Scanned pages/files
| Request | Server response | Status |
http://aeispa.pt/ | 200 OK Content-Length: 30614 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: +ADw-/title+AD4-Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By ab <!DOCTYPE html> <html lang="en-US" xmlns:fb="http://ogp.me/ns/fb#" > <head> <meta charset="UTF-7" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>+ADw-/title+AD4-Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger Hacked By aba keylogger v+ADw-DIV style+AD0AIg-DISPLAY: none+ACIAPgA8-xmp+AD4- | Associação de Estudantes do ISPA-IU</title> <link rel="profile" href="http://gmpg.org/xfn/11" /> <link rel="pingback" href ...[34878 bytes skipped]... | ||
http://aeispa.pt/wp-content/themes/pinboard/scripts/ios-orientationchange-fix.js | 200 OK Content-Length: 1601 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-content/themes/pinboard/scripts/jquery.flexslider-min.js | 200 OK Content-Length: 21638 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-content/themes/pinboard/scripts/jquery.fitvids.js | 200 OK Content-Length: 2698 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-content/themes/pinboard/scripts/jquery.infinitescroll.min.js | 200 OK Content-Length: 21555 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-content/themes/pinboard/scripts/jquery.colorbox-min.js | 200 OK Content-Length: 11803 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=2.15.0 | 200 OK Content-Length: 76151 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-includes/js/mediaelement/wp-mediaelement.js?ver=4.0.8 | 200 OK Content-Length: 906 Content-Type: application/javascript | clean |
http://aeispa.pt/wp-includes/js/masonry.min.js?ver=3.1.2 | 200 OK Content-Length: 31700 Content-Type: application/javascript | clean |
http://aeispa.pt/corc/ | 200 OK Content-Length: 16734 Content-Type: text/html | clean |
http://aeispa.pt/wp-includes/js/comment-reply.min.js?ver=4.0.8 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://aeispa.pt/enei/ | 200 OK Content-Length: 16175 Content-Type: text/html | clean |
http://aeispa.pt/ilb-intercambio-luso-brasileiro/ | 200 OK Content-Length: 19177 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: aeispa.pt
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Oct 2015 04:42:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
X-Pingback: http://aeispa.pt/xmlrpc.php
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: aeispa.pt
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 11 Oct 2015 04:42:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-7
X-Pingback: http://aeispa.pt/xmlrpc.php
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: aeispa.pt
Referer: http://www.google.com/search?q=aeispa.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: aeispa.pt
Referer: http://www.google.com/search?q=aeispa.pt
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=aeispa.pt
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://aeispa.pt/
Result: aeispa.pt is not infected or malware details are not published yet.
Result: aeispa.pt is not infected or malware details are not published yet.