Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: herrajes-estilo.com.ar
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 11 Apr 2014 09:31:53 GMT
Pragma: no-cache
Server: Apache/2.4.7 (Unix) OpenSSL/0.9.8e-fips-rhel5
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 11 Apr 2014 09:31:55 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 3153f00a44206348ca236f05aa212638=88b016abfcd6445a12dac8da54066819; path=/
Set-Cookie: virtuemart=88b016abfcd6445a12dac8da54066819
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: herrajes-estilo.com.ar
Result:
HTTP/1.1 200 OK
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 11 Apr 2014 09:31:53 GMT
Pragma: no-cache
Server: Apache/2.4.7 (Unix) OpenSSL/0.9.8e-fips-rhel5
Content-Type: text/html; charset=utf-8
Expires: Mon, 1 Jan 2001 00:00:00 GMT
Last-Modified: Fri, 11 Apr 2014 09:31:55 GMT
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 3153f00a44206348ca236f05aa212638=88b016abfcd6445a12dac8da54066819; path=/
Set-Cookie: virtuemart=88b016abfcd6445a12dac8da54066819
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: herrajes-estilo.com.ar
Referer: http://www.google.com/search?q=herrajes-estilo.com.ar
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: herrajes-estilo.com.ar
Referer: http://www.google.com/search?q=herrajes-estilo.com.ar
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://herrajes-estilo.com.ar/ | 200 OK Content-Length: 27718 Content-Type: text/html | clean |
http://herrajes-estilo.com.ar/plugins/system/jceutilities/js/jquery-126.js | 200 OK Content-Length: 31033 Content-Type: application/javascript | clean |
http://herrajes-estilo.com.ar/plugins/system/jceutilities/js/jceutilities-214.js | 200 OK Content-Length: 19845 Content-Type: application/javascript | clean |
http://herrajes-estilo.com.ar/plugins/system/mediaobject/js/mediaobject-150.js | 200 OK Content-Length: 3721 Content-Type: application/javascript | clean |
http://herrajes-estilo.com.ar/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://herrajes-estilo.com.ar/templates/yoo_page/lib/js/template.js.php | 200 OK Content-Length: 42490 Content-Type: application/x-javascript | clean |
http://herrajes-estilo.com.ar/modules/mod_jsn_imageshow_pro/jsn_imageshow_pro/swfobject.js | 200 OK Content-Length: 6880 Content-Type: application/javascript | clean |
http://herrajes-estilo.com.ar/modules/mod_jsn_imageshow_pro/jsn_imageshow_pro/swfobject_addon.js | 200 OK Content-Length: 839 Content-Type: application/javascript | clean |
http://herrajes-estilo.com.ar//modules/mod_jaslideshow/ja_slideshow/ja.slideshow.js/ | 404 Not Found Content-Length: 362 Content-Type: text/html | clean |
http://herrajes-estilo.com.ar/test404page.js | 404 Not Found Content-Length: 323 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=herrajes-estilo.com.ar
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://herrajes-estilo.com.ar/
Result: herrajes-estilo.com.ar is not infected or malware details are not published yet.
Result: herrajes-estilo.com.ar is not infected or malware details are not published yet.