Scanned pages/files
Request | Server response | Status |
http://passagens-aereas.eu/ | 200 OK Content-Length: 36172 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 148x194 style: hidden src: http://submarinoviagens.afilio.com.br/iframe_wrapper.php?campid=883;4&banid=122&siteid=774&flux=http%3a%2f%2fsubmarinoviagens.afilio.com.br%2fiframe_wrapper.php%3fcampid%3d1%3b4%26banid%3d121%26siteid%3d1%26flux%3dhttp%253a%252f%252fsubmarinoviagens.afilio.com.br%252fiframe_wrapper.php%253fcampid%253d1%253b4%2526banid%253d66%2526siteid%253d1%2526flux%253dhttp%25253a%25252f%25252fstatic.afilio.com.br%25252fsubmarino_viagens%25252fcalendar.htm <iframe style="z-index: 100; position: absolute; margin-top: 4px; width: 148px; display: none;
height: 194px; visibility: hidden; margin-left: -26px; top: 0px; left: 0px" id="calframe"
noresize marginheight="0" src="http://submarinoviagens.afilio.com.br/iframe_wrapper.php?campid=883;4&banid=122&siteid=774&flux=http%3a%2f%2fsubmarinoviagens.afilio.com.br%2fiframe_wrapper.php%3fcampid%3d1%3b4%26banid%3d121%26siteid%3d1%26flux%3dhttp%253a%252f%252fsubmarinoviagens.afilio.com.br%252fiframe_wrapper.php%253fcampid%253d1%253b4%2526banid%253d66%2526siteid%253d1%2526flux%253dhttp%25253a%25252f%25252fstatic.afilio.com.br%25252fsubmarino_viagens%25252fcalendar.htm" frameborder="0" name="calframe"
marginwidth="0" scrolling="no"> | ||
http://passagens-aereas.eu/wp-includes/js/jquery/jquery.js?ver=1.8.3 | 200 OK Content-Length: 93658 Content-Type: text/javascript | clean |
http://www.submarinoviagens.com.br/afilio/jquery/jquery-1.4.2.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/test404page.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/jquery/listaPesqInc.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/jquery/jquery.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/jquery/jquery.autocomplete.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/js/MotorAereoSub.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/js/cal.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/js/IsDate.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
http://www.submarinoviagens.com.br/afilio/js/Valida.js | 404 Not Found Content-Length: 55868 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: passagens-aereas.eu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 24 Sep 2014 15:42:29 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://passagens-aereas.eu/xmlrpc.php
GET / HTTP/1.1
Host: passagens-aereas.eu
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 24 Sep 2014 15:42:29 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
X-Pingback: http://passagens-aereas.eu/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: passagens-aereas.eu
Referer: http://www.google.com/search?q=passagens-aereas.eu
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: passagens-aereas.eu
Referer: http://www.google.com/search?q=passagens-aereas.eu
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=passagens-aereas.eu
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://passagens-aereas.eu/
Result: passagens-aereas.eu is not infected or malware details are not published yet.
Result: passagens-aereas.eu is not infected or malware details are not published yet.