Scanned pages/files
Request | Server response | Status |
http://tgprod.ro/ | 200 OK Content-Length: 54943 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By AdGhosT ...[15972 bytes skipped]... item-388"><a href="http://tgprod.ro/flyere/">Flyere</a></li> <li id="menu-item-387" class="menu-item menu-item-type-post_type menu-item-object-post menu-item-387"><a href="http://tgprod.ro/pliante/">Pliante</a></li> <li id="menu-item-384" class="menu-item menu-item-type-post_type menu-item-object-post menu-item-384"><a href="http://tgprod.ro/adghost/">Hacked By AdGhosT</a></li> <li id="menu-item-386" class="menu-item menu-item-type-post_type menu-item-object-post menu-item-386"><a href="http://tgprod.ro/roll-up-banner/">Roll-up banner</a></li> </ul> </li> <li id="menu-item-17" class="menu-item menu-item-type-taxonomy menu-item-object-category menu-item-has-children menu-item-17"><a href="http://tgprod.ro/category/servicii-si-finisaje/">Servicii si finisaje< ...[47033 bytes skipped]... | ||
http://w.sharethis.com/widget/?wp=4.3.1 | 200 OK Content-Length: 90034 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/plugins/wp-retina-2x/js/retina.min.js?ver=1.3.0 | 200 OK Content-Length: 2575 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/bootstrap/js/bootstrap.min.js?ver=3.5.1 | 200 OK Content-Length: 31819 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/plugins/js_composer/assets/lib/isotope/dist/isotope.pkgd.min.js?ver=4.4.3 | 200 OK Content-Length: 35624 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/js/fancyBox/jquery.mousewheel-3.0.6.pack.js?ver=3.5.1 | 200 OK Content-Length: 1384 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/js/fancyBox/jquery.fancybox.pack.js?ver=3.5.1 | 200 OK Content-Length: 23135 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/js/fancyBox/helpers/jquery.fancybox-thumbs.js?ver=3.5.1 | 200 OK Content-Length: 3836 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/js/flexslider/jquery.flexslider-min.js?ver=3.5.1 | 200 OK Content-Length: 16917 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/js/jquery.theme.js?ver=3.5.1 | 200 OK Content-Length: 49548 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/themes/mx/js/jquery.likepost.js?ver=3.5.1 | 200 OK Content-Length: 812 Content-Type: application/x-javascript | clean |
http://tgprod.ro/wp-content/plugins/js_composer/assets/js/js_composer_front.js?ver=4.4.3 | 200 OK Content-Length: 27318 Content-Type: application/x-javascript | clean |
http://tgprod.ro/afise/ | 200 OK Content-Length: 69879 Content-Type: text/html | clean |
http://tgprod.ro/author/administrator/ | 200 OK Content-Length: 68877 Content-Type: text/html | clean |
http://tgprod.ro/wp-content/themes/mx/js/ie10-viewport-bug-workaround.js | 200 OK Content-Length: 693 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tgprod.ro
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 03 Dec 2015 05:20:30 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Link: <http://tgprod.ro/>; rel=shortlink
X-Pingback: http://tgprod.ro/xmlrpc.php
GET / HTTP/1.1
Host: tgprod.ro
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 03 Dec 2015 05:20:30 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Type: text/html; charset=UTF-8
Link: <http://tgprod.ro/>; rel=shortlink
X-Pingback: http://tgprod.ro/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: tgprod.ro
Referer: http://www.google.com/search?q=tgprod.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tgprod.ro
Referer: http://www.google.com/search?q=tgprod.ro
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tgprod.ro
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tgprod.ro/
Result: tgprod.ro is not infected or malware details are not published yet.
Result: tgprod.ro is not infected or malware details are not published yet.