Scanned pages/files
| Request | Server response | Status |
http://jornalq.com/ | 200 OK Content-Length: 62773 Content-Type: text/html | clean |
http://jornalq.com/media/system/js/mootools-core.js | 200 OK Content-Length: 96362 Content-Type: application/javascript | clean |
http://jornalq.com/media/system/js/mootools-more.js | 200 OK Content-Length: 238331 Content-Type: application/javascript | clean |
http://jornalq.com/media/system/js/core.js | 200 OK Content-Length: 4784 Content-Type: application/javascript | clean |
http://jornalq.com//ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js/ | 500 Vista não encontrada [name, type, prefix]: pb, html, pbView Content-Length: 61593 Content-Type: text/html | clean |
http://jornalq.com//ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js/ | 500 Vista não encontrada [name, type, prefix]: pb, html, pbView Content-Length: 61589 Content-Type: text/html | clean |
http://jornalq.com/media/system/js/caption.js | 200 OK Content-Length: 729 Content-Type: application/javascript | clean |
http://jornalq.com/templates/jf_calla-exteriors/scripts/js/respond.min.js | 200 OK Content-Length: 4045 Content-Type: application/javascript | clean |
http://jornalq.com/templates/jf_calla-exteriors/scripts/js/jquery.slideto.min.js | 200 OK Content-Length: 419 Content-Type: application/javascript | clean |
http://jornalq.com/templates/jf_calla-exteriors/scripts/js/callaexteriors.js | 200 OK Content-Length: 2622 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) jQuery(window).load(function(){
jQuery('#jf-mainnav .menu').spasticNav(); jQuery('#jf-mainnav .menu li:last-child').css('margin-right',0); jQuery('#jf-mainnav .menu li:last-child').prev().css('margin-right',0); sizeBanner(); jQuery("#jf-slideshow a").click(function(){ jQuery("#jf-body").slideto({highlight: false}); }); jQuery(".gotomenu").click(function(){ jQuery("#jf-menu").slideto({highlight: false}); }); copyWidth = }, options.reset); }); }); }; })(jQuery); jQuery(window).on("resize", function(){ sizeBanner(); }); jQuery(window).on("scroll", function(){ if (jQuery(window).width() > 765) { if (jQuery(window).scrollTop() > 55){ jQuery('#jf-header').addClass('transparent'); } else { jQuery('#jf-header').removeClass('transparent'); } } }); Antivirus reports:
| ||
http://jornalq.com/components/com_adsmanager/js/noconflict.js | 200 OK Content-Length: 12 Content-Type: application/javascript | clean |
http://jornalq.com/components/com_adsmanager/js/jquery-ui-1.8.23.custom.min.js | 200 OK Content-Length: 204935 Content-Type: application/javascript | clean |
http://jornalq.com/media/com_acymailing/js/acymailing_module.js?v=462 | 200 OK Content-Length: 14287 Content-Type: application/javascript | clean |
http://jornalq.com/plugins/content/simplepopup/simplepopup/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1292 Content-Type: application/javascript | clean |
http://jornalq.com/plugins/content/simplepopup/simplepopup/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 18040 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jornalq.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 16 Apr 2014 15:52:45 GMT
Pragma: no-cache
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 7da3b4725195e82edf0b7da15d1b77fb=b1e3c89cd204707b1ba8f03d676d8b52; path=/
X-Powered-By: PHP/5.3.27
GET / HTTP/1.1
Host: jornalq.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Connection: close
Date: Wed, 16 Apr 2014 15:52:45 GMT
Pragma: no-cache
Server: Apache/2.2.26 (Unix) mod_ssl/2.2.26 OpenSSL/1.0.1e-fips mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 7da3b4725195e82edf0b7da15d1b77fb=b1e3c89cd204707b1ba8f03d676d8b52; path=/
X-Powered-By: PHP/5.3.27
Second query (visit from search engine):
GET / HTTP/1.1
Host: jornalq.com
Referer: http://www.google.com/search?q=jornalq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jornalq.com
Referer: http://www.google.com/search?q=jornalq.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jornalq.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jornalq.com/
Result: jornalq.com is not infected or malware details are not published yet.
Result: jornalq.com is not infected or malware details are not published yet.