Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: um-alkhair.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 14:51:29 GMT
Accept-Ranges: bytes
ETag: "1a40e58-55-499be341d1600"
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 85
Content-Type: text/html
Last-Modified: Thu, 13 Jan 2011 18:08:24 GMT
...85 bytes of data.
GET / HTTP/1.1
Host: um-alkhair.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 14:51:29 GMT
Accept-Ranges: bytes
ETag: "1a40e58-55-499be341d1600"
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Length: 85
Content-Type: text/html
Last-Modified: Thu, 13 Jan 2011 18:08:24 GMT
...85 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: um-alkhair.com
Referer: http://www.google.com/search?q=um-alkhair.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: um-alkhair.com
Referer: http://www.google.com/search?q=um-alkhair.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://um-alkhair.com/ | HTTP/1.1 200 OK Connection: close Date: Sat, 04 Oct 2014 14:51:29 GMT Accept-Ranges: bytes ETag: "1a40e58-55-499be341d1600" Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 85 Content-Type: text/html Last-Modified: Thu, 13 Jan 2011 18:08:24 GMT | clean |
http://www.um-alkhair.com/alkhair | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 04 Oct 2014 14:51:30 GMT Location: http://www.um-alkhair.com/alkhair/ Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 242 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.um-alkhair.com/alkhair/ | 200 OK Content-Length: 15514 Content-Type: text/html | clean |
http://www.um-alkhair.com/alkhair/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://um-alkhair.com/alkhair/templates/alkhair/js/moomenu.js | 200 OK Content-Length: 4902 Content-Type: application/javascript | clean |
http://um-alkhair.com/alkhair/index.php?option=com_content&view=section&layout=blog&id=4&Itemid=54 | 200 OK Content-Length: 10629 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://um-alkhair.com/alkhair/ | 200 OK Content-Length: 15490 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?option=com_content&view=category&layout=blog&id=35&Itemid=56 | 200 OK Content-Length: 10015 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?option=com_contact&view=contact&id=1&Itemid=55 | 200 OK Content-Length: 8253 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/media/system/js/validate.js | 200 OK Content-Length: 4246 Content-Type: application/javascript | clean |
http://um-alkhair.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?view=article&catid=35%3Amisson&id=48%3Amission&tmpl=component&print=1&layout=default&page=&option=com_content&Itemid=56 | 200 OK Content-Length: 5431 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?option=com_mailto&tmpl=component&link=aHR0cDovL3VtLWFsa2hhaXIuY29tL2Fsa2hhaXIvaW5kZXgucGhwP29wdGlvbj1jb21fY29udGVudCZ2aWV3PWFydGljbGUmaWQ9NDg6bWlzc2lvbiZjYXRpZD0zNTptaXNzb24mSXRlbWlkPTU2 | 200 OK Content-Length: 2701 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?view=article&catid=34:about-us&id=46:about-us&tmpl=component&print=1&layout=default&page= | 200 OK Content-Length: 6039 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?option=com_mailto&tmpl=component&link=aHR0cDovL3VtLWFsa2hhaXIuY29tL2Fsa2hhaXIvaW5kZXgucGhwP29wdGlvbj1jb21fY29udGVudCZ2aWV3PWFydGljbGUmaWQ9NDY6YWJvdXQtdXMmY2F0aWQ9MzQ6YWJvdXQtdXMmSXRlbWlkPTU0 | 200 OK Content-Length: 2705 Content-Type: text/html | clean |
http://um-alkhair.com/alkhair/index.php?view=article&catid=35:misson&id=48:mission&tmpl=component&print=1&layout=default&page= | 200 OK Content-Length: 5431 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=um-alkhair.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://um-alkhair.com/
Result: um-alkhair.com is not infected or malware details are not published yet.
Result: um-alkhair.com is not infected or malware details are not published yet.