Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tmt.net.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Mar 2015 07:04:15 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://tmt.net.br/xmlrpc.php
GET / HTTP/1.1
Host: tmt.net.br
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 01 Mar 2015 07:04:15 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://tmt.net.br/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: tmt.net.br
Referer: http://www.google.com/search?q=tmt.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tmt.net.br
Referer: http://www.google.com/search?q=tmt.net.br
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://tmt.net.br/ | 200 OK Content-Length: 20345 Content-Type: text/html | clean |
http://tmt.net.br/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.3 | 200 OK Content-Length: 10263 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-includes/js/jquery/jquery.js?ver=1.7.2 | 200 OK Content-Length: 94861 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/nextgen-gallery/js/jquery.cycle.all.min.js?ver=2.9995 | 200 OK Content-Length: 26590 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/nextgen-gallery/js/ngg.slideshow.min.js?ver=1.06 | 200 OK Content-Length: 1791 Content-Type: application/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/cyrcle.js | 200 OK Content-Length: 53703 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/jquery.mousewheel.min.js | 200 OK Content-Length: 2401 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/jquery.jscrollpane.min.js | 200 OK Content-Length: 14616 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/inputMask.js | 200 OK Content-Length: 7181 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/jCarouselLite.js | 200 OK Content-Length: 13102 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/jquery.galleriffic.js | 200 OK Content-Length: 32124 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/jquery.opacityrollover.js | 200 OK Content-Length: 960 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/maskedinput.js | 200 OK Content-Length: 2383 Content-Type: application/javascript | clean |
http://tmt.net.br/wp-content/plugins/js/jsdefault.js | 200 OK Content-Length: 25395 Content-Type: application/javascript | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tmt.net.br
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tmt.net.br/
Result: tmt.net.br is not infected or malware details are not published yet.
Result: tmt.net.br is not infected or malware details are not published yet.