Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: eraket.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 02 Sep 2015 15:04:00 GMT
Location: http://www.eraket.com/vidz/
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 235
Content-Type: text/html; charset=iso-8859-1
...235 bytes of data.
GET / HTTP/1.1
Host: eraket.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 02 Sep 2015 15:04:00 GMT
Location: http://www.eraket.com/vidz/
Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 235
Content-Type: text/html; charset=iso-8859-1
...235 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: eraket.com
Referer: http://www.google.com/search?q=eraket.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: eraket.com
Referer: http://www.google.com/search?q=eraket.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://eraket.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 02 Sep 2015 15:04:00 GMT Location: http://www.eraket.com/vidz/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 235 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.eraket.com/vidz/ | 200 OK Content-Length: 56334 Content-Type: text/html | clean |
http://www.eraket.com/vidz/wp-content/plugins/sb-popular-posts-tabbed-widget/includes/js/tabs.js?ver=1 | 200 OK Content-Length: 528 Content-Type: application/javascript | clean |
http://www.eraket.com/vidz/wp-content/plugins/wp-disable-comments/javascript/wp-disable-comments.js?ver=0.4 | 200 OK Content-Length: 588 Content-Type: application/javascript | clean |
http://www.eraket.com/vidz/wp-content/themes/point/js/customscript.js?ver=null | 200 OK Content-Length: 2060 Content-Type: application/javascript | clean |
http://eraket.com/vidz/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 02 Sep 2015 15:04:03 GMT Location: http://www.eraket.com/vidz/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Vary: Accept-Encoding,Cookie Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.eraket.com/vidz/xmlrpc.php X-Powered-By: PHP/5.4.41 | clean |
http://www.eraket.com/test404page.js | 404 Not Found Content-Length: 16526 Content-Type: text/html | clean |
http://www.eraket.com/vidz/wp-content/plugins/wp-disable-comments/javascript/wp-disable-comments.js?ver=0.3.3 | 200 OK Content-Length: 588 Content-Type: application/javascript | clean |
http://www.eraket.com/vidz | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 02 Sep 2015 15:04:05 GMT Location: http://www.eraket.com/vidz/ Server: cloudflare-nginx Content-Type: text/html; charset=iso-8859-1 CF-RAY: 21fa1af917e416ac-ARN Set-Cookie: __cfduid=d0f222d40daf98b6e9b2422c8ba8f083c1441206245; expires=Thu, 01-Sep-16 15:04:05 GMT; path=/; domain=.eraket.com; HttpOnly | clean |
http://www.eraket.com/vidz/about-us/ | 200 OK Content-Length: 40029 Content-Type: text/html | clean |
http://www.eraket.com/vidz/category/trending-videos/ | 200 OK Content-Length: 51620 Content-Type: text/html | clean |
http://www.eraket.com/vidz/category/trending-newsblogs/ | 200 OK Content-Length: 51700 Content-Type: text/html | clean |
http://www.eraket.com/vidz/category/business-ideas/ | 200 OK Content-Length: 46891 Content-Type: text/html | clean |
http://www.eraket.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 02 Sep 2015 15:04:10 GMT Location: http://www.eraket.com/vidz/ Server: cloudflare-nginx Content-Type: text/html; charset=iso-8859-1 CF-RAY: 21fa1b12d34005af-ARN Set-Cookie: __cfduid=de57869b24c827eb471095ffa025e45551441206249; expires=Thu, 01-Sep-16 15:04:09 GMT; path=/; domain=.eraket.com; HttpOnly | clean |
http://eraket.com/movies | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 02 Sep 2015 15:04:11 GMT Location: http://eraket.com/movies/ Server: Apache/2.4.12 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 233 Content-Type: text/html; charset=iso-8859-1 | clean |
http://eraket.com/movies/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=eraket.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://eraket.com/
Result: eraket.com is not infected or malware details are not published yet.
Result: eraket.com is not infected or malware details are not published yet.