Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: melgarlaw.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 24 Jul 2014 09:07:17 GMT
Location: http://www.melgarlaw.com/
Server: Apache
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.melgarlaw.com/xmlrpc.php
...0 bytes of data.
GET / HTTP/1.1
Host: melgarlaw.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 24 Jul 2014 09:07:17 GMT
Location: http://www.melgarlaw.com/
Server: Apache
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.melgarlaw.com/xmlrpc.php
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: melgarlaw.com
Referer: http://www.google.com/search?q=melgarlaw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: melgarlaw.com
Referer: http://www.google.com/search?q=melgarlaw.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://melgarlaw.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 24 Jul 2014 09:07:17 GMT Location: http://www.melgarlaw.com/ Server: Apache Vary: User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://www.melgarlaw.com/xmlrpc.php | clean |
http://www.melgarlaw.com/ | 200 OK Content-Length: 20837 Content-Type: text/html | clean |
http://www.melgarlaw.com/wp-includes/js/jquery/jquery.js?ver=1.11.0 | 200 OK Content-Length: 96402 Content-Type: application/javascript | clean |
http://www.melgarlaw.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://stratus.sc/stratus.js?ver=3.9.1 | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 24 Jul 2014 09:07:21 GMT Location: http://www.stratus.sc?ver=3.9.1 Server: nginx/1.2.6 Content-Length: 160 Content-Type: text/html | clean |
http://www.stratus.sc?ver=3.9.1/ | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://www.stratus.sc?ver=3.9.1//platform.twitter.com/widgets.js/ | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://www.stratus.sc?ver=3.9.1/js/jquery.js | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://www.stratus.sc?ver=3.9.1/stratus.js | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
https://gist.github.com/1947191.js?file=stratus-installation | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Thu, 24 Jul 2014 09:07:23 GMT Location: https://gist.github.com/leemartin/1947191.js?file=stratus-installation Server: GitHub.com Vary: Accept-Encoding Content-Type: text/html; charset=utf-8 Status: 302 Found Strict-Transport-Security: max-age=31536000 X-Content-Security-Policy: default-src *; script-src 'self' render.github.com render.githubusercontent.com https://gist-assets.github.com *.google-analytics.com https://collector-cdn.github.com; frame-src 'self' render.github.com render.githubusercontent.com https://gist-assets.github.com *.google-analytics.com https://collector-cdn.github.com; style-src 'self' 'unsafe-inline' https://gist-assets.github.com; object-src https://gist-assets.github.com; report-uri /_/csp_reports X-Content-Type-Options: nosniff X-Frame-Options: deny X-GitHub-Request-Id: 4E9E0BE2:7B2E:408E67:53D0CCCB X-Request-Id: dae0cfa0-6ef6-4f05-acec-a6ab4cad96ca X-Runtime: 0.007818 X-Served-By: 2edabd6bdfd7bd7312378c4cd846997f X-XSS-Protection: 1; mode=block | clean |
https://gist.github.com/leemartin/1947191.js?file=stratus-installation | 200 OK Content-Length: 2559 Content-Type: text/javascript | clean |
https://gist.github.com/1947138.js?file=stratus-customization | HTTP/1.1 302 Found Cache-Control: no-cache Connection: close Date: Thu, 24 Jul 2014 09:07:25 GMT Location: https://gist.github.com/leemartin/1947138.js?file=stratus-customization Server: GitHub.com Vary: Accept-Encoding Content-Type: text/html; charset=utf-8 Status: 302 Found Strict-Transport-Security: max-age=31536000 X-Content-Security-Policy: default-src *; script-src 'self' render.github.com render.githubusercontent.com https://gist-assets.github.com *.google-analytics.com https://collector-cdn.github.com; frame-src 'self' render.github.com render.githubusercontent.com https://gist-assets.github.com *.google-analytics.com https://collector-cdn.github.com; style-src 'self' 'unsafe-inline' https://gist-assets.github.com; object-src https://gist-assets.github.com; report-uri /_/csp_reports X-Content-Type-Options: nosniff X-Frame-Options: deny X-GitHub-Request-Id: 4E9E0BE2:7DF7:C7CCBE:53D0CCCD X-Request-Id: 1d9e8559-42d6-4eb4-bd12-615be4fadbe0 X-Runtime: 0.006528 X-Served-By: b623e174d90eee91279334e37dfb12ce X-XSS-Protection: 1; mode=block | clean |
https://gist.github.com/leemartin/1947138.js?file=stratus-customization | 200 OK Content-Length: 3197 Content-Type: text/javascript | clean |
http://www.stratus.sc?ver=3.9.1/guides | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://www.stratus.sc?ver=3.9.1/test404page.js | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://www.stratus.sc?ver=3.9.1/js/ | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://stratus.sc/js/jquery.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 24 Jul 2014 09:07:26 GMT Location: http://www.stratus.sc Server: nginx/1.2.6 Content-Length: 160 Content-Type: text/html | clean |
http://www.stratus.sc/ | 200 OK Content-Length: 9106 Content-Type: text/html | clean |
http://www.stratus.sc//platform.twitter.com/widgets.js/ | 404 Not Found Content-Length: 45 Content-Type: text/plain | clean |
http://stratus.sc/stratus.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 24 Jul 2014 09:07:27 GMT Location: http://www.stratus.sc Server: nginx/1.2.6 Content-Length: 160 Content-Type: text/html | clean |
http://www.melgarlaw.com/wp-content/plugins/media-element-html5-video-and-audio-player/mediaelement/mediaelement-and-player.min.js?ver=2.1.3 | 200 OK Content-Length: 64806 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=melgarlaw.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://melgarlaw.com/
Result: melgarlaw.com is not infected or malware details are not published yet.
Result: melgarlaw.com is not infected or malware details are not published yet.