Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tuugo.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://tuugo.net/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mall.i0728.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 06 Jan 2015 17:16:49 GMT
Accept-Ranges: bytes
ETag: "6f-53ea4930-3f0ec3d5e06355"
Server: LiteSpeed
Content-Length: 111
Content-Type: text/html
Last-Modified: Tue, 12 Aug 2014 17:04:48 GMT
...111 bytes of data.
GET / HTTP/1.1
Host: mall.i0728.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 06 Jan 2015 17:16:49 GMT
Accept-Ranges: bytes
ETag: "6f-53ea4930-3f0ec3d5e06355"
Server: LiteSpeed
Content-Length: 111
Content-Type: text/html
Last-Modified: Tue, 12 Aug 2014 17:04:48 GMT
...111 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mall.i0728.com
Referer: http://www.google.com/search?q=mall.i0728.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mall.i0728.com
Referer: http://www.google.com/search?q=mall.i0728.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://tuugo.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 20 Dec 2014 02:46:24 GMT Location: http://www.tuugo.net/ Content-Length: 178 Content-Type: text/html | clean |
http://www.tuugo.net/ | 200 OK Content-Length: 50108 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: static.tuugo.net var base_url="http://www.tuugo.net/";var already_rated_2="Anda siap mempunyai peringkat pada item ini. Anda ingin merubah vote anda sekarang?";var please_confirm="Silakan konfirmasi";var yes="Ya";var no="Tidak";var static_base_url="http://static.tuugo.net/";var please_wait="Tunggu sesaat";var please_wait_loading="Please wait, loading..";var email_is_valid="Email yang masih Berlaku";var email_is_not_valid="Email tidak berlaku";var captcha_is_not_valid="Kode Pengaman tidak berlaku. Silahkan coba lagi.";var minimal_characters_count="Minimal characters count for this field is {*count*}";var phone_has_invalid_format="Phone has invalid format";var some_error_occured="Terdapat beberapa kesalaha ...[3419 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js | 200 OK Content-Length: 94840 Content-Type: text/javascript | clean |
http://static.tuugo.net/resources/scripts/base_compressed1419000447.js | 200 OK Content-Length: 210082 Content-Type: application/x-javascript | clean |
http://static.tuugo.net/resources/scripts/low_visits/low_visits_compressed1419000447.js | 200 OK Content-Length: 27795 Content-Type: application/x-javascript | clean |
http://tuugo.net/test404page.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Sat, 20 Dec 2014 02:46:28 GMT Location: http://www.tuugo.net/test404page.js Content-Length: 178 Content-Type: text/html | clean |
http://www.tuugo.net/test404page.js | HTTP/1.1 302 Moved Temporarily Connection: close Date: Sat, 20 Dec 2014 02:46:29 GMT Location: http://static.tuugo.net/test404page.js Content-Length: 154 Content-Type: text/html | malicious |
http://static.tuugo.net/test404page.js | 404 Not Found Content-Length: 1493 Content-Type: image/jpeg | clean |