Scanned pages/files
Request | Server response | Status |
http://resoftsol.com/ | 200 OK Content-Length: 34474 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By ViRuS OS ...[6425 bytes skipped]... ceheld{color:#888}</style> <link rel='stylesheet' id='rs-settings-css' href='http://resoftsol.com/wp-content/plugins/revslider/rs-plugin/css/A.settings.css,qver=4.3.1.pagespeed.cf.HN0ABlrZKV.css' type='text/css' media='all'/> <style id='rs-captions-css' media='all'><body style='color: transparent;background-color: black'><center><h1><b style='color: white'><center>Hacked By ViRuS OS<br>./Just Deface<p style='color: transparent'></style> <link rel='stylesheet' id='bmd_google_font-css' href='http://fonts.googleapis.com/css?family=Fjalla+One%3A400%7CArial%3A400Italic%7CArial%3A400italic%7CMerriweather%3A400%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=4.3.1' type='text/css' media='all'/> <style id='whoami-style-css' media='all'>@font-face { font-family: 'JustVector'; src: url('wp-cont ...[31636 bytes skipped]... | ||
http://resoftsol.com/wp-includes/js/jquery/jquery.js,qver=1.11.3.pagespeed.jm.zixJPNMRNN.js | 200 OK Content-Length: 95889 Content-Type: text/javascript | clean |
http://resoftsol.com/wp-includes,_js,_jquery,_jquery-migrate.min.js,qver==1.2.1+wp-content,_plugins,_revslider,_rs-plugin,_js,_jquery.themepunch.plugins.min.js,qver==4.3.1.pagespeed.jc.A4vSncrdHP.js | 200 OK Content-Length: 22984 Content-Type: application/javascript | clean |
http://resoftsol.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.3.1 | 200 OK Content-Length: 56013 Content-Type: text/javascript | clean |
http://resoftsol.com/wp-content/plugins/auto-syntaxhighlighter/SyntaxHighlighter/build/scripts/core-min.js?ver=3.0.83 | 200 OK Content-Length: 21764 Content-Type: text/javascript | clean |
http://resoftsol.com/wp-content,_plugins,_aqua-page-builder,_assets,_javascripts,_aqpb-view.js,qver==1448964641+wp-content,_themes,_novelty,_js,_respond.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_selectivizr-min.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_superfish.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_hoverIntent.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_jquery.cookie.js, <span>...235 symbols skipped</span> | 200 OK Content-Length: 34267 Content-Type: application/javascript | clean |
http://resoftsol.com/wp-content/plugins,_contact-form-7,_includes,_js,_scripts.js,qver==4.3+themes,_novelty,_js,_jquery.flexslider-min.js,qver==4.3.1.pagespeed.jc.6dRZ_DLHvh.js | 200 OK Content-Length: 26822 Content-Type: application/javascript | clean |
http://resoftsol.com/portfolio/ | 200 OK Content-Length: 21899 Content-Type: text/html | clean |
http://resoftsol.com/wp-content,_plugins,_aqua-page-builder,_assets,_javascripts,_aqpb-view.js,qver==1448964645+wp-content,_themes,_novelty,_js,_respond.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_selectivizr-min.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_superfish.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_hoverIntent.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_jquery.cookie.js, <span>...235 symbols skipped</span> | 200 OK Content-Length: 34267 Content-Type: application/javascript | clean |
http://resoftsol.com/wp-content/plugins/contact-form-7/includes/js/scripts.js,qver=4.3.pagespeed.jm.AQ2a9_TgU5.js | 200 OK Content-Length: 9600 Content-Type: text/javascript | clean |
http://resoftsol.com/blog/ | 200 OK Content-Length: 38913 Content-Type: text/html | clean |
http://resoftsol.com/wp-content,_plugins,_aqua-page-builder,_assets,_javascripts,_aqpb-view.js,qver==1448964648+wp-content,_themes,_novelty,_js,_respond.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_selectivizr-min.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_superfish.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_hoverIntent.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_jquery.cookie.js, <span>...235 symbols skipped</span> | 200 OK Content-Length: 34267 Content-Type: application/javascript | clean |
http://resoftsol.com/contact/ | 200 OK Content-Length: 20106 Content-Type: text/html | clean |
http://resoftsol.com/wp-content,_plugins,_aqua-page-builder,_assets,_javascripts,_aqpb-view.js,qver==1448964649+wp-content,_themes,_novelty,_js,_respond.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_selectivizr-min.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_superfish.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_hoverIntent.js,qver==4.3.1+wp-content,_themes,_novelty,_js,_jquery.cookie.js, <span>...235 symbols skipped</span> | 200 OK Content-Length: 34267 Content-Type: application/javascript | clean |
http://resoftsol.com/wp-content/plugins,_contact-form-7,_includes,_js,_scripts.js,qver==4.3+themes,_novelty,_js,_googlemap.js,qver==4.3.1.pagespeed.jc.YLBYztRB4C.js | 200 OK Content-Length: 10727 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: resoftsol.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Cache-Control: max-age=0, no-cache
Connection: close
Date: Tue, 01 Dec 2015 10:10:41 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Length: 34474
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://resoftsol.com/>; rel=shortlink
Set-Cookie: PHPSESSID=1abv4rgbnfm0fe4h9rrp876cd3; path=/
X-Mod-Pagespeed: 1.9.32.4-7251
X-Pingback: http://resoftsol.com/xmlrpc.php
X-Powered-By: PleskLin
...34474 bytes of data.
GET / HTTP/1.1
Host: resoftsol.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Cache-Control: max-age=0, no-cache
Connection: close
Date: Tue, 01 Dec 2015 10:10:41 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Vary: Accept-Encoding
Content-Length: 34474
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Link: <http://resoftsol.com/>; rel=shortlink
Set-Cookie: PHPSESSID=1abv4rgbnfm0fe4h9rrp876cd3; path=/
X-Mod-Pagespeed: 1.9.32.4-7251
X-Pingback: http://resoftsol.com/xmlrpc.php
X-Powered-By: PleskLin
...34474 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: resoftsol.com
Referer: http://www.google.com/search?q=resoftsol.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: resoftsol.com
Referer: http://www.google.com/search?q=resoftsol.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=resoftsol.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://resoftsol.com/
Result: resoftsol.com is not infected or malware details are not published yet.
Result: resoftsol.com is not infected or malware details are not published yet.