Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: sus.net.br
Result:
GET / HTTP/1.1
Host: sus.net.br
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sus.net.br
Referer: http://www.google.com/search?q=sus.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: sus.net.br
Referer: http://www.google.com/search?q=sus.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.sus.net.br/ | HTTP/1.1 200 OK Connection: close Date: Mon, 02 Mar 2015 15:57:15 GMT Accept-Ranges: bytes ETag: "6c8932-e3-4ba844eb86780" Server: Apache/2.2.3 (CentOS) Content-Length: 227 Content-Type: text/html; charset=UTF-8 Last-Modified: Mon, 05 Mar 2012 19:55:26 GMT | clean |
http://www.comosefaz.com.br/ | 200 OK Content-Length: 31399 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.7/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://www.sus.net.br/js/jquery.nivo.slider.js | 404 Not Found Content-Length: 301 Content-Type: text/html | clean |
http://www.sus.net.br/test404page.js | 404 Not Found Content-Length: 291 Content-Type: text/html | clean |
http://www.sus.net.br/csfjq/jquery/fancybox/jquery.fancybox-1.3.4.pack.js | 200 OK Content-Length: 15624 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/fancybox/jquery.mousewheel-3.0.4.pack.js | 200 OK Content-Length: 1279 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/js/shortcut.js | 200 OK Content-Length: 5793 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-ui/js/jquery-ui-1.8.7.custom.min.js | 200 OK Content-Length: 206617 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-ui/js/jquery.ui.datepicker-pt-BR.js | 200 OK Content-Length: 959 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-validate/jquery.validate.js | 200 OK Content-Length: 37132 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-validate/lib/jquery.form.js | 200 OK Content-Length: 20409 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-validate/lib/jquery.metadata.js | 200 OK Content-Length: 3955 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-validate/localization/messages_ptbr.js | 200 OK Content-Length: 1142 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-validate/localization/methods_pt.js | 200 OK Content-Length: 1649 Content-Type: application/x-javascript | clean |
http://www.sus.net.br/csfjq/jquery/jquery-validate/additional-methods.js | 200 OK Content-Length: 10905 Content-Type: application/x-javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=sus.net.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sus.net.br/
Result: sus.net.br is not infected or malware details are not published yet.
Result: sus.net.br is not infected or malware details are not published yet.