Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: fernandocester.com.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 05 Mar 2015 08:46:12 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
Link: <http://fernandocester.com.br/>; rel=shortlink
X-Pingback: http://fernandocester.com.br/xmlrpc.php
X-Powered-By: PHP/5.4.36
GET / HTTP/1.1
Host: fernandocester.com.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 05 Mar 2015 08:46:12 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
Link: <http://fernandocester.com.br/>; rel=shortlink
X-Pingback: http://fernandocester.com.br/xmlrpc.php
X-Powered-By: PHP/5.4.36
Second query (visit from search engine):
GET / HTTP/1.1
Host: fernandocester.com.br
Referer: http://www.google.com/search?q=fernandocester.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: fernandocester.com.br
Referer: http://www.google.com/search?q=fernandocester.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://www.fernandocester.com.br/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 05 Mar 2015 08:46:11 GMT Location: http://fernandocester.com.br/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://fernandocester.com.br/xmlrpc.php X-Powered-By: PHP/5.4.36 | clean |
http://fernandocester.com.br/ | 200 OK Content-Length: 33021 Content-Type: text/html | clean |
http://fernandocester.com.br/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/plugins/LayerSlider/static/js/layerslider.kreaturamedia.jquery.js?ver=5.1.1 | 200 OK Content-Length: 57000 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/plugins/LayerSlider/static/js/greensock.js?ver=1.11.2 | 200 OK Content-Length: 52295 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/plugins/LayerSlider/static/js/layerslider.transitions.js?ver=5.1.1 | 200 OK Content-Length: 21095 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/uploads/layerslider.custom.transitions.js?ver=5.1.1 | 200 OK Content-Length: 3480 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=4.1.1 | 200 OK Content-Length: 17331 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.1.1 | 200 OK Content-Length: 56235 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/themes/vibration/scripts/js/eventcountdown.js?ver=4.1.1 | 200 OK Content-Length: 1506 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/themes/vibration/scripts/fancybox/jquery.fancybox-1.3.4.pack.js?ver=4.1.1 | 200 OK Content-Length: 15624 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/themes/vibration/scripts/js/custom.js?ver=4.1.1 | 200 OK Content-Length: 7766 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/themes/vibration/scripts/js/audio.min.js?ver=4.1.1 | 200 OK Content-Length: 15979 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/themes/vibration/scripts/js/responsiveslides.min.js?ver=4.1.1 | 200 OK Content-Length: 3406 Content-Type: application/javascript | clean |
http://fernandocester.com.br/wp-content/themes/vibration/scripts/js/organictabs.jquery.js?ver=4.1.1 | 200 OK Content-Length: 2786 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=fernandocester.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://fernandocester.com.br/
Result: fernandocester.com.br is not infected or malware details are not published yet.
Result: fernandocester.com.br is not infected or malware details are not published yet.