Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: epaydata.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 21 Aug 2014 14:29:26 GMT
Pragma: no-cache
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1i
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8860a476ff4a39dd3585dbad849c5c1d=su902hfle7pqc0opg33t0e52r5; path=/
GET / HTTP/1.1
Host: epaydata.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 21 Aug 2014 14:29:26 GMT
Pragma: no-cache
Server: Apache/2.4.10 (Win32) OpenSSL/1.0.1i
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 8860a476ff4a39dd3585dbad849c5c1d=su902hfle7pqc0opg33t0e52r5; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: epaydata.com
Referer: http://www.google.com/search?q=epaydata.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: epaydata.com
Referer: http://www.google.com/search?q=epaydata.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://epaydata.com/ | 200 OK Content-Length: 21373 Content-Type: text/html | clean |
http://epaydata.com/media/system/js/core.js | 200 OK Content-Length: 4225 Content-Type: application/javascript | clean |
http://epaydata.com/media/system/js/mootools-core.js | 200 OK Content-Length: 88540 Content-Type: application/javascript | clean |
http://epaydata.com/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/javascript | clean |
http://epaydata.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238128 Content-Type: application/javascript | clean |
http://epaydata.com/templates/epaydata/js/libs/modernizr-2.0.6.min.js | 200 OK Content-Length: 16226 Content-Type: application/javascript | clean |
http://epaydata.com/modules/mod_PlimunNivoSlider/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91342 Content-Type: application/javascript | clean |
http://epaydata.com/modules/mod_PlimunNivoSlider/js/jquery.nivo.slider.js | 200 OK Content-Length: 25016 Content-Type: application/javascript | clean |
http://epaydata.com//ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js/ | 404 Not Found Content-Length: 1501 Content-Type: text/html | clean |
http://epaydata.com/index.php | 200 OK Content-Length: 21382 Content-Type: text/html | clean |
http://epaydata.com/templates/epaydata/js/plugins.js | 200 OK Content-Length: 12276 Content-Type: application/javascript | clean |
http://epaydata.com/templates/epaydata/js/script.js | 200 OK Content-Length: 2259 Content-Type: application/javascript | clean |
http://epaydata.com/contact-us | 200 OK Content-Length: 18493 Content-Type: text/html | clean |
http://epaydata.com/surcharge-2013 | 200 OK Content-Length: 12531 Content-Type: text/html | clean |
http://epaydata.com/careers-top2 | 200 OK Content-Length: 12010 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=epaydata.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://epaydata.com/
Result: epaydata.com is not infected or malware details are not published yet.
Result: epaydata.com is not infected or malware details are not published yet.