Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: avia-dorst.de
Result:
GET / HTTP/1.1
Host: avia-dorst.de
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: avia-dorst.de
Referer: http://www.google.com/search?q=avia-dorst.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: avia-dorst.de
Referer: http://www.google.com/search?q=avia-dorst.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.avia-dorst.de/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 25 Dec 2014 15:03:08 GMT Location: http://www.avia-dorst.de/home/ Server: Apache/2.2.22 Content-Length: 0 Content-Type: text/html Set-Cookie: fe_typo_user=54e80d4a0d0851a42886aabd95c74faa; path=/ X-Powered-By: PHP/5.3.26 | clean |
http://www.avia-dorst.de/home/ | 200 OK Content-Length: 8203 Content-Type: text/html | clean |
http://code.jquery.com/jquery-1.7.2.min.js | 200 OK Content-Length: 94840 Content-Type: application/x-javascript | clean |
http://code.jquery.com/ui/1.8.24/jquery-ui.min.js | 200 OK Content-Length: 200719 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/sk_fancybox/fancybox/jquery.fancybox-1.3.4.pack.js?1378968359 | 200 OK Content-Length: 15624 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3temp/javascript_e9830f06fa.js?1378893561 | 200 OK Content-Length: 3039 Content-Type: application/x-javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js | 200 OK Content-Length: 92629 Content-Type: text/javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/t3s_content/Resources/Public/JavaScript/bootstrap.min.js?1378988634 | 200 OK Content-Length: 7230 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/powermail/Resources/Public/Js/jquery.ui.datepicker.min.js?1381735835 | 200 OK Content-Length: 37178 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/powermail/Resources/Public/Js/jquery.validationEngine-en.js?1381735835 | 200 OK Content-Length: 11231 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/powermail/Resources/Public/Js/jquery.validationEngine.js?1381735835 | 200 OK Content-Length: 62122 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/powermail/Resources/Public/Js/tabs.js?1381735835 | 200 OK Content-Length: 2086 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/typo3conf/ext/powermail/Resources/Public/Js/form.js?1381735835 | 200 OK Content-Length: 3653 Content-Type: application/x-javascript | clean |
http://www.avia-dorst.de/waerme/ | 200 OK Content-Length: 11031 Content-Type: text/html | clean |
http://www.avia-dorst.de/waerme/typo3conf/ext/sk_fancybox/fancybox/jquery.fancybox-1.3.4.pack.js?1378968359 | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://www.avia-dorst.de/test404page.js | 404 Not Found Content-Length: 1424 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=avia-dorst.de
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://avia-dorst.de/
Result: avia-dorst.de is not infected or malware details are not published yet.
Result: avia-dorst.de is not infected or malware details are not published yet.