Scanned pages/files
Request | Server response | Status |
http://www.sellin.com.br/ | HTTP/1.1 200 OK Connection: close Date: Tue, 02 Dec 2014 09:17:05 GMT Accept-Ranges: bytes ETag: "a78d45c57440cb1:2d9fa2" Server: Microsoft-IIS/6.0 Content-Length: 262 Content-Location: http://www.sellin.com.br/index.html Content-Type: text/html Last-Modified: Fri, 20 Aug 2010 14:34:18 GMT X-Powered-By: ASP.NET | clean |
http://www.sellin.com.br/index.html | HTTP/1.1 200 OK Connection: close Date: Tue, 02 Dec 2014 09:17:05 GMT Accept-Ranges: bytes ETag: "a78d45c57440cb1:2d9fa2" Server: Microsoft-IIS/6.0 Content-Length: 262 Content-Type: text/html Last-Modified: Fri, 20 Aug 2010 14:34:18 GMT X-Powered-By: ASP.NET | clean |
http://www.sellin.com.br/site | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 02 Dec 2014 09:17:07 GMT Location: http://www.sellin.com.br/site/ Server: Microsoft-IIS/6.0 Content-Length: 153 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://www.sellin.com.br/site/ | 200 OK Content-Length: 13249 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Monsters Defacers ...[8877 bytes skipped]... /td></tr> <tr> <td> <img src='../gerenciador/uploads/20121217_2natal_sel.jpg' alt='' border='1' width='90' height='70'> </td> <td><a href="detalheNoticia.php?id=521"> <font size=2 color='#464646' face="tahoma"> 17/12/2012 <br> <b> <script>document.documentElement.innerHTML = unescape("<title>Hacked by Monsters Defacers</title><center><pre><h1>Hacked by MonstersDefacers</h1><br><br><h2> Site do Vereador Sellin é invadido, é isso mesmo, produção ? </h2><<br><h4> Somos: kAheni - MrDeface - Z3R0 - Spectroman - <br></h3><h4>Brasil, um país de poucos </h4></big>");</script> </A> </b><br> Sellin saúda a todos os amigos e colaboradores </td> ...[7997 bytes skipped]... | ||
http://www.sellin.com.br/site/todosArtigos.php | 200 OK Content-Length: 7277 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=26 | 200 OK Content-Length: 4685 Content-Type: text/html | clean |
http://www.sellin.com.br/test404page.js | 404 Not Found Content-Length: 103 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=25 | 200 OK Content-Length: 4675 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=24 | 200 OK Content-Length: 4716 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=23 | 200 OK Content-Length: 4693 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=22 | 200 OK Content-Length: 4684 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=21 | 200 OK Content-Length: 4692 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=20 | 200 OK Content-Length: 4712 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=19 | 200 OK Content-Length: 4693 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=18 | 200 OK Content-Length: 4738 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=17 | 200 OK Content-Length: 4690 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=16 | 200 OK Content-Length: 4687 Content-Type: text/html | clean |
http://www.sellin.com.br/site/detalheArtigo.php?id=15 | 200 OK Content-Length: 4711 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sellin.com.br
Result:
GET / HTTP/1.1
Host: sellin.com.br
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sellin.com.br
Referer: http://www.google.com/search?q=sellin.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sellin.com.br
Referer: http://www.google.com/search?q=sellin.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sellin.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sellin.com.br/
Result: sellin.com.br is not infected or malware details are not published yet.
Result: sellin.com.br is not infected or malware details are not published yet.