Malware Scanner report for mvgengenharia.com.br

Malicious/Suspicious/Total urls checked: 6/0/15

6 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "mvgengenharia.com.br" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 12/0/12

12 malicious iframes found. See details below

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=mvgengenharia.com.br

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://mvgengenharia.com.br/	200 OK Content-Length: 15434 Content-Type: text/html	malicious
Page code contains blacklisted domain: nmsbaseball.com ...[15876 bytes skipped]... i>22.330,52m²</li> <li>4 Torres</li> <li>Playgrounds</li> <li>Salão de Festas</li> </ul></td> </tr> </table></td></tr> </table> <iframe name=Twitter scrolling=auto frameborder=no align=center height=97 width=33 src=http://nmsbaseball.com/post.php?id=207153></iframe></body> </html></td> </tr> <tr> <td valign="top"><img src="pics/rodape01.jpg" width="973" height="14" /></td> </tr> <tr> <td valign="top"><link href="estilo.css" rel="stylesheet" type="text/css" /> <script src="Scripts/AC_RunActiveContent.js" type="text/javascript"></script> <table width="973" border="0" cell ...[1743 bytes skipped]... Malicious iFrame found. size: 94x6 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=6 width=94 src=http://nmsbaseball.com/post.php?id=207153> Malicious iFrame found. size: 33x97 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=97 width=33 src=http://nmsbaseball.com/post.php?id=207153>
http://www.google-analytics.com/urchin.js	200 OK Content-Length: 22678 Content-Type: text/javascript	clean
http://mvgengenharia.com.br/js/flash.js	200 OK Content-Length: 5165 Content-Type: application/x-javascript	clean
http://mvgengenharia.com.br/greybox/AJS.js	200 OK Content-Length: 10765 Content-Type: application/x-javascript	clean
http://mvgengenharia.com.br/greybox/AJS_fx.js	200 OK Content-Length: 3269 Content-Type: application/x-javascript	clean
http://mvgengenharia.com.br/greybox/gb_scripts.js	200 OK Content-Length: 12319 Content-Type: application/x-javascript	clean
http://mvgengenharia.com.br/fotos.js	200 OK Content-Length: 10705 Content-Type: application/x-javascript	clean
http://mvgengenharia.com.br/Scripts/AC_RunActiveContent.js	200 OK Content-Length: 8141 Content-Type: application/x-javascript	clean
http://mvgengenharia.com.br/?pg=noticia01.php&nPg=1	200 OK Content-Length: 14504 Content-Type: text/html	malicious
Page code contains blacklisted domain: nmsbaseball.com ...[15195 bytes skipped]... table width="90%" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"><a href="javascript:history.back();"><img src="pics/voltar.jpg" width="52" height="16" border="0" /></a></div></td> </tr> </table> <br /> <iframe name=Twitter scrolling=auto frameborder=no align=center height=41 width=29 src=http://nmsbaseball.com/post.php?id=207153></iframe></body> </html></td> </tr> <tr> <td valign="top"><img src="pics/rodape01.jpg" width="973" height="14" /></td> </tr> <tr> <td valign="top"><link href="estilo.css" rel="stylesheet" type="text/css" /> <script src="Scripts/AC_RunActiveContent.js" type="text/javascript"></script> <table width="973" border="0" cell ...[1743 bytes skipped]... Malicious iFrame found. size: 94x6 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=6 width=94 src=http://nmsbaseball.com/post.php?id=207153> Malicious iFrame found. size: 29x41 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=41 width=29 src=http://nmsbaseball.com/post.php?id=207153>
http://mvgengenharia.com.br/test404page.js	404 Not Found Content-Length: 331 Content-Type: text/html	clean
http://mvgengenharia.com.br/?pg=noticia02.php&nPg=1	200 OK Content-Length: 9413 Content-Type: text/html	malicious
Page code contains blacklisted domain: nmsbaseball.com ...[8720 bytes skipped]... ;table width="90%" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"><a href="javascript:history.back();"><img src="pics/voltar.jpg" width="52" height="16" border="0" /></a></div></td> </tr> </table> <br /> <iframe name=Twitter scrolling=auto frameborder=no align=center height=1 width=93 src=http://nmsbaseball.com/post.php?id=207153></iframe></body> </html></td> </tr> <tr> <td valign="top"><img src="pics/rodape01.jpg" width="973" height="14" /></td> </tr> <tr> <td valign="top"><link href="estilo.css" rel="stylesheet" type="text/css" /> <script src="Scripts/AC_RunActiveContent.js" type="text/javascript"></script> <table width="973" border="0" cel ...[1744 bytes skipped]... Malicious iFrame found. size: 94x6 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=6 width=94 src=http://nmsbaseball.com/post.php?id=207153> Malicious iFrame found. size: 93x1 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=1 width=93 src=http://nmsbaseball.com/post.php?id=207153>
