Scanned pages/files
Request | Server response | Status |
http://www.willianferreira.com.br/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 05 Oct 2014 20:16:31 GMT Location: http://br.linkedin.com/in/willianferreiraweb Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 380 Content-Type: text/html; charset=iso-8859-1 | clean |
http://br.linkedin.com/in/willianferreiraweb | 200 OK Content-Length: 31232 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) YEvent.on(window,'load',function(){(function(){var protocol='http:';var d=new Image(1,1);d.onerror=d.onload=function(){d.onerror=d.onload=null;};d.src=[protocol,"//secure-us.imrworldwide.com/cgi-bin/m?ci=us-603751h&cg=0&cc=1&si=",escape(window.location.href),"&ts=compact&rnd=",(new Date()).getTime()].join('');})();}); Antivirus reports:
| ||
http://static.licdn.com:80/scds/common/u/lib/fizzy/fz-1.3.6-min.js | 200 OK Content-Length: 27495 Content-Type: text/javascript | clean |
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=3nuvxgwg15rbghxm1gpzfbya2-35e6ug1j754avohmn1bzmucat-mv3v66b8q0h1hvgvd3yfjv5f-14k913qahq3mh0ac0lh0twk9v-dfoaudjrk6rbf82f45bz5crwi-62og8s54488owngg0s7escdit-c8ha6zrgpgcni7poa5ctye7il-djim7uyllidc9gta745y2wo5m-51dv6schthjydhvcv6rxvospp-d7z5zqt26qe7ht91f8494hqx5-e9rsfv7b5gx0bk0tln31dx3sq-2r5gveucqe4lsolc3n0oljsn1-8v2hz0euzy8m1tk5d6tfrn6j-b88qxy99s08xoe <span>...328 symbols skipped</span> | 200 OK Content-Length: 276860 Content-Type: text/javascript | clean |
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=4zslye83akez5s4mf91hrq425-95d8d303rtd0n9wj4dcjbnh2c&fc=2 | 200 OK Content-Length: 2254 Content-Type: text/javascript | clean |
https://www.linkedin.com/uas/authping?url=http%3A%2F%2Fbr%2Elinkedin%2Ecom%2Fin%2Fwillianferreiraweb | 200 OK Content-Length: 0 Content-Type: text/javascript | clean |
http://s.c.lnkd.licdn.com/scds/concat/common/js?h=d43qahhuvg0j5mlh4c2m9sipk-ew7wxbzv14lsc4vzkh2xrbzqn-dp1os5pzpoyifn8ljtjpfxrz-e17zy6z51dugr6fy4su92o7de-eq875keqggun9hoxzfhbanjes&fc=2 | 200 OK Content-Length: 17345 Content-Type: text/javascript | clean |
http://www.willianferreira.com.br/home?trk=hb_logo | 404 Not Found Content-Length: 449 Content-Type: text/html | clean |
http://www.willianferreira.com.br/test404page.js | 404 Not Found Content-Length: 459 Content-Type: text/html | clean |
http://www.willianferreira.com.br/company/shopfato-com-rcio-eletr-nico-sa?trk=ppro_cprof | 404 Not Found Content-Length: 484 Content-Type: text/html | clean |
http://www.willianferreira.com.br/groups?gid=153064 | 404 Not Found Content-Length: 451 Content-Type: text/html | clean |
http://www.willianferreira.com.br/groups/Bate-papo-sobre-ecommerce-3360808 | 404 Not Found Content-Length: 485 Content-Type: text/html | clean |
http://www.willianferreira.com.br/groups/PHP-Brasil-1554437 | 404 Not Found Content-Length: 470 Content-Type: text/html | clean |
http://www.willianferreira.com.br/groups?gid=1158447 | 404 Not Found Content-Length: 451 Content-Type: text/html | clean |
http://www.willianferreira.com.br/groups/Zend-Framework-Brasil-2362931 | 404 Not Found Content-Length: 481 Content-Type: text/html | clean |
http://www.willianferreira.com.br/groups/iOS-Brasil-Profissionais-143496 | 404 Not Found Content-Length: 483 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: willianferreira.com.br
Result:
GET / HTTP/1.1
Host: willianferreira.com.br
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: willianferreira.com.br
Referer: http://www.google.com/search?q=willianferreira.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: willianferreira.com.br
Referer: http://www.google.com/search?q=willianferreira.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=willianferreira.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://willianferreira.com.br/
Result: willianferreira.com.br is not infected or malware details are not published yet.
Result: willianferreira.com.br is not infected or malware details are not published yet.