Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: goldentickettalent.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Jul 2015 05:24:04 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4
Content-Length: 353
Content-Type: text/html;charset=ISO-8859-1
...353 bytes of data.
GET / HTTP/1.1
Host: goldentickettalent.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Jul 2015 05:24:04 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4
Content-Length: 353
Content-Type: text/html;charset=ISO-8859-1
...353 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: goldentickettalent.com
Referer: http://www.google.com/search?q=goldentickettalent.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: goldentickettalent.com
Referer: http://www.google.com/search?q=goldentickettalent.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://goldentickettalent.com/ | 200 OK Content-Length: 353 Content-Type: text/html | clean |
http://goldentickettalent.com/index%2018.htm | HTTP/1.1 200 OK Connection: close Date: Sat, 11 Jul 2015 05:24:05 GMT Accept-Ranges: bytes ETag: "29026e1-512-5118f784a88a4" Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4 Content-Length: 1298 Content-Type: text/html Last-Modified: Wed, 18 Mar 2015 12:46:19 GMT | clean |
https://www.facebook.com/ant.hacktim | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Sat, 11 Jul 2015 05:24:06 GMT Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Expires: Sat, 01 Jan 2000 00:00:00 GMT Strict-Transport-Security: max-age=15552000; preload X-Content-Type-Options: nosniff X-FB-Debug: madFBLlES4z/u+5gtkWAtSvU1MKYWkL0ld7r9TGPohy47c62L7E7oPXSuS7U5ifRevH7H5xl9qCOJn6639jP5w== X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/ant.hacktim?_fb_noscript=1 | 200 OK Content-Length: 300482 Content-Type: text/html | clean |
https://fbstatic-a.akamaihd.net/rsrc.php/v2/yt/r/Wh_NP9cqf4Y.js | 200 OK Content-Length: 115907 Content-Type: application/x-javascript | clean |
http://goldentickettalent.com/pages/create/?ref_type=page_profile_button&ref_id=735695683175046 | 404 Not Found Content-Length: 475 Content-Type: text/html | clean |
http://goldentickettalent.com/test404page.js | 404 Not Found Content-Length: 476 Content-Type: text/html | clean |
http://goldentickettalent.com/r.php?profile_id=735695683175046&next=https%3A%2F%2Fwww.facebook.com%2Fant.hacktim&friend_or_subscriber=friend | 404 Not Found Content-Length: 467 Content-Type: text/html | clean |
http://goldentickettalent.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fant.hacktim | 404 Not Found Content-Length: 468 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/a.735697386508209.1073741827.735695683175046/787136511364296/?type=1 | 404 Not Found Content-Length: 542 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/a.735696129841668.1073741825.735695683175046/825587190852561/?type=1&source=11 | 404 Not Found Content-Length: 542 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1436592247./844414258969854/?type=1 | 404 Not Found Content-Length: 540 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1436592247./843702969040983/?type=1 | 404 Not Found Content-Length: 540 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1436592247./843658265712120/?type=1 | 404 Not Found Content-Length: 540 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1436592247./843625055715441/?type=1 | 404 Not Found Content-Length: 540 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1436592247./843044345773512/?type=1 | 404 Not Found Content-Length: 540 Content-Type: text/html | clean |
http://goldentickettalent.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1436592247./842771322467481/?type=1 | 404 Not Found Content-Length: 540 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=goldentickettalent.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://goldentickettalent.com/
Result: goldentickettalent.com is not infected or malware details are not published yet.
Result: goldentickettalent.com is not infected or malware details are not published yet.