMTl0cmFpbGVyZmx2LnNodG1s~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:50 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170629219trailerflv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:50 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170629219trailerflv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:50 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170629219trailerflv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:51 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:51 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170629219trailerflv.shtml | 200 OK Content-Length: 219 Content-Type: text/html | clean |
http://trafficholder.com/test404page.js | 404 Not Found Content-Length: 43 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.1.244.215&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL3Rvb2xzbGF0aW50ZWVuY2FzaGNvbWZsYXNodmlkZW8xNTNmbHYuc2h0bWw=~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:52 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/toolslatinteencashcomflashvideo153flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:52 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/toolslatinteencashcomflashvideo153flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:52 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/toolslatinteencashcomflashvideo153flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:52 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:52 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/toolslatinteencashcomflashvideo153flv.shtml | 200 OK Content-Length: 215 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.2.2349.99201&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL2dhbGxlcmllc3BheXNlcnZlY29tMTQxNzA2MzA4ODl0cmFpbGVyZmx2LnNodG1s~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:52 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170630889trailerflv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:52 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170630889trailerflv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:52 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170630889trailerflv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:53 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:53 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom14170630889trailerflv.shtml | 200 OK Content-Length: 219 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.3.398.30842&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL2Zsdnhjb3JlY2x1YmNvbWRyaWxsZWRzd2VldGllczAyNGRyaWxsZWRzd2VldGllcy0wMjQzNWZsdi5zaHRtbA==~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:53 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomdrilledsweeties024drilledsweeties-02435flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:53 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomdrilledsweeties024drilledsweeties-02435flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:53 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomdrilledsweeties024drilledsweeties-02435flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:53 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:53 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomdrilledsweeties024drilledsweeties-02435flv.shtml | 200 OK Content-Length: 235 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.4.1760.31503&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL3R1YmViYWJ5c2l0dGVybW92aWVzY29tRjAwN0cwMDE1Zmx2LnNodG1s~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:54 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomF007G0015flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:54 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomf007g0015flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:54 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomf007g0015flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:54 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:54 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomf007g0015flv.shtml | 200 OK Content-Length: 213 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.5.1521.40463&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL2dhbGxlcmllc3BheXNlcnZlY29tMTQxNzA2MjY3MjcxMGZsdi5zaHRtbA==~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:54 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom1417062672710flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:54 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom1417062672710flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:54 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom1417062672710flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:54 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:54 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom1417062672710flv.shtml | 200 OK Content-Length: 214 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.6.1682.31306&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL3NlZW15YnVja3Njb21mbHZleHBvcnRlcmNvbnRlbnRzZWVteWdmMzJmbHYuc2h0bWw=~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:55 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/seemybuckscomflvexportercontentseemygf32flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:55 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/seemybuckscomflvexportercontentseemygf32flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:55 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/seemybuckscomflvexportercontentseemygf32flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:55 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:55 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/seemybuckscomflvexportercontentseemygf32flv.shtml | 200 OK Content-Length: 221 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.7.487.20432&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL2Zsdnhjb3JlY2x1YmNvbXRlZW5zd2FudGJsYWNrMDIydGVlbnN3YW50YmxhY2stMDIyMzVmbHYuc2h0bWw=~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:55 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomteenswantblack022teenswantblack-02235flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:55 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomteenswantblack022teenswantblack-02235flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:55 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomteenswantblack022teenswantblack-02235flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:55 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:55 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/flvxcoreclubcomteenswantblack022teenswantblack-02235flv.shtml | 200 OK Content-Length: 233 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.8.1231.92652&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL2dhbGxlcmllc3BheXNlcnZlY29tMTQxNzA2MjU0NDExZmx2LnNodG1s~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:56 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom141706254411flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:56 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom141706254411flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:56 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom141706254411flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:56 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:56 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/galleriespayservecom141706254411flv.shtml | 200 OK Content-Length: 213 Content-Type: text/html | clean |
http://www.xxxworldxxx.com/streamrotator/out.php?l=0.1.9.1727.43730&u=out.php?url=~aHR0cDovL3d3dy54eHh3b3JsZHh4eC5jb20vdGVlbnZpZGVvL3R1YmViYWJ5c2l0dGVybW92aWVzY29tRjAwM0cwMDE3Zmx2LnNodG1s~&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:56 GMT Location: ../out.php?url=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomF003G0017flv.shtml&link=main Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: __st_click_counter=2; expires=Mon, 06-Oct-2014 18:29:56 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://www.xxxworldxxx.com/streamrotator/../out.php?url=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomf003g0017flv.shtml&link=main | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 18:29:56 GMT Location: http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomf003g0017flv.shtml Server: nginx/1.2.3 Content-Length: 0 Content-Type: text/html Set-Cookie: from=nocookie; expires=Mon, 06-Oct-2014 18:29:56 GMT; path=/ Set-Cookie: to=%7Cout_redirect; expires=Mon, 06-Oct-2014 18:29:56 GMT; path=/ X-Powered-By: PHP/5.2.16 | clean |
http://trafficholder.com/in/in.php?ppsppe&returl=http://www.xxxworldxxx.com/teenvideo/tubebabysittermoviescomf003g0017flv.shtml | 200 OK Content-Length: 213 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=xxxworldxxx.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://xxxworldxxx.com/
Result: xxxworldxxx.com is not infected or malware details are not published yet.
Result: xxxworldxxx.com is not infected or malware details are not published yet.