Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://herbertsimon.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: herbertsimon.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 03 Sep 2014 21:45:21 GMT Location: http://www.followthefiresuntilthey.info/ Server: Microsoft-IIS/6.0 Content-Length: 161 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCTRCDQB=HHIHJMKDMIKEJJLNMNFAOKPL; path=/ X-Powered-By: ASP.NET | malicious |
URL: http://www.followthefiresuntilthey.info/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.followthefiresuntilthey.info Referer: http://www.google.com/search?q=redirect+check2 | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 03 Sep 2014 21:45:21 GMT Location: http://www.outdoorsportfootwear.com/ Server: Apache/2 Content-Length: 328 Content-Type: text/html; charset=iso-8859-1 | suspicious |
Scanned pages/files
Request | Server response | Status |
http://herbertsimon.com/ | 200 OK Content-Length: 6385 Content-Type: text/html | clean |
http://herbertsimon.com/mainframe.html | 200 OK Content-Length: 1644 Content-Type: text/html | clean |
http://herbertsimon.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=herbertsimon.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://herbertsimon.com/
Result: herbertsimon.com is not infected or malware details are not published yet.
Result: herbertsimon.com is not infected or malware details are not published yet.