Scanned pages/files
Request | Server response | Status |
http://ucevistas.com/ | 200 OK Content-Length: 8990 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Mr. DellatioNx196 - Indonesian Cyber Freedom ...[5289 bytes skipped]... 9%7A%65%74%69%74%6C%65%28%29%7B%20%74%62%35%5F%69%6E%69%74%28%30%29%3B%0A%7D%0A%74%62%35%5F%72%61%6E%64%6F%6D%69%7A%65%74%69%74%6C%65%28%29%3B%0A%0A%3C%2F%73%63%72%69%70%74%3E%20')); //--> </Script> <meta name="robots" content="index, follow"> <link rel="SHORTCUT ICON" href="http://i.imgur.com/QYUFm5u.png"/> <meta name="description" content="Hacked by Mr. DellatioNx196 - Indonesian Cyber Freedom"/> <meta name="googlebot" content="index,follow"/> <meta name="robots" content="all"/> <meta name="robots schedule" content="auto"/> <meta name="distribution" content="global"/> <base target='_blank'/> </head> <title>./Hacked by Mr. DellatioNx196 | Indonesian Cyber Freedom</title> <script src="http://ayriyzone.googlecode.com/f ...[3288 bytes skipped]... | ||
http://ayriyzone.googlecode.com/files/salju.js | 200 OK Content-Length: 3302 Content-Type: text/plain | clean |
http://ayriyzone.googlecode.com/test404page.js | 404 Not Found Content-Length: 1439 Content-Type: text/html | clean |
http://ayriyzone.googlecode.com//www.google.com/ | 404 Not Found Content-Length: 1425 Content-Type: text/html | clean |
http://ucevistas.com//www.google.com/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Fri, 09 Jan 2015 01:17:42 GMT Pragma: no-cache Location: http://ucevistas.com/www.google.com/ Server: nginx admin Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Cache: HIT from Backend X-Pingback: http://ucevistas.com/xmlrpc.php X-Powered-By: PHP/5.3.24 | clean |
http://ucevistas.com/www.google.com/ | 404 Not Found Content-Length: 11168 Content-Type: text/html | clean |
http://ucevistas.com/wp-content/themes/gadgetine/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://ucevistas.com/wp-content/themes/gadgetine/js/jquery-1.6.1.min.js | 200 OK Content-Length: 91356 Content-Type: application/x-javascript | clean |
http://ucevistas.com/wp-content/themes/gadgetine/js/jquery.easing.1.3.min.js | 200 OK Content-Length: 7112 Content-Type: application/x-javascript | clean |
http://ucevistas.com/wp-content/themes/gadgetine/js/jquery.list-rotator.min.js | 200 OK Content-Length: 24619 Content-Type: application/x-javascript | clean |
http://ucevistas.com/wp-includes/js/swfobject.js?ver=2.2-20120417 | 200 OK Content-Length: 10231 Content-Type: application/x-javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19468 Content-Type: text/javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12798 Content-Type: application/javascript | clean |
http://ucevistas.com/category/ucevistas/ | 200 OK Content-Length: 33001 Content-Type: text/html | clean |
http://ucevistas.com/category/ucevistas/academicas/ | 200 OK Content-Length: 31324 Content-Type: text/html | clean |
http://ucevistas.com/category/ucevistas/autoridades/ | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ucevistas.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 01:17:38 GMT
Accept-Ranges: bytes
ETag: "54015-231e-50891b98f2700"
Server: nginx admin
Vary: Accept-Encoding
Content-Length: 8990
Content-Type: text/html
Last-Modified: Mon, 24 Nov 2014 02:41:00 GMT
X-Cache: HIT from Backend
...8990 bytes of data.
GET / HTTP/1.1
Host: ucevistas.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 01:17:38 GMT
Accept-Ranges: bytes
ETag: "54015-231e-50891b98f2700"
Server: nginx admin
Vary: Accept-Encoding
Content-Length: 8990
Content-Type: text/html
Last-Modified: Mon, 24 Nov 2014 02:41:00 GMT
X-Cache: HIT from Backend
...8990 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ucevistas.com
Referer: http://www.google.com/search?q=ucevistas.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ucevistas.com
Referer: http://www.google.com/search?q=ucevistas.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ucevistas.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ucevistas.com/
Result: ucevistas.com is not infected or malware details are not published yet.
Result: ucevistas.com is not infected or malware details are not published yet.