Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://www.picturesoritdidnthappen.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.picturesoritdidnthappen.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Cache-Control: private, no-cache, no-store, proxy-revalidate, no-transform Connection: close Date: Tue, 09 Sep 2014 10:41:21 GMT Pragma: no-cache Location: http://fillerpromt.osa.pl/ Server: Apache Content-Type: text/html X-Powered-By: PHP/5.2.17 | malicious |
Scanned pages/files
| Request | Server response | Status |
http://www.picturesoritdidnthappen.com/ | 200 OK Content-Length: 39392 Content-Type: text/html | clean |
http://www.picturesoritdidnthappen.com/js/global.js?1259788336 | 200 OK Content-Length: 56815 Content-Type: text/ecmascript | clean |
http://www.picturesoritdidnthappen.com/js/sub.js?1260071800 | 200 OK Content-Length: 26520 Content-Type: text/ecmascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21347 Content-Type: text/javascript | clean |
http://static.ak.connect.facebook.com/js/api_lib/v0.4/FeatureLoader.js.php/en_US | 200 OK Content-Length: 165227 Content-Type: application/x-javascript | clean |
http://www.picturesoritdidnthappen.com/submit | 200 OK Content-Length: 4757 Content-Type: text/html | clean |
http://api.recaptcha.net/challenge?k=6LdMwwkAAAAAABneIROQzoX8E-QhgtK0zYrYZEmK | HTTP/1.1 302 Moved Temporarily Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Tue, 09 Sep 2014 10:41:26 GMT Pragma: no-cache Location: http://www.google.com/recaptcha/api/challenge?k=6LdMwwkAAAAAABneIROQzoX8E-QhgtK0zYrYZEmK Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block | clean |
http://www.google.com/recaptcha/api/challenge?k=6ldmwwkaaaaaabneiroqzox8e-qhgtk0zyryzemk | 200 OK Content-Length: 67 Content-Type: text/javascript | clean |
http://www.picturesoritdidnthappen.com/best | 200 OK Content-Length: 39707 Content-Type: text/html | clean |
http://www.picturesoritdidnthappen.com/new | 200 OK Content-Length: 39650 Content-Type: text/html | clean |
http://www.picturesoritdidnthappen.com/lol-silly-mormons | 200 OK Content-Length: 7265 Content-Type: text/html | clean |
http://static.ak.fbcdn.net/connect.php/js/FB.Share | 200 OK Content-Length: 165227 Content-Type: application/x-javascript | clean |
http://cdn.topsy.com/button.js | 200 OK Content-Length: 4069 Content-Type: text/javascript | clean |
http://www.picturesoritdidnthappen.com/test404page.js | 404 Not Found Content-Length: 208 Content-Type: text/html | clean |
http://www.picturesoritdidnthappen.com/bringing-little-of-uhmerica-to-sweden- | 200 OK Content-Length: 7373 Content-Type: text/html | clean |
http://www.picturesoritdidnthappen.com/because-sweden-needed-some-good-uhmerican-dinking | 200 OK Content-Length: 7610 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=picturesoritdidnthappen.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://picturesoritdidnthappen.com/
Result: picturesoritdidnthappen.com is not infected or malware details are not published yet.
Result: picturesoritdidnthappen.com is not infected or malware details are not published yet.