Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://pocket.co/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: pocket.co Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: Close Date: Thu, 20 Nov 2014 17:44:20 GMT Location: http://getpocket.com Server: Apache Content-Length: 287 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://pocket.co/sk7g3 | HTTP/1.1 302 Found Connection: Close Date: Thu, 20 Nov 2014 17:44:20 GMT Location: http://getpocket.com/s/k7g3 Server: Apache Content-Length: 270 Content-Type: text/html; charset=iso-8859-1 | clean |
http://getpocket.com/s/k7g3 | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: Close Date: Thu, 20 Nov 2014 17:44:21 GMT Pragma: no-cache Server: Apache Content-Length: 270 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT P3P: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE" Set-Cookie: PHPSESSID=pcijc3rni7okmr9pd2u8fd6h07; path=/ | clean |
http://www.parade.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie/ | HTTP/1.1 301 Moved Permanently Cache-Control: public, max-age=30 Connection: close Date: Thu, 20 Nov 2014 17:44:21 GMT Location: http://parade.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie/ Server: cloudflare-nginx Content-Type: text/html Expires: Thu, 20 Nov 2014 17:44:51 GMT CF-Cache-Status: MISS CF-RAY: 18c6747d99930b02-WAW Set-Cookie: __cfduid=ddcba323d0d1ee64c3fbb86004fa5ce0f1416505461; expires=Fri, 20-Nov-15 17:44:21 GMT; path=/; domain=.parade.com; HttpOnly | clean |
http://parade.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 20 Nov 2014 17:44:22 GMT Location: http://communitytable.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie Server: cloudflare-nginx Content-Type: text/html CF-RAY: 18c67480248c05c9-WAW Set-Cookie: __cfduid=d322709d7c7b3feedeec0d12fbad832031416505461; expires=Fri, 20-Nov-15 17:44:21 GMT; path=/; domain=.parade.com; HttpOnly X-Powered-By: PHP/5.4.20 | clean |
http://communitytable.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 20 Nov 2014 17:44:23 GMT Pragma: no-cache Location: http://communitytable.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie/ Server: cloudflare-nginx Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT CF-RAY: 18c67484d5ec0af0-WAW Set-Cookie: __cfduid=d2975615e9a41f6df44757471be596fb81416505462; expires=Fri, 20-Nov-15 17:44:22 GMT; path=/; domain=.communitytable.com; HttpOnly X-Pingback: http://communitytable.com/xmlrpc.php X-Powered-By: PHP/5.4.20 | clean |
http://communitytable.com/224629/stefanipollack/the-great-thanksgivukkah-tzimmes-pie/ | 200 OK Content-Length: 250041 Content-Type: text/html | clean |
http://communitytable.com/wp-content/themes/wp-theme/js/parade/chartbeat.js?ver=1 | 200 OK Content-Length: 633 Content-Type: application/x-javascript | clean |
http://pocket.co//d3c3cq33003psk.cloudfront.net/opentag-54778-1464668.js/ | HTTP/1.1 301 Moved Permanently Connection: Close Date: Thu, 20 Nov 2014 17:44:26 GMT Location: http://getpocket.com Server: Apache Content-Length: 287 Content-Type: text/html; charset=iso-8859-1 | clean |
http://getpocket.com/ | HTTP/1.1 301 Moved Permanently Connection: Close Date: Thu, 20 Nov 2014 17:44:26 GMT Location: https://getpocket.com/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE" X-Frame-Options: SAMEORIGIN | clean |
https://getpocket.com/ | 200 OK Content-Length: 15996 Content-Type: text/html | clean |
https://getpocket.com/j/v4/vendor/modernizr-2.8.3.min.js | 200 OK Content-Length: 9556 Content-Type: text/javascript | clean |
http://pocket.co//use.typekit.net/uot8zzd.js/ | HTTP/1.1 301 Moved Permanently Connection: Close Date: Thu, 20 Nov 2014 17:44:30 GMT Location: http://getpocket.com Server: Apache Content-Length: 287 Content-Type: text/html; charset=iso-8859-1 | clean |
http://getpocket.com/test404page.js | 404 Not Found Content-Length: 4896 Content-Type: text/html | clean |
http://getpocket.com/j/jquery-1.7.2.min.js | 200 OK Content-Length: 94839 Content-Type: text/javascript | clean |
http://getpocket.com/j/jquery-inheritance.js | 200 OK Content-Length: 1959 Content-Type: text/javascript | clean |
http://getpocket.com//s3.amazonaws.com/ki.js/22516/7kc.js/ | 404 Not Found Content-Length: 4896 Content-Type: text/html | clean |
http://getpocket.com/?ep=1 | HTTP/1.1 301 Moved Permanently Connection: Close Date: Thu, 20 Nov 2014 17:44:32 GMT Location: https://getpocket.com/?ep=1 Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 P3P: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE" X-Frame-Options: SAMEORIGIN | clean |
https://getpocket.com/?ep=1 | 200 OK Content-Length: 15996 Content-Type: text/html | clean |
https://getpocket.com//use.typekit.net/uot8zzd.js/ | 404 Not Found Content-Length: 4896 Content-Type: text/html | clean |
https://getpocket.com/j/jquery-1.7.2.min.js | 200 OK Content-Length: 94839 Content-Type: text/javascript | clean |
https://getpocket.com/j/jquery-inheritance.js | 200 OK Content-Length: 1959 Content-Type: text/javascript | clean |
https://getpocket.com//s3.amazonaws.com/ki.js/22516/7kc.js/ | 404 Not Found Content-Length: 4896 Content-Type: text/html | clean |
https://getpocket.com/signup/?ep=1 | 200 OK Content-Length: 10512 Content-Type: text/html | clean |
https://getpocket.com/j/v4/vendor/modernizr-picturefill.min.js | 200 OK Content-Length: 15767 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pocket.co
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pocket.co/
Result: pocket.co is not infected or malware details are not published yet.
Result: pocket.co is not infected or malware details are not published yet.