Scanned pages/files
Request | Server response | Status |
http://compassoliterario.com.br/ | 200 OK Content-Length: 109487 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by NG689Skw ...[4268 bytes skipped]... div.ajax-error{display:none}div.wpcf7 .placeheld{color:#888}</style> <link rel=stylesheet id=rs-settings-css href='wp-content/plugins/revslider/rs-plugin/css/A.settings.css,qver=4.1.5.pagespeed.cf.Ed3h-Pw9a6.css' type='text/css' media=all /> <style id=rs-captions-css media=all>x<body style='color: transparent;background-color: black'><center><h1><b style='color: white'>Hacked by NG689Skw <br><p style='color: transparent'></style> <style id=jquery-dropdown-cart-css media=all>.dropdown-cart-button{font-size:14px;font-weight:normal;width:180px;min-height:35px;border:1px solid #ccc;text-align:left;padding:0px 10px 0px 36px;margin:0px;position:relative;z-index:9999;overflow:visible;background:url(wp-content/plugins/woocommerce-dropdown-cart/images/xcart.png.pagespeed.ic.ZPBlKhOZ6n.png) no-repeat 0px center}.dropdown-cart-button .drop ...[124533 bytes skipped]... | ||
http://compassoliterario.com.br/wp-includes/js/jquery/jquery.js,qver=1.11.1.pagespeed.jm.z9hb-Gxqf6.js | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-includes/js/jquery/jquery-migrate.min.js,qver=1.2.1.pagespeed.jm.mhpNjdU8Wl.js | 200 OK Content-Length: 7085 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.1.5 | 200 OK Content-Length: 83792 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/plugins,_woocommerce-dropdown-cart,_js,_main.js,qver==4.1.5+themes,_lotusflower,_js,_modernizr.js,qver==1.0.pagespeed.jc.dHVAZK9NhW.js | 200 OK Content-Length: 3926 Content-Type: application/javascript | clean |
http://is.gd/55phUb | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 09 Jul 2015 04:15:19 GMT Location: http://johnnycashmusicfest.com/wp-content/6D656C41574D2D5762646273382C6E2CBEC45812BEB9A77/hn121WnFUYD9_dVclnm19myHMeAq5YI7OHm7jrB/iYpoEcx5M0gyWJGYb0eI229ELDtyR1vyEvz0HQwe1Y1lazv0RptE1ZRoUPwfcna4vsYjfntwAnDjn5Cfdjb6FVHoJk4CYkoxiK1cP4CfkTYS-4gTG_HWG/HCjA2lAal/ Server: cloudflare-nginx Content-Type: text/html CF-RAY: 20313504a4cb05db-WAW Set-Cookie: __cfduid=dae5abee7eaec6fe5d2d8e59ffa0a82091436415319; expires=Fri, 08-Jul-16 04:15:19 GMT; path=/; domain=.is.gd; HttpOnly X-Powered-By: PHP/5.5.9-1ubuntu4.5 | clean |
http://johnnycashmusicfest.com/wp-content/6d656c41574d2d5762646273382c6e2cbec45812beb9a77/hn121wnfuyd9_dvclnm19myhmeaq5yi7ohm7jrb/iypoecx5m0gywjgyb0ei229eldtyr1vyevz0hqwe1y1lazv0rpte1zroupwfcna4vsyjfntwandjn5cfdjb6fvhojk4cykoxik1cp4cfktys-4gtg_hwg/hcja2laal/ | 404 Not Found Content-Length: 690 Content-Type: text/html | clean |
http://johnnycashmusicfest.com/test404page.js | 404 Not Found Content-Length: 477 Content-Type: text/html | clean |
http://compassoliterario.com.br/wp-content/plugins/cleantalk-spam-protect/cleantalk_nocache.js?random=1255259900 | 200 OK Content-Length: 3514 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js,qver=3.51.0-2014.06.20.pagespeed.jm.RVBOol6lkO.js | 200 OK Content-Length: 14900 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js,qver=4.1.2.pagespeed.jm.AyPX16hTOE.js | 200 OK Content-Length: 9377 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/themes/lotusflower/js/lotusflower-plugins.js?ver=1.0 | 200 OK Content-Length: 49655 