Scanned pages/files
Request | Server response | Status |
http://larutasolar.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 20 Jun 2015 11:24:06 GMT Location: http://www.larutasolar.com/ Server: cloudflare-nginx Vary: Accept-Encoding Content-Type: text/html; charset=iso-8859-1 CF-RAY: 1f971af734de05db-WAW Set-Cookie: __cfduid=dd71aa9e8d4a0ffd8c4fbb9dd6ac5b42f1434799445; expires=Sun, 19-Jun-16 11:24:05 GMT; path=/; domain=.larutasolar.com; HttpOnly | clean |
http://www.larutasolar.com/ | 200 OK Content-Length: 43772 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by AlfabetoVirtual ...[4477 bytes skipped]... ='rs-settings-css' href='http://www.larutasolar.com/wp-content/plugins/revslider/rs-plugin/css/A.settings.css,qver=4.2.2.pagespeed.cf.UyrAqh4tQs.css' type='text/css' media='all'/> <style id='rs-captions-css' media='all'><body bgcolor=black><table width=100% height=100%><td align=center><span style='font: 40px tahoma;size:40px;color:white;text-shadow: 0px 0px 50px;'><strong>hacked by AlfabetoVirtual<p style='color: transparent'></style> <link rel='stylesheet' id='normalize-css' href='http://www.larutasolar.com/wp-content/themes/naba/css/A.normalize.css,qver=1.0.0.0.pagespeed.cf.RlbynjW1ns.css' type='text/css' media='screen'/> <style id='base-css' media='screen'>@import url(wp-content/themes/naba/css/meanmenu.css) ;@import url(wp-content/themes/naba/css/bootstrap.min.css) ;@import url(wp-content/themes/naba/css/shortcodes.css) ;@impo ...[43880 bytes skipped]... | ||
http://www.larutasolar.com/wp-includes/js/jquery/jquery.js,qver=1.11.2.pagespeed.jm.0kUhGt7Mm3.js | 200 OK Content-Length: 95864 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-includes/js/jquery/jquery-migrate.min.js,qver=1.2.1.pagespeed.jm.mhpNjdU8Wl.js | 200 OK Content-Length: 7085 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.2.2 | 200 OK Content-Length: 83792 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js,qver=3.51.0-2014.06.20.pagespeed.jm.RVBOol6lkO.js | 200 OK Content-Length: 14900 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/plugins/contact-form-7/includes/js/scripts.js,qver=4.0.1.pagespeed.jm.aPhR_ZcXmQ.js | 200 OK Content-Length: 8155 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/modernizr.custom.79639.js,qver=1.0.0.0.pagespeed.jm.cQub6bXQBX.js | 200 OK Content-Length: 9163 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/jquery.plugins.min.js,qver=1.0.0.0.pagespeed.jm.YvOwXuHFvl.js | 200 OK Content-Length: 18535 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/bootstrap.min.js,qver=1.0.0.0.pagespeed.jm.zrzwVyqljn.js | 200 OK Content-Length: 28514 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/jcarousel.js,qver=1.0.0.0.pagespeed.jm.lmPYRC-Hcn.js | 200 OK Content-Length: 15154 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/jquery.prettyPhoto.js,qver=1.0.0.0.pagespeed.jm.FmoUdIBGkB.js | 200 OK Content-Length: 24916 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/jquery.meanmenu.min.js,qver=1.0.0.0.pagespeed.jm.z9_BoXyGAX.js | 200 OK Content-Length: 3969 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/jquery.simple-text-rotator.js,qver=1.0.0.0.pagespeed.jm.mWRoWlUJqr.js | 200 OK Content-Length: 3568 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/owl.carousel.min.js,qver=1.0.0.0.pagespeed.jm.NAez8aXeea.js | 200 OK Content-Length: 9431 Content-Type: application/javascript | clean |
http://www.larutasolar.com/wp-content/themes/naba/js/superfish.js,qver=1.0.0.0.pagespeed.jm.9UfKeCZw7b.js | 200 OK Content-Length: 3746 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: larutasolar.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 20 Jun 2015 11:24:06 GMT
Location: http://www.larutasolar.com/
Server: cloudflare-nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=iso-8859-1
CF-RAY: 1f971af734de05db-WAW
Set-Cookie: __cfduid=dd71aa9e8d4a0ffd8c4fbb9dd6ac5b42f1434799445; expires=Sun, 19-Jun-16 11:24:05 GMT; path=/; domain=.larutasolar.com; HttpOnly
GET / HTTP/1.1
Host: larutasolar.com
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 20 Jun 2015 11:24:06 GMT
Location: http://www.larutasolar.com/
Server: cloudflare-nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=iso-8859-1
CF-RAY: 1f971af734de05db-WAW
Set-Cookie: __cfduid=dd71aa9e8d4a0ffd8c4fbb9dd6ac5b42f1434799445; expires=Sun, 19-Jun-16 11:24:05 GMT; path=/; domain=.larutasolar.com; HttpOnly
Second query (visit from search engine):
GET / HTTP/1.1
Host: larutasolar.com
Referer: http://www.google.com/search?q=larutasolar.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: larutasolar.com
Referer: http://www.google.com/search?q=larutasolar.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=larutasolar.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://larutasolar.com/
Result: larutasolar.com is not infected or malware details are not published yet.
Result: larutasolar.com is not infected or malware details are not published yet.