Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://doubledownpromotions.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: doubledownpromotions.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Cache-Control: no-cache, no-store, must-revalidate, max-age=0 Connection: close Date: Wed, 16 Apr 2014 17:29:02 GMT Location: http://puuzo.info/go.php?sid=19&tds-key=doubledownpromotions.com Server: LiteSpeed Content-Length: 0 Content-Type: text/html Set-Cookie: wfvt_4049370957=534ebdde846d4; expires=Wed, 16-Apr-2014 17:59:02 GMT; path=/ Set-Cookie: wordpress_e0453041539861e85efb117baa0827db=%7C1398878942%7Cbf8bc53a97dfa6103c477bb10c117c72; expires=Thu, 01-May-2014 05:29:02 GMT; path=/wp-content/plugins; httponly Set-Cookie: wordpress_e0453041539861e85efb117baa0827db=%7C1398878942%7Cbf8bc53a97dfa6103c477bb10c117c72; expires=Thu, 01-May-2014 05:29:02 GMT; path=/wp-admin; httponly Set-Cookie: wordpress_logged_in_e0453041539861e85efb117baa0827db=%7C1398878942%7Cb6e9e6f1acfff82720e4ea655b4b7a7f; expires=Thu, 01-May-2014 05:29:02 GMT; path=/; httponly X-Powered-By: PHP/5.2.17 | malicious |
URL: http://puuzo.info/go.php?sid=19&tds-key=doubledownpromotions.com (imitation of visitor from search engine) GET /go.php?sid=19&tds-key=doubledownpromotions.com HTTP/1.1 Host: puuzo.info Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Tue, 15 Apr 2014 22:18:09 GMT Referer: http://www.google.com/url?sa=t&rct=j&q=doubledownpromotions.com&source=web&cd=1&ved=0CDEQFjAG&url=http:%2F%2Fdoubledownpromotions.com%2F&ei=wC7yT5qCJbCCkQKtnwE&usg=AFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg Location: http://www.google.com/url?sa=t&rct=j&q=doubledownpromotions.com&source=web&cd=1&ved=0CDEQFjAG&url=http:%2F%2Fdoubledownpromotions.com%2F&ei=wC7yT5qCJbCCkQKtnwE&usg=AFQjCNGEeYp3D7uuNLAJxMIVliLyQ9O_Pg Server: Apache/2.2.16 (Debian) Vary: Accept-Encoding Content-Length: 50 Content-Type: text/html X-Powered-By: PHP/5.3.3-7+squeeze8 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://doubledownpromotions.com/ | 200 OK Content-Length: 38375 Content-Type: text/html | clean |
http://doubledownpromotions.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: application/javascript | clean |
http://doubledownpromotions.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://doubledownpromotions.com/wp-content/themes/GamingPress/lib/shortcodes/js/bootstrap.js?ver=3.8.2 | 200 OK Content-Length: 12785 Content-Type: application/javascript | clean |
http://connect.facebook.net/en_US/all.js?ver=1.6.4.1 | 200 OK Content-Length: 163404 Content-Type: application/x-javascript | clean |
http://platform.twitter.com/widgets.js?ver=1.6.4.1 | 200 OK Content-Length: 97628 Content-Type: application/javascript | clean |
https://apis.google.com/js/plusone.js?ver=1.6.4.1 | 200 OK Content-Length: 11676 Content-Type: application/javascript | clean |
http://doubledownpromotions.com/wp-content/plugins/social-popup/spu.js?ver=1.6.4.1 | 200 OK Content-Length: 3202 Content-Type: application/javascript | clean |
http://doubledownpromotions.com/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=0.9.7 | 200 OK Content-Length: 4168 Content-Type: application/javascript | clean |
http://doubledownpromotions.com/wp-content/themes/GamingPress/lib/js/superfish.js?ver=3.8.2 | 200 OK Content-Length: 3714 Content-Type: application/javascript | clean |
http://doubledownpromotions.com/wp-content/themes/GamingPress/lib/js/jquery.mobilemenu.js?ver=3.8.2 | 200 OK Content-Length: 1933 Content-Type: application/javascript | clean |
http://bdv.bidvertiser.com/BidVertiser.dbm?pid=463700&bid=1408332 | 200 OK Content-Length: 39 | clean |
http://bdv.bidvertiser.com/test404page.js | 200 OK Content-Length: 50 | clean |
http://bdv.bidvertiser.com/BidVertiser.dbm?pid=463700&bid=1339693 | 200 OK Content-Length: 39 | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=201416 | 200 OK Content-Length: 9168 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=doubledownpromotions.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://doubledownpromotions.com/
Result: doubledownpromotions.com is not infected or malware details are not published yet.
Result: doubledownpromotions.com is not infected or malware details are not published yet.