Scanned pages/files
Request | Server response | Status |
http://prim.ly/ | 200 OK Content-Length: 50851 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.phishtank.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html dir="ltr" lang="en-US"> <head> <meta charset="utf-8"> <title>Create short url - Short Url Site</title> <meta content="width=device-width, initial-scale=1.0" name="viewport"> <meta name="description" content="Create short ...[4319 bytes skipped]... | ||
http://prim.ly/themes/v3/js/jquery.min.js | 200 OK Content-Length: 268381 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/jquery-ui-1.10.2.custom.min.js | 200 OK Content-Length: 129764 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/jquery.tweet.js | 200 OK Content-Length: 12318 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/bootstrap.min.js | 200 OK Content-Length: 31601 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/jflickrfeed.min.js | 200 OK Content-Length: 1731 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/testimonialrotator.js | 200 OK Content-Length: 934 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/jquery.waitforimages.js | 200 OK Content-Length: 1464 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/theme/custom.js | 200 OK Content-Length: 1470 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/jquery.dataTables.min.js | 200 OK Content-Length: 69604 Content-Type: application/javascript | clean |
http://prim.ly/themes/v3/js/jquery.autosize-min.js | 200 OK Content-Length: 2122 Content-Type: application/javascript | clean |
http://prim.ly/index.html | 200 OK Content-Length: 50851 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.phishtank.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html dir="ltr" lang="en-US"> <head> <meta charset="utf-8"> <title>Create short url - Short Url Site</title> <meta content="width=device-width, initial-scale=1.0" name="viewport"> <meta name="description" content="Create short ...[4319 bytes skipped]... | ||
http://prim.ly/register.html | 200 OK Content-Length: 43962 Content-Type: text/html | clean |
http://prim.ly/faq.html | 200 OK Content-Length: 43582 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: prim.ly
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 07 Mar 2015 03:52:21 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: shorturl=53r8tssf2dh5rjm4k5hoo373g1; path=/
GET / HTTP/1.1
Host: prim.ly
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 07 Mar 2015 03:52:21 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: shorturl=53r8tssf2dh5rjm4k5hoo373g1; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: prim.ly
Referer: http://www.google.com/search?q=prim.ly
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: prim.ly
Referer: http://www.google.com/search?q=prim.ly
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=prim.ly
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://prim.ly/
Result: prim.ly is not infected or malware details are not published yet.
Result: prim.ly is not infected or malware details are not published yet.