Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: keegansmith.com
Result:
HTTP/1.1 200 OK
Cache-Control: must-revalidate
Connection: close
Date: Mon, 29 Sep 2014 15:05:40 GMT
ETag: "e81d8149dc94cef34168b8dda951b84a"
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Mon, 29 Sep 2014 12:13:31 GMT
Set-Cookie: SESSd34a681b4338d93fe5e5049a3a568eb9=54a7e71cf5aa84577059e156ae15472a; expires=Wed, 22-Oct-2014 18:39:01 GMT; path=/; domain=.keegansmith.com
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: keegansmith.com
Result:
HTTP/1.1 200 OK
Cache-Control: must-revalidate
Connection: close
Date: Mon, 29 Sep 2014 15:05:40 GMT
ETag: "e81d8149dc94cef34168b8dda951b84a"
Server: Apache
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Mon, 29 Sep 2014 12:13:31 GMT
Set-Cookie: SESSd34a681b4338d93fe5e5049a3a568eb9=54a7e71cf5aa84577059e156ae15472a; expires=Wed, 22-Oct-2014 18:39:01 GMT; path=/; domain=.keegansmith.com
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: keegansmith.com
Referer: http://www.google.com/search?q=keegansmith.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: keegansmith.com
Referer: http://www.google.com/search?q=keegansmith.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.keegansmith.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Mon, 29 Sep 2014 15:05:40 GMT Location: http://keegansmith.com/ Server: Apache Content-Length: 231 Content-Type: text/html; charset=iso-8859-1 Expires: Mon, 29 Sep 2014 15:05:41 GMT | clean |
http://keegansmith.com/ | 200 OK Content-Length: 22410 Content-Type: text/html | clean |
http://keegansmith.com/sites/default/files/js/js_46e45fc8837344a60f7f4ad9ea2e74a3.js | 200 OK Content-Length: 122558 Content-Type: application/javascript | clean |
http://www.keegansmith.com/music | HTTP/1.1 301 Moved Permanently Cache-Control: max-age=1 Connection: close Date: Mon, 29 Sep 2014 15:05:43 GMT Location: http://keegansmith.com/music Server: Apache Content-Length: 236 Content-Type: text/html; charset=iso-8859-1 Expires: Mon, 29 Sep 2014 15:05:44 GMT | clean |
http://keegansmith.com/music | 200 OK Content-Length: 30172 Content-Type: text/html | clean |
http://keegansmith.com/merchandise | 200 OK Content-Length: 20845 Content-Type: text/html | clean |
http://keegansmith.com/news | 200 OK Content-Length: 101051 Content-Type: text/html | clean |
http://keegansmith.com/sites/default/files/js/js_82d660d82541df8922bf7009f4d74182.js | 200 OK Content-Length: 157090 Content-Type: application/javascript | clean |
http://keegansmith.com/blog | 200 OK Content-Length: 47814 Content-Type: text/html | clean |
http://keegansmith.com/schedule | 200 OK Content-Length: 5511 Content-Type: text/html | clean |
http://keegansmith.com/photos | 200 OK Content-Length: 15335 Content-Type: text/html | clean |
http://keegansmith.com/videos | 200 OK Content-Length: 13259 Content-Type: text/html | clean |
http://koin.img.entriq.net/dayportcore/dpm/DayPortPlayers.js | 500 Can't connect to koin.img.entriq.net:80 (Bad hostname) Content-Length: 170 Content-Type: text/plain | clean |
http://koin.img.entriq.net/test404page.js | 500 Can't connect to koin.img.entriq.net:80 (Bad hostname) Content-Length: 170 Content-Type: text/plain | clean |
http://keegansmith.com/booking | 200 OK Content-Length: 15511 Content-Type: text/html | clean |
http://keegansmith.com/sites/default/files/js/js_eb927fcf764998047ec2123900f205d8.js | 200 OK Content-Length: 123880 Content-Type: application/javascript | clean |
http://keegansmith.com/downloadpass | 200 OK Content-Length: 13649 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=keegansmith.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://keegansmith.com/
Result: keegansmith.com is not infected or malware details are not published yet.
Result: keegansmith.com is not infected or malware details are not published yet.