Scanned pages/files
Request | Server response | Status |
http://www.tipocracia.com.br/ | 200 OK Content-Length: 1608 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by Kerupuk <HTML>
<head> <meta name="Description" content="hacked by Kerupuk"> <meta name="keyword" content="hacked by Kerupuk"> <title>Kerupuk</title> <style type="text/css"> *, html, body, a, a:link, a:visited, a:hover, ?#?ayt? { color:?#?00FF00?; cursor:default; } body { background:#000000 ; } #ayt { width:100%px; height:100%px; margin:0px auto; padding:0px; border:1px dashed #00FF00; ...[1438 bytes skipped]... | ||
http://www.tipocracia.com.br/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sun, 29 Nov 2015 00:38:45 GMT Location: http://www.tipocracia.com.br/tpc10/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 | clean |
http://www.tipocracia.com.br/tpc10/ | 200 OK Content-Length: 35145 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js?ver=4.3.1 | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/cufon-yui.js?ver=4.3.1 | 200 OK Content-Length: 28675 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/fonts/yanone-kaffeesatz.font.js?ver=4.3.1 | 200 OK Content-Length: 130991 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-includes/js/swfobject.js?ver=2.2-20120417 | 200 OK Content-Length: 10231 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/jquery.ytchromeless.min.js?ver=4.3.1 | 200 OK Content-Length: 4017 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/supersubs.js?ver=4.3.1 | 200 OK Content-Length: 4068 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/superfish.js?ver=4.3.1 | 200 OK Content-Length: 4617 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/flowplayer-3.2.4.min.js?ver=4.3.1 | 200 OK Content-Length: 15723 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/fancybox/jquery.fancybox-1.3.4.pack.js?ver=4.3.1 | 200 OK Content-Length: 15624 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/jquery.insetBorderEffect.js?ver=4.3.1 | 200 OK Content-Length: 3930 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/bfi.js?ver=1.0.4 | 200 OK Content-Length: 35101 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/bfi-initvideos.js?ver=4.3.1 | 200 OK Content-Length: 13291 Content-Type: application/javascript | clean |
http://www.tipocracia.com.br/tpc10/wp-content/themes/armyknife_v1.0/scripts/jquery.css3effects.js?ver=4.3.1 | 200 OK Content-Length: 1429 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tipocracia.com.br
Result:
GET / HTTP/1.1
Host: tipocracia.com.br
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: tipocracia.com.br
Referer: http://www.google.com/search?q=tipocracia.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tipocracia.com.br
Referer: http://www.google.com/search?q=tipocracia.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tipocracia.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tipocracia.com.br/
Result: tipocracia.com.br is not infected or malware details are not published yet.
Result: tipocracia.com.br is not infected or malware details are not published yet.