Scanned pages/files
| Request | Server response | Status |
http://www.vibromak.com.br/ | 200 OK Content-Length: 12210 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var lc = document.getElementById('qtranslate-2-chooser'); var s = document.createElement('select'); s.id = 'qtrans_select_qtranslate-2-chooser'; lc.parentNode.insertBefore(s,lc); var sb = document.getElementById('qtrans_select_qtranslate-2-chooser'); var o = document.createElement('option'); var l = document.createTextNode('Português'); o.selected = 'selected'; o.value = 'http://www.vibromak.com.br/'; o.appendCh sb.appendChild(o); var sb = document.getElementById('qtrans_select_qtranslate-2-chooser'); var o = document.createElement('option'); var l = document.createTextNode('Español'); o.value = 'http://www.vibromak.com.br/?lang=es'; o.appendChild(l); sb.appendChild(o); s.onchange = function() { document.location.href = this.value;} lc.style.display='none'; Antivirus reports:
| ||
http://www.vibromak.com.br/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: application/javascript | clean |
http://www.google.com/jsapi?ver=3.5.1 | 200 OK Content-Length: 24558 Content-Type: text/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=3.5.1 | 200 OK Content-Length: 17249 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=3.5.1 | 200 OK Content-Length: 56228 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/?lang=en | 200 OK Content-Length: 55345 Content-Type: text/html | clean |
http://www.vibromak.com.br/wp-content/plugins/ubermenu/core/js/hoverIntent.js?ver=3.5.1 | 200 OK Content-Length: 1464 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/ubermenu/core/js/ubermenu.min.js?ver=3.5.1 | 200 OK Content-Length: 11729 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.45.0-2013.10.17 | 200 OK Content-Length: 14723 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.5.4 | 200 OK Content-Length: 8326 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=2.0.13 | 200 OK Content-Length: 2076 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.60 | 200 OK Content-Length: 9260 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=2.0.13 | 200 OK Content-Length: 2716 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/woocommerce/assets/js/jquery-cookie/jquery.cookie.min.js?ver=1.3.1 | 200 OK Content-Length: 1240 Content-Type: application/javascript | clean |
http://www.vibromak.com.br/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=2.0.13 | 200 OK Content-Length: 1395 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vibromak.com.br
Result:
GET / HTTP/1.1
Host: vibromak.com.br
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: vibromak.com.br
Referer: http://www.google.com/search?q=vibromak.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vibromak.com.br
Referer: http://www.google.com/search?q=vibromak.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vibromak.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://vibromak.com.br/
Result: vibromak.com.br is not infected or malware details are not published yet.
Result: vibromak.com.br is not infected or malware details are not published yet.