Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://actionstalk.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: actionstalk.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Fri, 19 Sep 2014 10:40:26 GMT Location: http://tdsinto.com/orlistat Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html | malicious |
URL: http://tdsinto.com/orlistat/ (imitation of visitor from search engine) GET /orlistat/ HTTP/1.1 Host: tdsinto.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Fri, 19 Sep 2014 12:33:10 GMT Location: http://online-canadapharmacy.com/weight-loss/orlistat.html Server: Apache/2 Content-Length: 305 Content-Type: text/html; charset=iso-8859-1 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://actionstalk.com/ | 200 OK Content-Length: 85924 Content-Type: text/html | clean |
http://actionstalk.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: text/javascript | clean |
http://actionstalk.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://actionstalk.com/wp-content/themes/eVid/js/jquery.js | 200 OK Content-Length: 31033 Content-Type: text/javascript | clean |
http://actionstalk.com/wp-content/themes/eVid/js/slider.js | 200 OK Content-Length: 3368 Content-Type: text/javascript | clean |
http://actionstalk.com/wp-content/themes/eVid/js/scrollTo.js | 200 OK Content-Length: 6445 Content-Type: text/javascript | clean |
http://actionstalk.com/wp-content/themes/eVid/js/serialScroll.js | 200 OK Content-Length: 7165 Content-Type: text/javascript | clean |
http://actionstalk.com/wp-content/themes/eVid/js/init.js | 200 OK Content-Length: 5547 Content-Type: text/javascript | clean |
http://static.ak.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php/en_US | 200 OK Content-Length: 165797 Content-Type: application/x-javascript | clean |
http://is.gd/ZYRPUk | 410 Gone Content-Length: 2007 Content-Type: text/html | clean |
http://is.gd/terms.php | 200 OK Content-Length: 5284 Content-Type: text/html | clean |
http://is.gd//is.gd/index.php/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:33 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a7162a80f63-FRA Set-Cookie: __cfduid=d274a9b78e0214e7ea4d2edd9babdbf6f1411123233504; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://samsbiz.com/page/1dmiu/online_advertising.html | HTTP/1.1 302 Found Connection: close Date: Fri, 19 Sep 2014 10:40:33 GMT Location: http://samsbiz.com/notfound/refinancing.html Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.4 | clean |
http://samsbiz.com/notfound/refinancing.html | 200 OK Content-Length: 2860 Content-Type: text/html | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21412 Content-Type: text/javascript | clean |
http://is.gd/test404page.js | 404 Not Found Content-Length: 1965 Content-Type: text/html | clean |
http://is.gd//is.gd/qrcode.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:35 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a7b67840f63-FRA Set-Cookie: __cfduid=d8dad3a0ee89285b0524bd607e356bd631411123235102; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://samsbiz.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Fri, 19 Sep 2014 10:40:35 GMT Location: http://samsbiz.com/ Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.4 | clean |
http://samsbiz.com/ | HTTP/1.1 302 Found Connection: close Date: Fri, 19 Sep 2014 10:40:36 GMT Location: http://samsbiz.com/notfound/refinancing.html Server: Apache/2.2.4 (Linux/SUSE) Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.2.4 | clean |
http://is.gd//is.gd/news.php/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:36 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a82402e0f63-FRA Set-Cookie: __cfduid=d037a123e39c98c4dcbb3472af9a3d1791411123236207; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://is.gd//is.gd/faq.php/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:36 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a83276c0893-FRA Set-Cookie: __cfduid=d019ab556886e6135e6bea02f0cdce5621411123236344; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://is.gd//is.gd/software.php/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:36 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a85046a0f63-FRA Set-Cookie: __cfduid=d3f163b706c6767d8c7fca9f582ea3d8d1411123236643; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://is.gd//is.gd/developers.php/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:36 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a85e5680f63-FRA Set-Cookie: __cfduid=dd53e65803e0c0c8d93e1137812f3fb591411123236780; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://is.gd//is.gd/contact.php/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Fri, 19 Sep 2014 10:40:36 GMT Location: http://samsbiz.com/page/1dmiu/Online_Advertising.html Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 CF-RAY: 16c52a86aba60f63-FRA Set-Cookie: __cfduid=db8ca328013c45fcbfc8da04df41b04961411123236901; expires=Mon, 23-Dec-2019 23:50:00 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.3.3 | clean |
http://is.gd/usagelimits.php | 200 OK Content-Length: 3094 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=actionstalk.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://actionstalk.com/
Result: actionstalk.com is not infected or malware details are not published yet.
Result: actionstalk.com is not infected or malware details are not published yet.