Scanned pages/files
| Request | Server response | Status |
http://tidtamgps.com/ | 200 OK Content-Length: 1938 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY SHAHIN.SH <title>HACKED BY SHAHIN.SH</Title>
<style type="text/css"> .shahin {color: #3366ff} </style> <script type="text/javascript"> function MM_swapImgRestore() { //v3.0 var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc; } function MM_preloadImages() { //v3.0 var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array(); v ...[1857 bytes skipped]... | ||
http://tidtamgps.com/WWW.irsecteam.org | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 16 May 2015 16:51:29 GMT Location: http://tidtamgps.com/WWW.irsecteam.org/ Server: Apache/2 Vary: Accept-Encoding,User-Agent Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://tidtamgps.com/xmlrpc.php X-Powered-By: PHP/5.2.17 | clean |
http://tidtamgps.com/www.irsecteam.org/ | 200 OK Content-Length: 27097 Content-Type: text/html | clean |
http://tidtamgps.com/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-includes/js/jquery/jquery.js?ver=1.7.1 | 200 OK Content-Length: 93889 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/foundation/jquery.orbit.js?ver=3.3.2 | 200 OK Content-Length: 19341 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/foundation/app.js?ver=3.3.2 | 200 OK Content-Length: 2465 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/foundation/jquery.placeholder.min.js?ver=3.3.2 | 200 OK Content-Length: 1637 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/foundation/jquery.reveal.js?ver=3.3.2 | 200 OK Content-Length: 5282 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/foundation/jquery.tooltips.js?ver=3.3.2 | 200 OK Content-Length: 4730 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/foundation/modernizr.foundation.js?ver=3.3.2 | 200 OK Content-Length: 6630 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/menu.js?ver=3.3.2 | 200 OK Content-Length: 2151 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-content/themes/neuro/core/library/js/mobilemenu.js?ver=3.3.2 | 200 OK Content-Length: 3934 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.8.16 | 200 OK Content-Length: 4365 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.8.16 | 200 OK Content-Length: 3303 Content-Type: application/javascript | clean |
http://tidtamgps.com/wp-includes/js/jquery/ui/jquery.ui.tabs.min.js?ver=1.8.16 | 200 OK Content-Length: 11632 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tidtamgps.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 16 May 2015 16:51:28 GMT
Accept-Ranges: bytes
ETag: "27e8e8-792-4f16f3ca5b800"
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Length: 1938
Content-Type: text/html
Last-Modified: Sun, 02 Feb 2014 16:52:48 GMT
...1938 bytes of data.
GET / HTTP/1.1
Host: tidtamgps.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 16 May 2015 16:51:28 GMT
Accept-Ranges: bytes
ETag: "27e8e8-792-4f16f3ca5b800"
Server: Apache/2
Vary: Accept-Encoding,User-Agent
Content-Length: 1938
Content-Type: text/html
Last-Modified: Sun, 02 Feb 2014 16:52:48 GMT
...1938 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tidtamgps.com
Referer: http://www.google.com/search?q=tidtamgps.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tidtamgps.com
Referer: http://www.google.com/search?q=tidtamgps.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tidtamgps.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tidtamgps.com/
Result: tidtamgps.com is not infected or malware details are not published yet.
Result: tidtamgps.com is not infected or malware details are not published yet.