Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tom-lehner-band.de
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 21 Aug 2014 12:52:22 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix)
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 21 Aug 2014 12:52:25 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: e48c2e93e3c150aa05b8b172883f5647=qiqmkqj3ruvsq1dk90op6kogh0; path=/; HttpOnly
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: tom-lehner-band.de
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 21 Aug 2014 12:52:22 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix)
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Thu, 21 Aug 2014 12:52:25 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: e48c2e93e3c150aa05b8b172883f5647=qiqmkqj3ruvsq1dk90op6kogh0; path=/; HttpOnly
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: tom-lehner-band.de
Referer: http://www.google.com/search?q=tom-lehner-band.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tom-lehner-band.de
Referer: http://www.google.com/search?q=tom-lehner-band.de
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://tom-lehner-band.de/ | 200 OK Content-Length: 26489 Content-Type: text/html | clean |
http://tom-lehner-band.de/media/system/js/mootools-core.js | 200 OK Content-Length: 83893 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/media/jui/js/jquery.min.js | 200 OK Content-Length: 95786 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/media/jui/js/jquery-noconflict.js | 200 OK Content-Length: 21 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/media/jui/js/jquery-migrate.min.js | 200 OK Content-Length: 7199 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/media/system/js/core.js | 200 OK Content-Length: 4104 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/media/system/js/mootools-more.js | 200 OK Content-Length: 236825 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/media/jui/js/bootstrap.min.js | 200 OK Content-Length: 29156 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/modules/mod_artsexylightbox/artsexylightbox/js/jquery.js | 200 OK Content-Length: 57254 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/modules/mod_artsexylightbox/artsexylightbox/js/jquery.easing.1.3.js | 200 OK Content-Length: 6698 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/modules/mod_artsexylightbox/artsexylightbox/js/script.v2.2.jquery.min.js | 200 OK Content-Length: 9845 Content-Type: application/javascript | clean |
http://tom-lehner-band.de/modules/mod_artsexylightbox/artsexylightbox/js/jquery.nc.js | 200 OK Content-Length: 43 Content-Type: application/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js | 200 OK Content-Length: 93637 Content-Type: text/javascript | clean |
http://api.html5media.info/1.1.5/html5media.min.js | 200 OK Content-Length: 21199 Content-Type: application/javascript | clean |
http://tom-lehner-band.de//plugins/system/videobox/videobox.js/ | 404 Not Found Content-Length: 234 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tom-lehner-band.de
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tom-lehner-band.de/
Result: tom-lehner-band.de is not infected or malware details are not published yet.
Result: tom-lehner-band.de is not infected or malware details are not published yet.