Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gays.net.br
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Tue, 03 Mar 2015 13:10:02 GMT
Server: Microsoft-IIS/8.0
Content-Length: 34729
Content-Type: text/html; Charset=ISO-8859-1
Set-Cookie: ASPSESSIONIDSCCDRRDB=CGPPMCKCGBNCGOPPFHANMFPI; path=/
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
...34729 bytes of data.
GET / HTTP/1.1
Host: gays.net.br
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Tue, 03 Mar 2015 13:10:02 GMT
Server: Microsoft-IIS/8.0
Content-Length: 34729
Content-Type: text/html; Charset=ISO-8859-1
Set-Cookie: ASPSESSIONIDSCCDRRDB=CGPPMCKCGBNCGOPPFHANMFPI; path=/
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
...34729 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gays.net.br
Referer: http://www.google.com/search?q=gays.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gays.net.br
Referer: http://www.google.com/search?q=gays.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://gays.net.br/ | 200 OK Content-Length: 34729 Content-Type: text/html | clean |
http://gays.net.br/includes/js/jquery.js | 200 OK Content-Length: 57429 Content-Type: application/javascript | clean |
http://gays.net.br/includes/js/geral.js | 200 OK Content-Length: 5872 Content-Type: application/javascript | clean |
http://gays.net.br/filmes.asp?c=1001&d=amadores | 200 OK Content-Length: 50115 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=1007&d=asiáticos | 200 OK Content-Length: 44973 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=32596&d=bem-dotados | 200 OK Content-Length: 54296 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=64464&d=bofes | 200 OK Content-Length: 53210 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=1017&d=boquete | 200 OK Content-Length: 53799 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=26515&d=brinquedos | 200 OK Content-Length: 52682 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=26474&d=bunda-pra-boca | 200 OK Content-Length: 50026 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=26484&d=clássicos | 200 OK Content-Length: 53289 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=26500&d=couro | 200 OK Content-Length: 52362 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=26508&d=cunete | 200 OK Content-Length: 53365 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=26488&d=dupla-penetracao | 200 OK Content-Length: 46518 Content-Type: text/html | clean |
http://gays.net.br/filmes.asp?c=64472&d=esportes | 200 OK Content-Length: 48007 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gays.net.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gays.net.br/
Result: gays.net.br is not infected or malware details are not published yet.
Result: gays.net.br is not infected or malware details are not published yet.