Scanned pages/files
Request | Server response | Status |
http://gelatoboutique.com.br/ | HTTP/1.1 200 OK Connection: close Date: Wed, 10 Sep 2014 08:36:33 GMT Accept-Ranges: bytes ETag: "7598a1d5b23cf1:e59db3" Server: Microsoft-IIS/6.0 Content-Length: 1849 Content-Location: http://gelatoboutique.com.br/index.html Content-Type: text/html Last-Modified: Thu, 06 Feb 2014 16:46:59 GMT X-Powered-By: ASP.NET | clean |
http://gelatoboutique.com.br/index.html | 200 OK Content-Length: 1849 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By amir.av727 ...[122 bytes skipped]... "> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Language" content="en-us" /> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <meta name="robots" content="index, follow"> <meta name="rating" content="general"> <meta http-equiv="reply-to" content="im_blackhat@yahoo.com"> <title>Hacked By amir.av727</title> <meta content=âamir.av727,Hacked By amir.av727âname=âkeywordsâ> <meta content=âHACKED By amir.av727 BLACK HATâname=âdescriptionâ> <style type="text/css"> .newStyle1 { background-color: #000000; font-family: "Courier New", Courier, monospace; font-size: large; font-weight: bold; color: #FFFFFF; } .style1 { text-align: center; } </style> &l ...[1351 bytes skipped]... | ||
http://gelatoboutique.com.br/test404page.js | 404 Not Found Content-Length: 103 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gelatoboutique.com.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 10 Sep 2014 08:36:33 GMT
Accept-Ranges: bytes
ETag: "7598a1d5b23cf1:e59db3"
Server: Microsoft-IIS/6.0
Content-Length: 1849
Content-Location: http://gelatoboutique.com.br/index.html
Content-Type: text/html
Last-Modified: Thu, 06 Feb 2014 16:46:59 GMT
X-Powered-By: ASP.NET
...1849 bytes of data.
GET / HTTP/1.1
Host: gelatoboutique.com.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 10 Sep 2014 08:36:33 GMT
Accept-Ranges: bytes
ETag: "7598a1d5b23cf1:e59db3"
Server: Microsoft-IIS/6.0
Content-Length: 1849
Content-Location: http://gelatoboutique.com.br/index.html
Content-Type: text/html
Last-Modified: Thu, 06 Feb 2014 16:46:59 GMT
X-Powered-By: ASP.NET
...1849 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gelatoboutique.com.br
Referer: http://www.google.com/search?q=gelatoboutique.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gelatoboutique.com.br
Referer: http://www.google.com/search?q=gelatoboutique.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gelatoboutique.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gelatoboutique.com.br/
Result: gelatoboutique.com.br is not infected or malware details are not published yet.
Result: gelatoboutique.com.br is not infected or malware details are not published yet.