Malicious/Suspicious Redirects
| Request | Server response | Status |
URL: http://www.keikael.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.keikael.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 28 Aug 2014 07:03:19 GMT Location: http://www.stlp.4pu.com/ Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.29 | malicious |
Scanned pages/files
| Request | Server response | Status |
http://www.keikael.com/ | 200 OK Content-Length: 15210 Content-Type: text/html | clean |
http://www.keikael.com/modules/rokslideshow/slideshow.js | 200 OK Content-Length: 14230 Content-Type: application/javascript | clean |
http://www.keikael.com/index.php?option=com_frontpage&Itemid=1 | 200 OK Content-Length: 15210 Content-Type: text/html | clean |
http://www.keikael.com/index.php?option=com_content&task=view&id=2&Itemid=2 | 200 OK Content-Length: 16536 Content-Type: text/html | clean |
http://www.keikael.com/index.php | 200 OK Content-Length: 15210 Content-Type: text/html | clean |
http://www.keikael.com/index.php?option=com_content&task=view&id=3&Itemid=3 | 200 OK Content-Length: 114178 Content-Type: text/html | clean |
http://www.keikael.com/index2.php?option=com_content&do_pdf=1&id=3 | 200 OK Content-Length: 38083 Content-Type: application/pdf | clean |
http://www.keikael.com/test404page.js | 404 Not Found Content-Length: 15 Content-Type: text/html | clean |
http://www.keikael.com/index2.php?option=com_content&task=view&id=3&pop=1&page=0&Itemid=3 | 200 OK Content-Length: 102304 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- document.write('<div align="center" style="margin-top: 30px; margin-bottom: 30px;">'); document.write('<a href="#" onclick="javascript:window.close();"><span class="small">Sulge aken</span></a>'); document.write('</div>'); Antivirus reports:
| ||
http://www.keikael.com/index2.php?option=com_content&task=emailform&id=3&itemid=3 | 200 OK Content-Length: 2414 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function submitbutton() { var form = document.frontendForm; if (form.email.value == "" || form.youremail.value == "") { alert( 'Te peate sisestama kehtivad e-posti aadressid.' ); return false; } return true; } Antivirus reports:
| ||
http://www.keikael.com/index.php?option=com_content&task=blogcategory&id=3&Itemid=4 | 200 OK Content-Length: 42871 Content-Type: text/html | clean |
http://www.keikael.com/mambots/content/multithumb/slimbox/js/slimbox.js | 200 OK Content-Length: 7175 Content-Type: application/javascript | clean |
http://www.keikael.com/index2.php?option=com_content&do_pdf=1&id=175 | 200 OK Content-Length: 1343 Content-Type: application/pdf | clean |
http://www.keikael.com/index2.php?option=com_content&task=view&id=175&pop=1&page=0&Itemid=4 | 200 OK Content-Length: 26611 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- document.write('<div align="center" style="margin-top: 30px; margin-bottom: 30px;">'); document.write('<a href="#" onclick="javascript:window.close();"><span class="small">Sulge aken</span></a>'); document.write('</div>'); Antivirus reports:
| ||
http://www.keikael.com/images/stories/19-20.07.2014_sadamakrts/img_6585_small.jpg | 200 OK Content-Length: 51098 Content-Type: image/jpeg | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=keikael.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://keikael.com/
Result: keikael.com is not infected or malware details are not published yet.
Result: keikael.com is not infected or malware details are not published yet.