Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kik-tv.at
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 27 Jul 2015 12:02:20 GMT
Server: Apache/2.4.10
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: fe_typo_user=a25b11be800510ed785383977b4aa2ab; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: kik-tv.at
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 27 Jul 2015 12:02:20 GMT
Server: Apache/2.4.10
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: fe_typo_user=a25b11be800510ed785383977b4aa2ab; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: kik-tv.at
Referer: http://www.google.com/search?q=kik-tv.at
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kik-tv.at
Referer: http://www.google.com/search?q=kik-tv.at
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://kik-tv.at/ | 200 OK Content-Length: 20767 Content-Type: text/html | clean |
http://kik-tv.at/typo3temp/javascript_a1cb3a5978.js | 200 OK Content-Length: 951 Content-Type: application/javascript | clean |
http://kik-tv.at/typo3conf/ext/cb_indexedsearch_autocomplete/res/cb_indexedsearch_autocomplete.js | 200 OK Content-Length: 28072 Content-Type: application/javascript | clean |
http://kik-tv.at/index.php?id=16 | 200 OK Content-Length: 21294 Content-Type: text/html | clean |
http://kik-tv.at/index.php?id=home | 200 OK Content-Length: 20384 Content-Type: text/html | clean |
http://kik-tv.at/index.php?id=anfahrt | 200 OK Content-Length: 21486 Content-Type: text/html | clean |
http://maps.googleapis.com/maps/api/js?sensor=false&language=de | 200 OK Content-Length: 4064 Content-Type: text/javascript | clean |
http://google-maps-utility-library-v3.googlecode.com/svn/tags/markermanager/1.0/src/markermanager.js | 200 OK Content-Length: 29278 Content-Type: text/javascript | clean |
http://google-maps-utility-library-v3.googlecode.com/svn/trunk/infobubble/src/infobubble.js | 200 OK Content-Length: 44434 Content-Type: text/javascript | clean |
http://jawj.github.com/OverlappingMarkerSpiderfier/bin/oms.min.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 27 Jul 2015 12:02:23 GMT Via: 1.1 varnish Accept-Ranges: bytes Age: 1991 Location: http://jawj.github.io/OverlappingMarkerSpiderfier/bin/oms.min.js Server: GitHub.com Vary: Accept-Encoding Content-Length: 178 Content-Type: text/html X-Cache: HIT X-Cache-Hits: 1 X-Served-By: cache-fra1220-FRA X-Timer: S1437998543.000903,VS0,VE0 | clean |
http://jawj.github.io/overlappingmarkerspiderfier/bin/oms.min.js | 404 Not Found Content-Length: 9340 Content-Type: text/html | clean |
http://jawj.github.io/ | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://jawj.github.io/test404page.js | 404 Not Found Content-Length: 9340 Content-Type: text/html | clean |
http://jawj.github.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Mon, 27 Jul 2015 12:02:24 GMT Via: 1.1 varnish Accept-Ranges: bytes Age: 0 Location: http://jawj.github.io/ Server: GitHub.com Vary: Accept-Encoding Content-Length: 178 Content-Type: text/html X-Cache: MISS X-Cache-Hits: 0 X-Served-By: cache-fra1221-FRA X-Timer: S1437998544.179511,VS0,VE87 | clean |
http://kik-tv.at/typo3conf/ext/wec_map/res/wecmap.js | 200 OK Content-Length: 24838 Content-Type: application/javascript | clean |
http://kik-tv.at/typo3conf/ext/wec_map/res/copyrights.js | 200 OK Content-Length: 4316 Content-Type: application/javascript | clean |
http://kik-tv.at/index.php?id=sitemap | 200 OK Content-Length: 53811 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kik-tv.at
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kik-tv.at/
Result: kik-tv.at is not infected or malware details are not published yet.
Result: kik-tv.at is not infected or malware details are not published yet.