Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: netstock.com.br
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Wed, 16 Apr 2014 03:31:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed, 16 Apr 2014 03:31:10 GMT
Set-Cookie: dfb4c220e5024ea3e5385931d31c9769=-; path=/
GET / HTTP/1.1
Host: netstock.com.br
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Wed, 16 Apr 2014 03:31:10 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed, 16 Apr 2014 03:31:10 GMT
Set-Cookie: dfb4c220e5024ea3e5385931d31c9769=-; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: netstock.com.br
Referer: http://www.google.com/search?q=netstock.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: netstock.com.br
Referer: http://www.google.com/search?q=netstock.com.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://netstock.com.br/ | 200 OK Content-Length: 32076 Content-Type: text/html | clean |
http://netstock.com.br/modules/kwick_menu/js/imageMenu.js | 200 OK Content-Length: 2328 Content-Type: application/javascript | clean |
http://shots.snap.com/ss/580b8b00c9af7e0be88eac54401a2f84/snap_shots.js | 200 OK Content-Length: 15748 Content-Type: text/javascript | clean |
http://www.netstock.com.br/mambots/content/plugin_jw_ts/tabs_slides_comp.js | 200 OK Content-Length: 5474 Content-Type: application/javascript | clean |
http://www.netstock.com.br/mambots/content/plugin_jw_ts/tabs_slides_def_loader.js | 200 OK Content-Length: 1094 Content-Type: application/javascript | clean |
http://www.netstock.com.br/templates/rt_versatility_iii/js/mootools.r462.js | 200 OK Content-Length: 24988 Content-Type: application/javascript | clean |
http://www.netstock.com.br/templates/rt_versatility_iii/js/roktools.js | 200 OK Content-Length: 1006 Content-Type: application/javascript | clean |
http://www.netstock.com.br/templates/rt_versatility_iii/js/mootools.bgiframe.js | 200 OK Content-Length: 964 Content-Type: application/javascript | clean |
http://www.netstock.com.br/templates/rt_versatility_iii/js/rokmoomenu.js | 200 OK Content-Length: 1892 Content-Type: application/javascript | clean |
http://www.netstock.com.br/modules/bamboo_faq/motionpack.js | 404 Not Found Content-Length: 488 Content-Type: text/html | clean |
http://www.netstock.com.br/test404page.js | 404 Not Found Content-Length: 488 Content-Type: text/html | clean |
http://www.netstock.com.br/templates/rt_versatility_iii/js/slimbox.js | 200 OK Content-Length: 4292 Content-Type: application/javascript | clean |
http://netstock.com.br/monoslideshow/swfobject.js | 200 OK Content-Length: 6880 Content-Type: application/javascript | clean |
http://www.netstock.com.br/mambots/content/plugin_jw_allvideos/gz_eolas_fix.js | 200 OK Content-Length: 51 Content-Type: application/javascript | clean |
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=netstock.com.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://netstock.com.br/
Result: netstock.com.br is not infected or malware details are not published yet.
Result: netstock.com.br is not infected or malware details are not published yet.