Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=globalfirefighters.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://globalfirefighters.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: globalfirefighters.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 22 Dec 2014 04:09:28 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: ci_session=35b2313e4225e636e6ff124ddc96d1ef; path=/
Set-Cookie: ci_session_data=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%2235b2313e4225e636e6ff124ddc96d1ef%22%3Bs%3A13%3A%22session_start%22%3Bi%3A1419221369%3Bs%3A21%3A%22session_last_activity%22%3Bi%3A1419221369%3Bs%3A18%3A%22session_ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A18%3A%22session_user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3B%7D; path=/
Set-Cookie: PHPSESSID=55ede8d2fb4663f5dc7e69e9c5e79ccf; path=/
GET / HTTP/1.1
Host: globalfirefighters.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 22 Dec 2014 04:09:28 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: ci_session=35b2313e4225e636e6ff124ddc96d1ef; path=/
Set-Cookie: ci_session_data=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%2235b2313e4225e636e6ff124ddc96d1ef%22%3Bs%3A13%3A%22session_start%22%3Bi%3A1419221369%3Bs%3A21%3A%22session_last_activity%22%3Bi%3A1419221369%3Bs%3A18%3A%22session_ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A18%3A%22session_user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3B%7D; path=/
Set-Cookie: PHPSESSID=55ede8d2fb4663f5dc7e69e9c5e79ccf; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: globalfirefighters.com
Referer: http://www.google.com/search?q=globalfirefighters.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: globalfirefighters.com
Referer: http://www.google.com/search?q=globalfirefighters.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://globalfirefighters.com/ | 200 OK Content-Length: 20328 Content-Type: text/html | clean |
http://globalfirefighters.com/videos/swfobject.js | 200 OK Content-Length: 6860 Content-Type: application/javascript | clean |
http://www.google.com/cse/brand?form=cse-search-box&lang=en | 200 OK Content-Length: 2504 Content-Type: text/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://globalfirefighters.com/forum/ | 200 OK Content-Length: 10708 Content-Type: text/html | clean |
http://globalfirefighters.com/home/search.html | 200 OK Content-Length: 9495 Content-Type: text/html | clean |
http://www.google.com/afsonline/show_afs_search.js | 200 OK Content-Length: 3366 Content-Type: text/javascript | clean |
http://globalfirefighters.com/forum/register.php | 200 OK Content-Length: 300 Content-Type: text/html | clean |
http://globalfirefighters.com/test404page.js | 404 Not Found Content-Length: 539 Content-Type: text/html | clean |
http://globalfirefighters.com/forum/login.php | 200 OK Content-Length: 8421 Content-Type: text/html | clean |
http://globalfirefighters.com/home/uploadpics.html | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Mon, 22 Dec 2014 04:09:31 GMT Pragma: no-cache Location: http://www.globalfirefighters.com/cuppictures/showall.html Server: Apache Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: ci_session=f2b84718f18c91195284c9005fec224e; path=/ Set-Cookie: ci_session_data=a%3A5%3A%7Bs%3A10%3A%22session_id%22%3Bs%3A32%3A%22f2b84718f18c91195284c9005fec224e%22%3Bs%3A13%3A%22session_start%22%3Bi%3A1419221371%3Bs%3A21%3A%22session_last_activity%22%3Bi%3A1419221371%3Bs%3A18%3A%22session_ip_address%22%3Bs%3A13%3A%2278.158.11.226%22%3Bs%3A18%3A%22session_user_agent%22%3Bs%3A50%3A%22Mozilla%2F4.0+%28compatible%3B+MSIE+8.0%3B+Windows+NT+5.1%29%22%3B%7D; path=/ Set-Cookie: PHPSESSID=5190d9dd2908434e49e9a95dd224cbad; path=/ | clean |
http://www.globalfirefighters.com/cuppictures/showall.html | 200 OK Content-Length: 19549 Content-Type: text/html | clean |
http://www.globalfirefighters.com/xajax_js/xajax_core.js | 200 OK Content-Length: 35533 Content-Type: application/javascript | clean |
http://globalfirefighters.com/home/news.html | 200 OK Content-Length: 28885 Content-Type: text/html | clean |
http://globalfirefighters.com/video/ | 200 OK Content-Length: 11345 Content-Type: text/html | clean |