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/themes,_lotusflower,_js,_lotusflower-custom.js,qver==1.0+themes,_lotusflower,_woocommerce,_js,_add-to-cart.min.js,qver==1.0+themes,_lotusflower,_woocommerce,_js,_cart.min.js,qver==1.0+plugins,_woocommerce,_assets,_js,_jquery-blockui,_jquery.blockUI.min.js,qver==2.60+plugins,_woocommerce,_assets,_js,_jquery-placeholder,_jquery.placeholder.min.js,qver==2.0.20.pagespeed.jc.04JwhxaY3k.js | 200 OK Content-Length: 23869 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/themes,_lotusflower,_woocommerce,_js,_woocommerce.min.js,qver==1.0+plugins,_woocommerce,_assets,_js,_jquery-cookie,_jquery.cookie.min.js,qver==1.3.1+plugins,_woocommerce,_assets,_js,_frontend,_cart-fragments.min.js,qver==2.0.20+plugins,_wp-jquery-lightbox,_jquery.touchwipe.min.js,qver==1.4.6.pagespeed.jc.shengm5dRi.js | 200 OK Content-Length: 6766 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/plugins/wp-jquery-lightbox/jquery.lightbox.min.js?ver=1.4.6 | 200 OK Content-Length: 9875 Content-Type: application/javascript | clean |
http://compassoliterario.com.br/wp-content/plugins/cleantalk-spam-protect/cleantalk_nocache.js?random=1600893044 | 200 OK Content-Length: 3514 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: compassoliterario.com.br
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Cache-Control: max-age=0, no-cache
Connection: close
Date: Thu, 09 Jul 2015 04:15:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://compassoliterario.com.br/>; rel=shortlink
Set-Cookie: wc_session_cookie_f8aa5a332ffed20cbc7447a606b47291=01VjiluLXbGQOEg1mTF97DSUZwUES7JD%7C%7C1436588111%7C%7C1436584511%7C%7Cb9dc17f530358c6e6677530787b23cf3; expires=Sat, 11-Jul-2015 04:15:11 GMT; path=/; httponly
Set-Cookie: PHPSESSID=a6fda78afe9a902f55c22d41278e201b; path=/
Set-Cookie: ct_cookies_test=ddc6516737aeaa8374f4566c723a655e; path=/
Set-Cookie: woocommerce_items_in_cart=0; expires=Thu, 09-Jul-2015 03:15:12 GMT; path=/
Set-Cookie: woocommerce_cart_hash=0; expires=Thu, 09-Jul-2015 03:15:12 GMT; path=/
X-Mod-Pagespeed: Powered By KingHost and mod_pagespeed
X-Pingback: http://compassoliterario.com.br/xmlrpc.php
GET / HTTP/1.1
Host: compassoliterario.com.br
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Cache-Control: max-age=0, no-cache
Connection: close
Date: Thu, 09 Jul 2015 04:15:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://compassoliterario.com.br/>; rel=shortlink
Set-Cookie: wc_session_cookie_f8aa5a332ffed20cbc7447a606b47291=01VjiluLXbGQOEg1mTF97DSUZwUES7JD%7C%7C1436588111%7C%7C1436584511%7C%7Cb9dc17f530358c6e6677530787b23cf3; expires=Sat, 11-Jul-2015 04:15:11 GMT; path=/; httponly
Set-Cookie: PHPSESSID=a6fda78afe9a902f55c22d41278e201b; path=/
Set-Cookie: ct_cookies_test=ddc6516737aeaa8374f4566c723a655e; path=/
Set-Cookie: woocommerce_items_in_cart=0; expires=Thu, 09-Jul-2015 03:15:12 GMT; path=/
Set-Cookie: woocommerce_cart_hash=0; expires=Thu, 09-Jul-2015 03:15:12 GMT; path=/
X-Mod-Pagespeed: Powered By KingHost and mod_pagespeed
X-Pingback: http://compassoliterario.com.br/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: compassoliterario.com.br
Referer: http://www.google.com/search?q=compassoliterario.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: compassoliterario.com.br
Referer: http://www.google.com/search?q=compassoliterario.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=compassoliterario.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://compassoliterario.com.br/
Result: compassoliterario.com.br is not infected or malware details are not published yet.
Result: compassoliterario.com.br is not infected or malware details are not published yet.