Scanned pages/files
Request | Server response | Status |
http://ameserragaucha.com.br/ | 200 OK Content-Length: 12616 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by achraf dz ...[9566 bytes skipped]... <div id="ultimo_evento"> <img src="timthumb.php?src=images/evento/ame_serra_gaucha-c4dc09d7f610747c0e6d1bf6c3e449f20.jpg&w=150&h=100&zc=1" alt="" /> <h1><a href="evento_completo.php?id=13" title=""></a></h1> <ul> <li><a href="evento_completo.php?id=6" title="hacked by achraf dz">hacked by achraf dz</a></li> </ul> </div><!--Ultimo Evento--> <div class="ler_mais"><hr /><a href="eventos.php" title="Mais Eventos">mais eventos</a></div><!--Mais--> </div><!--Bloco Conteudo--> <div class="bloco_cantos_base"> </div><!--Cantos Base--> </div><!--Bloco Iguais-->< ...[5574 bytes skipped]... | ||
http://ameserragaucha.com.br/Scripts/swfobject_modified.js | 200 OK Content-Length: 21696 Content-Type: application/x-javascript | clean |
http://ameserragaucha.com.br/Scripts/carousel/jquery-1.4.2.min.js | 200 OK Content-Length: 232681 Content-Type: application/x-javascript | clean |
http://ameserragaucha.com.br/Scripts/carousel/jquery.jcarousel.min.js | 200 OK Content-Length: 15650 Content-Type: application/x-javascript | clean |
http://ameserragaucha.com.br/Scripts/lightbox/js/prototype.js | 200 OK Content-Length: 163312 Content-Type: application/x-javascript | clean |
http://ameserragaucha.com.br/Scripts/lightbox/js/scriptaculous.js?load=effects,builder | 200 OK Content-Length: 2931 Content-Type: application/x-javascript | clean |
http://ameserragaucha.com.br/Scripts/lightbox/js/lightbox.js | 200 OK Content-Length: 18547 Content-Type: application/x-javascript | clean |
http://ameserragaucha.com.br/index.php | 200 OK Content-Length: 12616 Content-Type: text/html | clean |
http://ameserragaucha.com.br/quem_somos.php | 200 OK Content-Length: 6236 Content-Type: text/html | clean |
http://ameserragaucha.com.br/programacao.php | 200 OK Content-Length: 5710 Content-Type: text/html | clean |
http://ameserragaucha.com.br/eventos.php | 200 OK Content-Length: 6318 Content-Type: text/html | clean |
http://ameserragaucha.com.br/registro_fotografico.php | 200 OK Content-Length: 15601 Content-Type: text/html | clean |
http://ameserragaucha.com.br/recados.php | 200 OK Content-Length: 5811 Content-Type: text/html | clean |
http://ameserragaucha.com.br/contato.php | 200 OK Content-Length: 7340 Content-Type: text/html | clean |
http://ameserragaucha.com.br/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ameserragaucha.com.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 05 Sep 2014 18:48:23 GMT
Server: Apache
Content-Type: text/html
GET / HTTP/1.1
Host: ameserragaucha.com.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 05 Sep 2014 18:48:23 GMT
Server: Apache
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: ameserragaucha.com.br
Referer: http://www.google.com/search?q=ameserragaucha.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ameserragaucha.com.br
Referer: http://www.google.com/search?q=ameserragaucha.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ameserragaucha.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ameserragaucha.com.br/
Result: ameserragaucha.com.br is not infected or malware details are not published yet.
Result: ameserragaucha.com.br is not infected or malware details are not published yet.