Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sneabogados.mx
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 11 Sep 2014 00:24:04 GMT
Pragma: no-cache
Server: Apache mod_fcgid/2.3.10-dev
Content-Length: 18622
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bd448290ab425a2a06a9e5b6f0dc7ff4=f086eeb3b30835e024a7933287e4ff0a; path=/
X-Powered-By: PHP/5.4.31
...18622 bytes of data.
GET / HTTP/1.1
Host: sneabogados.mx
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Thu, 11 Sep 2014 00:24:04 GMT
Pragma: no-cache
Server: Apache mod_fcgid/2.3.10-dev
Content-Length: 18622
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: bd448290ab425a2a06a9e5b6f0dc7ff4=f086eeb3b30835e024a7933287e4ff0a; path=/
X-Powered-By: PHP/5.4.31
...18622 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: sneabogados.mx
Referer: http://www.google.com/search?q=sneabogados.mx
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sneabogados.mx
Referer: http://www.google.com/search?q=sneabogados.mx
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://sneabogados.mx/ | 200 OK Content-Length: 18622 Content-Type: text/html | clean |
http://sneabogados.mx/cache/sboost_assets/72c92334706f208bd541b6b4cfc1ec19.js | 200 OK Content-Length: 300905 Content-Type: application/javascript | clean |
http://sneabogados.mx/media/system/js/modal.js | 200 OK Content-Length: 9732 Content-Type: application/javascript | clean |
http://sneabogados.mx/modules/mod_slideshowck/assets/jquery.min.js | 200 OK Content-Length: 93888 Content-Type: application/javascript | clean |
http://sneabogados.mx/modules/mod_slideshowck/assets/jquery.easing.1.3.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
http://sneabogados.mx/modules/mod_slideshowck/assets/jquery.mobile.customized.min.js | 200 OK Content-Length: 17519 Content-Type: application/javascript | clean |
http://sneabogados.mx/modules/mod_slideshowck/assets/camera.min.js | 200 OK Content-Length: 40643 Content-Type: application/javascript | clean |
http://sneabogados.mx/templates/mx_joomla94/js/jqscripts.js | 200 OK Content-Length: 10253 Content-Type: application/javascript | clean |
http://sneabogados.mx/templates/mx_joomla94/js/accord.js | 200 OK Content-Length: 979 Content-Type: application/javascript | clean |
http://sneabogados.mx/index.php/quienes-somos | 200 OK Content-Length: 31843 Content-Type: text/html | clean |
http://sneabogados.mx/index.php/filosofia-menu | 200 OK Content-Length: 34696 Content-Type: text/html | clean |
http://sneabogados.mx/index.php/servicios-menu | 200 OK Content-Length: 12386 Content-Type: text/html | clean |
http://sneabogados.mx/index.php/clientes-sne | 200 OK Content-Length: 12120 Content-Type: text/html | clean |
http://sneabogados.mx/brochure/brochure.html | 200 OK Content-Length: 6734 Content-Type: text/html | clean |
http://sneabogados.mx/brochure/js/swfobject2.js | 200 OK Content-Length: 10220 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sneabogados.mx
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sneabogados.mx/
Result: sneabogados.mx is not infected or malware details are not published yet.
Result: sneabogados.mx is not infected or malware details are not published yet.