Scanned pages/files
Request | Server response | Status |
http://mts-mexico.com/ | 200 OK Content-Length: 33538 Content-Type: text/html | clean |
http://mts-mexico.com/sites/default/files/js/js_uRIeOs7H4VLjxzHHyiUx9MgFGPxMb2wvu-5lqJ9-r40.js | 200 OK Content-Length: 244196 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js_9DoHC2IUIxhgNPwG9YzfSGLTnh4yHxsZcEWtHyZomCY.js | 200 OK Content-Length: 138419 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js_KccJwpVGeJYBf_02NTGSe1l4Pb1AaUVSPyER3pddLbA.js | 200 OK Content-Length: 110853 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js_GxWEjciXzE2nBgTp0w0BvBBPWR7CE39HQ1EM9eXW0c0.js | 200 OK Content-Length: 10198 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js_FO1sQ82o9PTbP5qfmizA-3Jza5QuYMI8nNrhVy4zUFA.js | 200 OK Content-Length: 22027 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/all/modules/lightbox2/js/lightbox.js?1441109657 | 200 OK Content-Length: 45178 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js__trpet5wxXEQVjd9fvbGRk-WF3YoSygPd1tlNfzZc2U.js | 200 OK Content-Length: 69629 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js_3KGuVNlLemFI52gEGlfTBKaTbwite1wVcJshF_SQq9Y.js | 200 OK Content-Length: 3081 Content-Type: application/javascript | clean |
http://mts-group.info/sites/all/themes/mts/camera/scripts/jquery.min.js | 200 OK Content-Length: 93888 Content-Type: application/javascript | clean |
http://mts-group.info/sites/all/themes/mts/camera/scripts/jquery.mobile.customized.min.js | 200 OK Content-Length: 17519 Content-Type: application/javascript | clean |
http://mts-group.info/sites/all/themes/mts/camera/scripts/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://mts-group.info/sites/all/themes/mts/camera/scripts/camera.min.js | 200 OK Content-Length: 39330 Content-Type: application/javascript | clean |
http://mts-mexico.com/sites/default/files/js/js_19llopOOYm7PRrREOWAS7IlQgTE4XJ6wpcg_Rg6nrPo.js | 200 OK Content-Length: 6509 Content-Type: application/javascript | clean |
http://mts-mexico.com/en | 200 OK Content-Length: 1154 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Lou Sh <html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <title>Hacked By Lou Sh</title> <body bgcolor="black"> <embed src="https://www.youtube.com/embed/qD8OnPC1fLI?rel=0&autoplay=1&loop=1&playlist=qD8OnPC1fLI" height=1 width=1></embed></body> <h1><Center><font color="#BDBDBD">Hacked By Lou Sh<p> <img src="http://im81.gulfup.com/eBDQ3M.png" height="320"><br><br><font color="red" size="4"><center> ...[857 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mts-mexico.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 08 Sep 2015 08:16:18 GMT
Accept-Ranges: bytes
ETag: "8302-51eae7d3e8b5f"
Server: Apache
Vary: Accept-Encoding
Content-Length: 33538
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
X-Cached-By: Boost
...33538 bytes of data.
GET / HTTP/1.1
Host: mts-mexico.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 08 Sep 2015 08:16:18 GMT
Accept-Ranges: bytes
ETag: "8302-51eae7d3e8b5f"
Server: Apache
Vary: Accept-Encoding
Content-Length: 33538
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
X-Cached-By: Boost
...33538 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mts-mexico.com
Referer: http://www.google.com/search?q=mts-mexico.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mts-mexico.com
Referer: http://www.google.com/search?q=mts-mexico.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mts-mexico.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mts-mexico.com/
Result: mts-mexico.com is not infected or malware details are not published yet.
Result: mts-mexico.com is not infected or malware details are not published yet.