Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://fantasygirl.org/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: fantasygirl.org Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 22:30:05 GMT Age: 0 Location: http://www.geocities.com/leslieannkaye Server: ATS/5.0.1 Content-Type: text/html | malicious |
URL: http://www.geocities.com/leslieannkaye (imitation of visitor from search engine) GET /leslieannkaye HTTP/1.1 Host: www.geocities.com Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 22:30:05 GMT Location: https://smallbusiness.yahoo.com/geocities Vary: Accept-Encoding Content-Length: 3323 Content-Type: text/html P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" | suspicious |
Scanned pages/files
Request | Server response | Status |
http://fantasygirl.org/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://fantasygirl.org/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 22:30:10 GMT Age: 0 Location: http://www.geocities.com/leslieannkaye Server: ATS/5.0.1 Content-Type: text/html | clean |
http://www.geocities.com/leslieannkaye | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 22:30:10 GMT Location: https://smallbusiness.yahoo.com/geocities Vary: Accept-Encoding Content-Length: 3323 Content-Type: text/html P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" | clean |
https://smallbusiness.yahoo.com/geocities | 200 OK Content-Length: 32749 Content-Type: text/html | clean |
https://s.yimg.com/zz/combo?yui:3.13.0/build/yui/yui-min.js | 200 OK Content-Length: 88622 Content-Type: application/javascript | clean |
https://s.yimg.com/ss/rapid-3.19.js | 200 OK Content-Length: 40890 Content-Type: application/javascript | clean |
https://s3.yimg.com/lm/ysbp/js/acbd9d0d.helpers_core.js | 200 OK Content-Length: 47498 Content-Type: application/x-javascript | clean |
https://s.yimg.com/zz/combo?kx/yucs/uh3/uh/1078/js/uh-min.js&kx/yucs/uh3/uh/1078/js/gallery-jsonp-min.js&kx/yucs/uh3/uh/1134/js/menu_utils_v3-min.js&kx/yucs/uh3/uh/1078/js/localeDateFormat-min.js&kx/yucs/uh3/uh/1078/js/timestamp_library_v2-min.js&kx/yucs/uh3/uh/1104/js/logo_debug-min.js&kx/yucs/uh3/switch-theme/6/js/switch_theme-min.js&kx/yucs/uhc/meta/55/js/meta-min.js&kx/yucs/uh_common/beacon/18 <span>...363 symbols skipped</span> | 200 OK Content-Length: 83051 Content-Type: application/javascript | clean |
http://fantasygirl.org/webhosting | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 22:30:14 GMT Age: 0 Location: http://www.geocities.com/leslieannkaye Server: ATS/5.0.1 Content-Type: text/html | clean |
http://www.geocities.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Tue, 10 Feb 2015 22:30:14 GMT Location: https://smallbusiness.yahoo.com/geocities Vary: Accept-Encoding Content-Length: 3323 Content-Type: text/html P3P: policyref="http://info.yahoo.com/w3c/p3p.xml", CP="CAO DSP COR CUR ADM DEV TAI PSA PSD IVAi IVDi CONi TELo OTPi OUR DELi SAMi OTRi UNRi PUBi IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC GOV" | clean |
http://smallbusiness.yahoo.com/test404page.js | HTTP/1.1 301 Redirect Cache-Control: no-store Connection: close Date: Tue, 10 Feb 2015 22:30:14 GMT Location: https://smallbusiness.yahoo.com/test404page.js Server: ATS Content-Language: en Content-Length: 207 Content-Type: text/html | clean |
https://smallbusiness.yahoo.com/test404page.js | 404 Not Found Content-Length: 29116 Content-Type: text/html | clean |
https://smallbusiness.yahoo.com/ | 200 OK Content-Length: 51702 Content-Type: text/html | clean |
https://s3.yimg.com/lm/ysbp/js/c476ac2c.home.js | 200 OK Content-Length: 2477 Content-Type: application/x-javascript | clean |
https://smallbusiness.yahoo.com//ethn.io/61961.js/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 10 Feb 2015 22:30:18 GMT Age: 0 Location: /ethn.io/61961.js Server: ATS Set-Cookie: B=9jaf76ladl1jq&b=3&s=i3; expires=Tue, 10-Feb-2017 22:30:18 GMT; path=/; domain=.yahoo.com X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Powered-By: Express X-XSS-Protection: 1; mode=block | clean |
https://smallbusiness.yahoo.com/ethn.io/61961.js | 404 Not Found Content-Length: 29126 Content-Type: text/html | clean |
https://smallbusiness.yahoo.com/webhosting | 200 OK Content-Length: 94779 Content-Type: text/html | clean |
https://s1.yimg.com/lm/ysbp/js/56972a08.web_hosting_base.js | 200 OK Content-Length: 2877 Content-Type: application/x-javascript | clean |
https://smallbusiness.yahoo.com/webhosting/compare-plans | 200 OK Content-Length: 90140 Content-Type: text/html | clean |
https://s3.yimg.com/lm/ysbp/js/5dc2e582.web_hosting.js | 200 OK Content-Length: 2657 Content-Type: application/x-javascript | clean |
https://smallbusiness.yahoo.com/ecommerce | 200 OK Content-Length: 52173 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fantasygirl.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fantasygirl.org/
Result: fantasygirl.org is not infected or malware details are not published yet.
Result: fantasygirl.org is not infected or malware details are not published yet.