See: http://killmalware.com/writemymortgage.com/#
SE visitors redirects
Visitors from search engines are redirected
to: htxp://redoperabwo dot ru
redoperabwo dot ru is reported by Google as suspicious
1243 sites infected with redirects to this URL
Here we can detect how that SE visitors redirect was wrought - via uploaded Joomla backdoor * all PHP files were infested/
Visitors from search engines are redirected
to: hxtp://www.stlp.4pu.com/
7342 sites infected with redirects to this URL
See SE redirect here: http://killmalware.com/millennium-international.net/#
Is not SE friendly as checked against this : http://www.webconfs.com/redirect-check.php
Either hxtp://millennium-international.net/ is NOT REDIRECTING to any URL or the redirect is NOT SEARCH ENGINE FRIENDLY
and the destination: Either htxp://tonycar.com/css/4.php is NOT REDIRECTING to any URL or the redirect is NOT SEARCH ENGINE FRIENDLY
See: http://maldb.com/northlinkva.com/#
Conditional redirects found. Visitors from search engines are redirected
to: htxp://canadianonlinedrugs dot com/
Redirect to this URL found in 9 sites
Content that was returned by your request for the URL: htxp://refuge7laux.fr/tarifs-refuge-7laux.php
Note: Content displayed is from the redirect location, the URL htxp://miamiheattickets.com/http.php
Additionally, a 404 Not Found
8:error was encountered while trying to use an ErrorDocument to handle the request.
htxp://canadian-SPAM-center.com/ not flagged
Redirection given was terminated because of violation of use by:
htxp://tinyurl.com/nospam.php?id=bp5bg4v
The TinyURL (bp5bg4v) you visited was used by its creator in violation of our terms of use. TinyURL has a strict no abuse policy and we apologize for the intrusion this user has caused you. Such violations of our terms of use include:
Spam - Unsolicited Bulk E-mail
Fraud or Money Making scams
Malware
or any other use that is illegal.
If you received spam, please note that TinyURL did not send this spam and we do not operate any email lists. We can not remove you from spammer’s database as we have no association with spammers, but instead we recommend you use spam filtering software.
*
SE visitors redirects
Visitors from search engines are redirected
to: hxtp://tinyurl.com/bp5bg4v *
1097 sites infected with redirects to this URL (now as we know terminated because of abuse).
Following site with SE redirects has vulnerable CMS: Web application version:
Joomla Version: 2.5.6
Joomla Version 2.5.x - 3.0.x for: htxp://www.uboncloud.com/media/system/js/caption.js
Joomla Version 2.5.x for: htxp://www.uboncloud.com/language/en-GB/en-GB.ini
Joomla version outdated: Upgrade required.
SE visitors redirects
Chain of redirects found:
to: htxp://thecialispill.com
6 sites infected with redirects to this URL
See: https://www.mywot.com/en/scorecard/thecialispill.com?utm_source=addon&utm_content=rw-viewsc
to: htxp://pickupdrugstore.com/
7 sites infected with redirects to this URL server redirect detected by Web Security Test: Code: 301, htxp://pickupdrugstore.com/
Redirect to external server! → https://www.mywot.com/en/scorecard/pickupdrugstore.com?utm_source=addon&utm_content=rw-viewsc
avast flags this redirect site as infested with IRL;Mal
kraken’s Virus Tracker comes up with the following status: xn–k5caa dot com,46.235.44.82,ns3.webreus dot nl,Criminals,
this means that site has active malware up.
Hoster webreus dot nl had malware infections recently and server abuse: http://webwereld.nl/datacenter/54341-sidn-roept-hoster-webreus-op-het-matje (link article author - webwereld editors)