New scan:

Malware Scanner report for kwa3b.com

Malicious/Suspicious/Total urls checked
0/1/12
1 page has suspicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/1
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://kwa3b.com/
200 OK
Content-Length: 74161
Content-Type: text/html
suspicious
Page code contains blacklisted domain: imagecherry.com

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" dir="rtl" lang="Ar">
<head>
<!-- no cache headers -->
<meta http-equiv="Pragma" content="no-cache" />
<meta http-equiv="Expires" content="-1" />
<meta http-equiv="Cache-Control" content="no-cache" />
<!-- e
...[4714 bytes skipped]...

http://kwa3b.com/clientscript/yui/yahoo-dom-event/yahoo-dom-event.js?v=387
200 OK
Content-Length: 36628
Content-Type: application/javascript
clean
http://kwa3b.com/clientscript/yui/connection/connection-min.js?v=387
200 OK
Content-Length: 11604
Content-Type: application/javascript
clean
http://kwa3b.com/clientscript/vbulletin_global.js?v=387
200 OK
Content-Length: 26028
Content-Type: application/javascript
clean
http://kwa3b.com/clientscript/vbulletin_menu.js?v=387
200 OK
Content-Length: 9441
Content-Type: application/javascript
clean
http://kwa3b.com//cdn.directrev.com/js/gp.min.js?s=S0001098/
HTTP/1.1 404 Not Found
Connection: close
Date: Tue, 16 Sep 2014 02:00:38 GMT
Accept-Ranges: bytes
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Length: 1541
Content-Type: text/html
clean
http://www.3at3ot.com”/
500 Can't connect to www.3at3ot.xn--com-da9l2q:80 (Bad hostname)
Content-Length: 182
Content-Type: text/plain
clean
http://www.3at3ot.com”/test404page.js
500 Can't connect to www.3at3ot.xn--com-da9l2q:80 (Bad hostname)
Content-Length: 182
Content-Type: text/plain
clean
http://kwa3b.com/clientscript/vbulletin_md5.js?v=387
200 OK
Content-Length: 5464
Content-Type: application/javascript
clean
http://adspaces.ero-advertising.com/adspace/313172.js
200 OK
Content-Length: 1566
Content-Type: application/javascript
clean
http://adspaces.ero-advertising.com/adspace/313171.js
200 OK
Content-Length: 1833
Content-Type: application/javascript
clean
http://kwa3b.com/clientscript/vbulletin_read_marker.js?v=387
200 OK
Content-Length: 3440
Content-Type: application/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: kwa3b.com

Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Tue, 16 Sep 2014 02:00:36 GMT
Pragma: private
Server: Apache/2.2.24 (Unix) mod_ssl/2.2.24 OpenSSL/1.0.0-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=windows-1256
Set-Cookie: bblastvisit=1410832836; expires=Wed, 16-Sep-2015 02:00:36 GMT; path=/
Set-Cookie: bblastactivity=0; expires=Wed, 16-Sep-2015 02:00:36 GMT; path=/
X-Powered-By: PHP/5.3.23
X-UA-Compatible: IE=7
Second query (visit from search engine):
GET / HTTP/1.1
Host: kwa3b.com
Referer: http://www.google.com/search?q=kwa3b.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=kwa3b.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kwa3b.com/

Result: kwa3b.com is not infected or malware details are not published yet.