Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: interradevelopment.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 02 Mar 2015 10:59:31 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://interradevelopment.com/>; rel=shortlink
Set-Cookie: _icl_current_language=fr; expires=Tue, 03-Mar-2015 10:59:32 GMT; path=/
Set-Cookie: PHPSESSID=9ae6db05f578a8aa167cdf9f2d2d1db7; path=/
Set-Cookie: wfvt_-1724113861=54f4429465a89; expires=Mon, 02-Mar-2015 11:29:32 GMT; path=/; httponly
X-Pingback: http://interradevelopment.com/int/xmlrpc.php
X-Powered-By: PHP/5.4.26
GET / HTTP/1.1
Host: interradevelopment.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 02 Mar 2015 10:59:31 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://interradevelopment.com/>; rel=shortlink
Set-Cookie: _icl_current_language=fr; expires=Tue, 03-Mar-2015 10:59:32 GMT; path=/
Set-Cookie: PHPSESSID=9ae6db05f578a8aa167cdf9f2d2d1db7; path=/
Set-Cookie: wfvt_-1724113861=54f4429465a89; expires=Mon, 02-Mar-2015 11:29:32 GMT; path=/; httponly
X-Pingback: http://interradevelopment.com/int/xmlrpc.php
X-Powered-By: PHP/5.4.26
Second query (visit from search engine):
GET / HTTP/1.1
Host: interradevelopment.com
Referer: http://www.google.com/search?q=interradevelopment.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: interradevelopment.com
Referer: http://www.google.com/search?q=interradevelopment.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.interradevelopment.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Mon, 02 Mar 2015 10:59:29 GMT Pragma: no-cache Location: http://interradevelopment.com/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: _icl_current_language=fr; expires=Tue, 03-Mar-2015 10:59:30 GMT; path=/ Set-Cookie: PHPSESSID=1ff6ee823f3d5c37fabb2efd7534a643; path=/ Set-Cookie: wfvt_-1724113861=54f44292b4fd0; expires=Mon, 02-Mar-2015 11:29:30 GMT; path=/; httponly X-Pingback: http://interradevelopment.com/int/xmlrpc.php X-Powered-By: PHP/5.4.26 | clean |
http://interradevelopment.com/ | 200 OK Content-Length: 33670 Content-Type: text/html | clean |
http://www.clickevents.com.my/scripts/collect.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
http://www.clickevents.com.my/test404page.js | 404 Not Found Content-Length: 564 Content-Type: text/html | clean |
http://interradevelopment.com/int/wp-content/themes/rttheme17/js/script.js?ver=4.1.1 | 200 OK Content-Length: 20674 Content-Type: application/javascript | clean |
http://interradevelopment.com/int/wp-content/themes/rttheme17/js/jquery.tools.min.js?ver=4.1.1 | 200 OK Content-Length: 10663 Content-Type: application/javascript | clean |
http://interradevelopment.com/int/wp-includes/js/comment-reply.min.js?ver=4.1.1 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=interradevelopment.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://interradevelopment.com/
Result: interradevelopment.com is not infected or malware details are not published yet.
Result: interradevelopment.com is not infected or malware details are not published yet.