Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kantissimmons.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Sep 2014 13:48:36 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
Link: <http://wp.me/P11FEL-jG>; rel=shortlink
Set-Cookie: spammer_blocker=not_a_spammer; expires=Sat, 25-Oct-2014 13:48:37 GMT
X-Pingback: http://kantissimmons.com/wp/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: kantissimmons.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Sep 2014 13:48:36 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
Link: <http://wp.me/P11FEL-jG>; rel=shortlink
Set-Cookie: spammer_blocker=not_a_spammer; expires=Sat, 25-Oct-2014 13:48:37 GMT
X-Pingback: http://kantissimmons.com/wp/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: kantissimmons.com
Referer: http://www.google.com/search?q=kantissimmons.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kantissimmons.com
Referer: http://www.google.com/search?q=kantissimmons.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.kantissimmons.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 25 Sep 2014 13:48:35 GMT Location: http://kantissimmons.com/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Set-Cookie: spammer_blocker=not_a_spammer; expires=Sat, 25-Oct-2014 13:48:36 GMT X-Pingback: http://kantissimmons.com/wp/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://kantissimmons.com/ | 200 OK Content-Length: 40382 Content-Type: text/html | clean |
http://kantissimmons.com/wp/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/themes/bigfeature/library/js/jquery.imagefit.js?ver=3.9.2 | 200 OK Content-Length: 1829 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/plugins/OptinSkin/front/js/optin.js?ver=3.9.2 | 200 OK Content-Length: 2674 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/plugins/OptinSkin/front/js/fade_load.js?ver=3.9.2 | 200 OK Content-Length: 644 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/plugins/OptinSkin/front/js/sticky.js?ver=3.9.2 | 200 OK Content-Length: 608 Content-Type: application/javascript | clean |
http://dtym7iokkjlif.cloudfront.net/media/js/jquery.shareaholic-publishers-sb.min.js?ver=6.1.5.1 | 200 OK Content-Length: 49666 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.7.3 | 200 OK Content-Length: 1190 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/plugins/flash-video-player/swfobject.js | 200 OK Content-Length: 9759 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/themes/bigfeature/library/js/cufon/cufon-yui.js | 200 OK Content-Length: 18257 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/uploads/2010/08/KantisNav.js | 200 OK Content-Length: 19220 Content-Type: application/javascript | clean |
http://kantissimmons.com/wp/wp-content/uploads/2010/08/KantisReg.js | 200 OK Content-Length: 19220 Content-Type: application/javascript | clean |
http://app.getresponse.com/view_webform.js?wid=4713603&mg_param1=1&u=CzQi | 200 OK Content-Length: 25107 Content-Type: application/x-javascript | clean |
http://analytics.aweber.com/js/awt_analytics.js?id=3DCf | 200 OK Content-Length: 3855 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kantissimmons.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kantissimmons.com/
Result: kantissimmons.com is not infected or malware details are not published yet.
Result: kantissimmons.com is not infected or malware details are not published yet.