Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kifissiameteo.gr
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, public
Connection: close
Date: Thu, 31 Dec 2015 04:01:47 GMT
Accept-Ranges: bytes
ETag: "565b8ca1-1687c"
Server: nginx
Vary: Accept-Encoding
Content-Length: 92284
Content-Type: text/html
Expires: Thu, 31 Dec 2015 04:01:47 GMT
Last-Modified: Sun, 29 Nov 2015 23:39:13 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
...92284 bytes of data.
GET / HTTP/1.1
Host: kifissiameteo.gr
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, public
Connection: close
Date: Thu, 31 Dec 2015 04:01:47 GMT
Accept-Ranges: bytes
ETag: "565b8ca1-1687c"
Server: nginx
Vary: Accept-Encoding
Content-Length: 92284
Content-Type: text/html
Expires: Thu, 31 Dec 2015 04:01:47 GMT
Last-Modified: Sun, 29 Nov 2015 23:39:13 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
...92284 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kifissiameteo.gr
Referer: http://www.google.com/search?q=kifissiameteo.gr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kifissiameteo.gr
Referer: http://www.google.com/search?q=kifissiameteo.gr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://kifissiameteo.gr/ | 200 OK Content-Length: 92284 Content-Type: text/html | clean |
http://kifissiameteo.gr/DateDiff.js | 200 OK Content-Length: 4854 Content-Type: text/javascript | clean |
http://kifissiameteo.gr/TimeModule.js | 200 OK Content-Length: 9676 Content-Type: text/javascript | clean |
http://kifissiameteo.gr/MoonPhase.js | 200 OK Content-Length: 5591 Content-Type: text/javascript | clean |
http://kifissiameteo.gr/RiseSet.js | 200 OK Content-Length: 13901 Content-Type: text/javascript | clean |
http://kifissiameteo.gr/snow.js | 200 OK Content-Length: 3152 Content-Type: text/javascript | clean |
http://kifissiameteo.gr/MenuKifissiameteo-files/sc7lwv5.js | 200 OK Content-Length: 18898 Content-Type: text/javascript | clean |
http://codice.shinystat.com/cgi-bin/getcod.cgi?USER=kifissiacam | 200 OK Content-Length: 8169 Content-Type: application/x-javascript | clean |
http://kifissiameteo.gr/index.html | 200 OK Content-Length: 92284 Content-Type: text/html | clean |
http://kifissiameteo.gr/CameraImg_LRG.html | 200 OK Content-Length: 41303 Content-Type: text/html | clean |
http://kifissiameteo.gr/MenuSlideshow-files/sc45ti6.js | 404 Not Found Content-Length: 1026 Content-Type: text/html | clean |
http://kifissiameteo.gr/test404page.js | 404 Not Found Content-Length: 1026 Content-Type: text/html | clean |
http://kifissiameteo.gr/Around24Hours.html/Around0000.html | 200 OK Content-Length: 47980 Content-Type: text/html | clean |
http://kifissiameteo.gr/Around24Hours.html/../TimeModule.js | 200 OK Content-Length: 9676 Content-Type: text/javascript | clean |
http://kifissiameteo.gr/Around24Hours.html/../JulianDate.js | 404 Not Found Content-Length: 1026 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kifissiameteo.gr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kifissiameteo.gr/
Result: kifissiameteo.gr is not infected or malware details are not published yet.
Result: kifissiameteo.gr is not infected or malware details are not published yet.