Scanned pages/files
Request | Server response | Status |
http://keen-way.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Apr 2015 02:29:19 GMT Via: 1.0 localhost (squid/3.1.19) Location: http://www.keen-way.com/ Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1 Content-Length: 0 Content-Type: text/html; charset=UTF-7 X-Cache: MISS from localhost X-Cache-Lookup: MISS from localhost:80 X-Pingback: http://www.keen-way.com/xmlrpc.php X-Powered-By: PHP/5.3.29 | clean |
http://www.keen-way.com/ | 200 OK Content-Length: 63463 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: nd-color: white+ADsAIgA+ACY-nbsp+ADsAPA-title+AD4-Hacked By Laakel En Person+ADw-/title+AD4APA-link ...[215 bytes skipped]... /><!--[if (gte IE 9)|!(IE)]><!--><html dir="ltr" lang="zh-CN"><!--<![endif]--> <head> <!-- Basic Page Needs ================================================== --> <meta charset ="UTF-7" /> <title>+ADw-/title+AD4 +ADw-html+AD4APA-head+AD4APA-/head+AD4APA-body style+AD0AIg-background-color: white+ADsAIgA+ACY-nbsp+ADsAPA-title+AD4-Hacked By Laakel En Person+ADw-/title+AD4APA-link href+AD0AIg-http://fonts.googleapis.com/css?family+AD0-Share+ACs-Tech+ACs-Mono+ACI rel+AD0AIg-stylesheet+ACI type+AD0AIg-text/css+ACIAPgA8-link href+AD0AIg-http://fonts.googleapis.com/css?family+AD0-Geo+ACI rel+AD0AIg-std ylesheet+ACI type+AD0AIg-text/css+ACIAPgA8ACE— twitter fin –+AD4APA-center+AD4 +ADw-img src+AD0AIg-http://www.akhbarelyoum.dz/ar/images/aiHa+AF8-alchbab+AF8-hafdhoua+AF8-Ala+AF8-amana+AF8-a ...[68986 bytes skipped]... | ||
http://www.keen-way.com/wp-includes/js/comment-reply.js?ver=3.4.2 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=3.4.2 | 200 OK Content-Length: 13905 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/revslider/rs-plugin/js/jquery.themepunch.revolution.js?ver=3.4.2 | 200 OK Content-Length: 85125 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/flexslider.js?ver=3.4.2 | 200 OK Content-Length: 40641 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/twitter.js?ver=3.4.2 | 200 OK Content-Length: 1684 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/tooltip.js?ver=3.4.2 | 200 OK Content-Length: 7955 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/effects.js?ver=3.4.2 | 200 OK Content-Length: 24319 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/fancybox.js?ver=3.4.2 | 200 OK Content-Length: 50185 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/carousel.js?ver=3.4.2 | 200 OK Content-Length: 11449 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/jquery.isotope.min.js?ver=3.4.2 | 200 OK Content-Length: 15876 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/themes/Centum/js/custom.js?ver=3.4.2 | 200 OK Content-Length: 9952 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.25.0-2013.01.18 | 200 OK Content-Length: 15158 Content-Type: application/javascript | clean |
http://www.keen-way.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.3.3 | 200 OK Content-Length: 6933 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: keen-way.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 05 Apr 2015 02:29:19 GMT
Via: 1.0 localhost (squid/3.1.19)
Location: http://www.keen-way.com/
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1
Content-Length: 0
Content-Type: text/html; charset=UTF-7
X-Cache: MISS from localhost
X-Cache-Lookup: MISS from localhost:80
X-Pingback: http://www.keen-way.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
...0 bytes of data.
GET / HTTP/1.1
Host: keen-way.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sun, 05 Apr 2015 02:29:19 GMT
Via: 1.0 localhost (squid/3.1.19)
Location: http://www.keen-way.com/
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_perl/2.0.8 Perl/v5.10.1
Content-Length: 0
Content-Type: text/html; charset=UTF-7
X-Cache: MISS from localhost
X-Cache-Lookup: MISS from localhost:80
X-Pingback: http://www.keen-way.com/xmlrpc.php
X-Powered-By: PHP/5.3.29
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: keen-way.com
Referer: http://www.google.com/search?q=keen-way.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: keen-way.com
Referer: http://www.google.com/search?q=keen-way.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=keen-way.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://keen-way.com/
Result: keen-way.com is not infected or malware details are not published yet.
Result: keen-way.com is not infected or malware details are not published yet.