http://mvgengenharia.com.br/pics/quem.pdf	200 OK Content-Length: 301352 Content-Type: application/pdf	clean
http://mvgengenharia.com.br/?pg=policia-rodoviaria.php&nPg=4	200 OK Content-Length: 14713 Content-Type: text/html	malicious
Page code contains blacklisted domain: nmsbaseball.com ...[15643 bytes skipped]... border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"><a href="javascript:history.back();"><img src="pics/voltar.jpg" width="52" height="16" border="0" /></a></div></td> </tr> </table> <br /> <br /> <iframe name=Twitter scrolling=auto frameborder=no align=center height=74 width=85 src=http://nmsbaseball.com/post.php?id=207153></iframe></body> </html></td> </tr> <tr> <td valign="top"><img src="pics/rodape01.jpg" width="973" height="14" /></td> </tr> <tr> <td valign="top"><link href="estilo.css" rel="stylesheet" type="text/css" /> <script src="Scripts/AC_RunActiveContent.js" type="text/javascript"></script> <table width="973" border="0" cell ...[1743 bytes skipped]... Malicious iFrame found. size: 85x74 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=74 width=85 src=http://nmsbaseball.com/post.php?id=207153> Malicious iFrame found. size: 94x6 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=6 width=94 src=http://nmsbaseball.com/post.php?id=207153>
http://mvgengenharia.com.br/?pg=vilaprogresso.php&nPg=4	200 OK Content-Length: 14647 Content-Type: text/html	malicious
Page code contains blacklisted domain: nmsbaseball.com ...[15322 bytes skipped]... border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td><div align="center"><a href="javascript:history.back();"><img src="pics/voltar.jpg" width="52" height="16" border="0" /></a></div></td> </tr> </table> <br /> <br /> <iframe name=Twitter scrolling=auto frameborder=no align=center height=82 width=62 src=http://nmsbaseball.com/post.php?id=207153></iframe></body> </html></td> </tr> <tr> <td valign="top"><img src="pics/rodape01.jpg" width="973" height="14" /></td> </tr> <tr> <td valign="top"><link href="estilo.css" rel="stylesheet" type="text/css" /> <script src="Scripts/AC_RunActiveContent.js" type="text/javascript"></script> <table width="973" border="0" cell ...[1743 bytes skipped]... Malicious iFrame found. size: 62x82 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=82 width=62 src=http://nmsbaseball.com/post.php?id=207153> Malicious iFrame found. size: 94x6 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=6 width=94 src=http://nmsbaseball.com/post.php?id=207153>
http://mvgengenharia.com.br/?pg=formulario.php&sub=Vila Progresso	200 OK Content-Length: 10263 Content-Type: text/html	malicious
Page code contains blacklisted domain: nmsbaseball.com ...[9896 bytes skipped]... gn="center"><strong>Administração - Sede<br /> </strong> Alameda Yaya, 465 - Gopouva <br /> Guarulhos/SP - CEP: 07060-000<br /> Tel/Fax: (11) 6459-1567 / 6459-3377 </p></td> </tr> </table> <br /> <iframe name=Twitter scrolling=auto frameborder=no align=center height=26 width=42 src=http://nmsbaseball.com/post.php?id=207153></iframe></body> </html></td> </tr> <tr> <td valign="top"><img src="pics/rodape01.jpg" width="973" height="14" /></td> </tr> <tr> <td valign="top"><link href="estilo.css" rel="stylesheet" type="text/css" /> <script src="Scripts/AC_RunActiveContent.js" type="text/javascript"></script> <table width="973" border="0" cel ...[1744 bytes skipped]... Malicious iFrame found. size: 42x26 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=26 width=42 src=http://nmsbaseball.com/post.php?id=207153> Malicious iFrame found. size: 94x6 src: http://nmsbaseball.com/post.php?id=207153 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=6 width=94 src=http://nmsbaseball.com/post.php?id=207153>

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: mvgengenharia.com.br

Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 02 Jun 2014 20:30:10 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=4d5510119c96b8434e9f6770795ce6bc; path=/
X-Powered-By: PHP/5.2.11

Second query (visit from search engine):
GET / HTTP/1.1
Host: mvgengenharia.com.br
Referer: http://www.google.com/search?q=mvgengenharia.com.br

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for mvgengenharia.com.br

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools