Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: excite.com.mx
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 01 Jul 2014 12:11:12 GMT
Server: nginx/1.6.0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://excite.com.mx/wp/xmlrpc.php
GET / HTTP/1.1
Host: excite.com.mx
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 01 Jul 2014 12:11:12 GMT
Server: nginx/1.6.0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://excite.com.mx/wp/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: excite.com.mx
Referer: http://www.google.com/search?q=excite.com.mx
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: excite.com.mx
Referer: http://www.google.com/search?q=excite.com.mx
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.excite.com.mx/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 01 Jul 2014 12:11:11 GMT Location: http://excite.com.mx/ Server: nginx/1.6.0 Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://excite.com.mx/wp/xmlrpc.php | clean |
http://excite.com.mx/ | 200 OK Content-Length: 56603 Content-Type: text/html | clean |
http://excite.com.mx//ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 01 Jul 2014 12:11:15 GMT Pragma: no-cache Location: http://excite.com.mx/ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js/ Server: nginx/1.6.0 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://excite.com.mx/wp/xmlrpc.php | clean |
http://excite.com.mx/ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js/ | 404 Not Found Content-Length: 35294 Content-Type: text/html | clean |
http://excite.com.mx/wp/wp-content/plugins/widgets-controller/widgets_controller.js?ver=3.5.2 | 200 OK Content-Length: 3465 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/media-grid/js/frontend_old_js.js?ver=2.31 | 200 OK Content-Length: 167269 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/LayerSlider/js/layerslider.kreaturamedia.jquery.js?ver=4.6.0 | 200 OK Content-Length: 48706 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/LayerSlider/js/jquery-easing-1.3.js?ver=1.3.0 | 200 OK Content-Length: 8152 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/LayerSlider/js/jquerytransit.js?ver=0.9.9 | 200 OK Content-Length: 6830 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/LayerSlider/js/layerslider.transitions.js?ver=4.6.0 | 200 OK Content-Length: 21024 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/all-in-one-schemaorg-rich-snippets/js/jquery.rating.min.js?ver=3.5.2 | 200 OK Content-Length: 29676 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/all-in-one-schemaorg-rich-snippets/js/retina.js?ver=3.5.2 | 200 OK Content-Length: 1330 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/custom-facebook-feed/js/cff-scripts.js?ver=3.5.2 | 200 OK Content-Length: 1412 Content-Type: application/javascript | clean |
http://excite.com.mx//ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 01 Jul 2014 12:11:25 GMT Pragma: no-cache Location: http://excite.com.mx/ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js/ Server: nginx/1.6.0 Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://excite.com.mx/wp/xmlrpc.php | clean |
http://excite.com.mx/ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js/ | 404 Not Found Content-Length: 35294 Content-Type: text/html | clean |
http://excite.com.mx/wp/wp-content/plugins/events-manager/includes/js/events-manager.js?ver=5.52 | 200 OK Content-Length: 45167 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/themes/Archtek/js/custom.modernizr.js | 200 OK Content-Length: 9288 Content-Type: application/javascript | clean |
http://excite.com.mx/wp/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.32.0-2013.04.03 | 200 OK Content-Length: 15479 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=excite.com.mx
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://excite.com.mx/
Result: excite.com.mx is not infected or malware details are not published yet.
Result: excite.com.mx is not infected or malware details are not published yet.