Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gicgrupoimpresor.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 17 Dec 2015 04:11:31 GMT
Server: Apache/2.4.16 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-7
X-Pingback: http://gicgrupoimpresor.com/xmlrpc.php
GET / HTTP/1.1
Host: gicgrupoimpresor.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 17 Dec 2015 04:11:31 GMT
Server: Apache/2.4.16 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-7
X-Pingback: http://gicgrupoimpresor.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: gicgrupoimpresor.com
Referer: http://www.google.com/search?q=gicgrupoimpresor.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gicgrupoimpresor.com
Referer: http://www.google.com/search?q=gicgrupoimpresor.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://gicgrupoimpresor.com/ | 200 OK Content-Length: 32885 Content-Type: text/html | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/js/jquery.min.js | 200 OK Content-Length: 78600 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/js/cova.js | 200 OK Content-Length: 183 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1279 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 15624 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 308 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-includes/js/jquery/jquery.js?ver=1.6.1 | 200 OK Content-Length: 91363 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/js/jquery.cycle.all.min.js?ver=1.0 | 200 OK Content-Length: 27880 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/epanel/shortcodes/js/et_shortcodes_frontend.js?ver=2.0 | 200 OK Content-Length: 12551 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/plugins/lightbox-gallery/js/jquery.dimensions.js?ver=3.2.1 | 200 OK Content-Length: 2514 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/plugins/lightbox-gallery/js/jquery.bgiframe.js?ver=3.2.1 | 200 OK Content-Length: 5044 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/plugins/lightbox-gallery/js/jquery.lightbox.js?ver=3.2.1 | 200 OK Content-Length: 21172 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/plugins/lightbox-gallery/js/jquery.tooltip.js?ver=3.2.1 | 200 OK Content-Length: 8591 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/plugins/lightbox-gallery/lightbox-gallery.js?ver=3.2.1 | 200 OK Content-Length: 1176 Content-Type: application/javascript | clean |
http://gicgrupoimpresor.com/wp-content/themes/Feather/js/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gicgrupoimpresor.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gicgrupoimpresor.com/
Result: gicgrupoimpresor.com is not infected or malware details are not published yet.
Result: gicgrupoimpresor.com is not infected or malware details are not published yet.