Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ghana.edmarker.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 24 Jan 2015 04:49:27 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-8
X-Pingback: http://ghana.edmarker.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: ghana.edmarker.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 24 Jan 2015 04:49:27 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=UTF-8
X-Pingback: http://ghana.edmarker.com/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: ghana.edmarker.com
Referer: http://www.google.com/search?q=ghana.edmarker.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ghana.edmarker.com
Referer: http://www.google.com/search?q=ghana.edmarker.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://ghana.edmarker.com/ | 200 OK Content-Length: 55610 Content-Type: text/html | clean |
http://ghana.edmarker.com/wp-content/themes/Harvey101/script.js | 200 OK Content-Length: 10724 Content-Type: application/javascript | clean |
http://static.ak.fbcdn.net/connect.php/js/FB.Share?ver=4.1 | 200 OK Content-Length: 164028 Content-Type: application/x-javascript | clean |
http://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit | 200 OK Content-Length: 1427 Content-Type: text/javascript | clean |
http://ghana.edmarker.com/?page_id=1309 | 200 OK Content-Length: 30009 Content-Type: text/html | clean |
http://ghana.edmarker.com/?page_id=5 | 200 OK Content-Length: 24091 Content-Type: text/html | clean |
http://ghana.edmarker.com/?page_id=1402 | 200 OK Content-Length: 23738 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5645 | 200 OK Content-Length: 26716 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5638 | 200 OK Content-Length: 25810 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5629 | 200 OK Content-Length: 31201 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5627 | 200 OK Content-Length: 26140 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5606 | 200 OK Content-Length: 26045 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5601 | 200 OK Content-Length: 26035 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5586 | 200 OK Content-Length: 25817 Content-Type: text/html | clean |
http://ghana.edmarker.com/?p=5583 | 200 OK Content-Length: 25849 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ghana.edmarker.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ghana.edmarker.com/
Result: ghana.edmarker.com is not infected or malware details are not published yet.
Result: ghana.edmarker.com is not infected or malware details are not published yet.