Scanned pages/files
Request | Server response | Status |
http://directoriosalud.es/ | 200 OK Content-Length: 97264 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED by LUN4T1C0 ...[5427 bytes skipped]... pcf7 .placeheld{color:#888}</style> <link rel='stylesheet' id='rs-settings-css' href='http://directoriosalud.es/wp-content/plugins/revslider/rs-plugin/css/A.settings.css,qver=4.2.2.pagespeed.cf.iF8EZ9Xydm.css' type='text/css' media='all'/> <style id='rs-captions-css' media='all'><body style='color: transparent;background-color: black'><center><h1><b style='color: white'>HACKED by LUN4T1C0<p style='color: transparent'></style> <link rel='stylesheet' id='ait-jquery-prettyPhoto-css' href='http://directoriosalud.es/wp-content/themes/directory/design/css/A.prettyPhoto.css,qver=4.2.2.pagespeed.cf.ruoo6rUZda.css' type='text/css' media='all'/> <link rel='stylesheet' id='ait-jquery-fancybox-css' href='http://directoriosalud.es/wp-content/themes/directory/design/css/fancybox/A.jquery.fancybox-1.3.4.css,qver=4.2.2.pagespeed.cf.ZtPiBbX1Vi.c ...[102525 bytes skipped]... | ||
http://directoriosalud.es/wp-includes/js/jquery/jquery.js,qver=1.11.2.pagespeed.jm.0kUhGt7Mm3.js | 200 OK Content-Length: 95864 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-includes/js/jquery/jquery-migrate.min.js,qver=1.2.1.pagespeed.jm.mhpNjdU8Wl.js | 200 OK Content-Length: 7085 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.2.2 | 200 OK Content-Length: 80754 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-content/themes/directory/design/js/libs/jquery.fancycheckbox.min.js,qver==4.2.2+jquery.html5-placeholder-shim.js,qver==4.2.2+gmap3.infobox.js,qver==4.2.2+gmap3.min.js,qver==4.2.2+jquery.infieldlabel.js,qver==4.2.2.pagespeed.jc.HqUVsnCyWM.js | 200 OK Content-Length: 52699 Content-Type: application/javascript | clean |
http://maps.google.com/maps/api/js?sensor=false&language=es_ES&ver=4.2.2 | 200 OK Content-Length: 4447 Content-Type: text/javascript | clean |
http://directoriosalud.es/wp-content/themes/directory/design/js/libs/jquery.prettyPhoto.js,qver==4.2.2+jquery.fancybox-1.3.4.js,qver==4.2.2+jquery.easing-1.3.min.js,qver==4.2.2.pagespeed.jc.h9mTzYEb0k.js | 200 OK Content-Length: 50195 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-content/themes/directory/design/js/libs/jquery.nicescroll.min.js?ver=4.2.2 | 200 OK Content-Length: 33179 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-content/themes/directory/design/js/libs,_jquery.quicksand.js,qver==4.2.2+libs,_hover.zoom.js,qver==4.2.2+libs,_jquery.finishedTyping.js,qver==4.2.2+libs,_spin.min.js,qver==4.2.2+libs,_modernizr.touch.js,qver==4.2.2+gridgallery.js,qver==4.2.2+rating.js,qver==4.2.2.pagespeed.jc.DC6pF6wi_8.js | 200 OK Content-Length: 45096 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-content/themes/directory/design/js/script.js,qver=4.2.2.pagespeed.jm.IU4S3G8YZD.js | 200 OK Content-Length: 8918 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-includes,_js,_comment-reply.min.js,qver==4.2.2+wp-content,_plugins,_contact-form-7,_includes,_js,_jquery.form.min.js,qver==3.51.0-2014.06.20.pagespeed.jc.YiPYO4AJrn.js | 200 OK Content-Length: 16188 Content-Type: application/javascript | clean |
http://directoriosalud.es/wp-content,_plugins,_contact-form-7,_includes,_js,_scripts.js,qver==4.1.2+wp-includes,_js,_jquery,_ui,_core.min.js,qver==1.11.4+wp-includes,_js,_jquery,_ui,_widget.min.js,qver==1.11.4+wp-includes,_js,_jquery,_ui,_tabs.min.js,qver==1.11.4+wp-includes,_js,_jquery,_ui,_accordion.min.js,qver==1.11.4+wp-includes,_js,_jquery,_ui,_position.min.js,qver==1.11.4+wp-includes,_js,_jq <span>...234 symbols skipped</span> | 200 OK Content-Length: 79661 Content-Type: application/javascript | clean |
http://directoriosalud.es/blog | 404 Not Found Content-Length: 548 Content-Type: text/html | clean |
http://directoriosalud.es/test404page.js | 404 Not Found Content-Length: 558 Content-Type: text/html | clean |
http://directoriosalud.es/mapa-del-sitio | 404 Not Found Content-Length: 558 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: directoriosalud.es
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Sun, 21 Jun 2015 21:21:01 GMT
Server: nginx/1.7.9
Vary: Accept-Encoding
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Host-Header: 192fc2e7e50945beb8231a492d6a8024
Link: <http://directoriosalud.es/>; rel=shortlink
X-Page-Speed: 1.9.32.3-4448
X-Pingback: http://directoriosalud.es/xmlrpc.php
X-Proxy-Cache: MISS
GET / HTTP/1.1
Host: directoriosalud.es
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0, no-cache
Connection: close
Date: Sun, 21 Jun 2015 21:21:01 GMT
Server: nginx/1.7.9
Vary: Accept-Encoding
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Host-Header: 192fc2e7e50945beb8231a492d6a8024
Link: <http://directoriosalud.es/>; rel=shortlink
X-Page-Speed: 1.9.32.3-4448
X-Pingback: http://directoriosalud.es/xmlrpc.php
X-Proxy-Cache: MISS
Second query (visit from search engine):
GET / HTTP/1.1
Host: directoriosalud.es
Referer: http://www.google.com/search?q=directoriosalud.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: directoriosalud.es
Referer: http://www.google.com/search?q=directoriosalud.es
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=directoriosalud.es
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://directoriosalud.es/
Result: directoriosalud.es is not infected or malware details are not published yet.
Result: directoriosalud.es is not infected or malware details are not published yet.