Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://guymorgandaily.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: guymorgandaily.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 29 Dec 2014 15:43:35 GMT Location: http://goo.gl/qSaO2y Server: Apache Content-Length: 296 Content-Type: text/html; charset=iso-8859-1 | malicious |
URL: http://goo.gl/qSaO2y (imitation of visitor from search engine) GET /qSaO2y HTTP/1.1 Host: goo.gl Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Mon, 29 Dec 2014 15:43:35 GMT Pragma: no-cache Location: http://glbonus.in/?partner=Pashkela Server: GSE Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic,p=0.02 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | malicious |
URL: http://glbonus.in/?partner=Pashkela (imitation of visitor from search engine) GET /?partner=Pashkela HTTP/1.1 Host: glbonus.in Referer: http://www.google.com/search?q=redirect+check3 | HTTP/1.1 302 Found Connection: close Date: Mon, 29 Dec 2014 15:45:23 GMT Location: http://wwteam.biz/?partner=Pashkela Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.10-1ubuntu3.11 | suspicious |
URL: http://wwteam.biz/?partner=Pashkela (imitation of visitor from search engine) GET /?partner=Pashkela HTTP/1.1 Host: wwteam.biz Referer: http://www.google.com/search?q=redirect+check4 | HTTP/1.1 302 Found Connection: close Date: Mon, 29 Dec 2014 15:45:23 GMT Location: http://wholeworld.biz/?partner=Pashkela.d7fc58bcee33094d40b58cebe71864ed.1419867923 Server: Apache/2.2.22 (Ubuntu) Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.10-1ubuntu3.11 | suspicious |
Scanned pages/files
| Request | Server response | Status |
http://guymorgandaily.com/ | 200 OK Content-Length: 215367 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: advancedhairdesignocala.com <!DOCTYPE html > <!--[if lt IE 7 ]> <html class="no-js ie6" dir="ltr" lang="en-US"> <![endif]--> <!--[if IE 7 ]> <html class="no-js ie7" dir="ltr" lang="en-US"> <![endif]--> <!--[if IE 8 ]> <html class="no-js ie8" dir="ltr" lang="en-US"> <![endif]--> <!--[if (gte IE 9)|!(IE)]><!--> <html class="no-js" dir="ltr" lang="en-US"> <!--<![endif]--> ...[4145 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js?ver=3.4 | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/tabs.js | 200 OK Content-Length: 1226 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/jquery.flexslider-min.js | 200 OK Content-Length: 11510 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/filterable.pack.js | 200 OK Content-Length: 1942 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/jquery.prettyPhoto.js | 200 OK Content-Length: 32430 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/jquery.hoverIntent.js | 200 OK Content-Length: 4728 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/superfish.js | 200 OK Content-Length: 4212 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/supersubs.js | 200 OK Content-Length: 3765 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/chosen/chosen.jquery.js?ver=0.9 | 200 OK Content-Length: 30679 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/jquery.tipsy.js | 200 OK Content-Length: 4852 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/themes/super-skeleton/assets/javascripts/skeleton-key.js | 200 OK Content-Length: 11743 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js?ver=1.3 | 200 OK Content-Length: 4055 Content-Type: application/javascript | clean |
http://guymorgandaily.com/wp-content/plugins/dynamic-to-top/js/dynamic.to.top.dev.js?ver=3.2 | 200 OK Content-Length: 2124 Content-Type: application/javascript | clean |
http://guymorgandaily.com/?page_id=23 | 200 OK Content-Length: 218786 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: advancedhairdesignocala.com <!DOCTYPE html > <!--[if lt IE 7 ]> <html class="no-js ie6" dir="ltr" lang="en-US"> <![endif]--> <!--[if IE 7 ]> <html class="no-js ie7" dir="ltr" lang="en-US"> <![endif]--> <!--[if IE 8 ]> <html class="no-js ie8" dir="ltr" lang="en-US"> <![endif]--> <!--[if (gte IE 9)|!(IE)]><!--> <html class="no-js" dir="ltr" lang="en-US"> <!--<![endif]--> ...[4139 bytes skipped]... | ||
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=guymorgandaily.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://guymorgandaily.com/
Result: guymorgandaily.com is not infected or malware details are not published yet.
Result: guymorgandaily.com is not infected or malware details are not published yet.