Scanned pages/files
| Request | Server response | Status |
http://twtgo.com/ | 200 OK Content-Length: 21944 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Mr.KEsRa ...[14536 bytes skipped]... <td align="center" valign="top" style="padding-top: 5px;"> <!--main content --> <table width="552" border="0" align="center" cellpadding="0" cellspacing="0"> <tr> <td width="4" height="40" align="center" valign="middle" class="table2_titletl"> </td> <td width="544" height="40" align="center" valign="middle" class="table2_title_top">Hacked by Mr.KEsRa</td> <td width="4" height="40" align="center" valign="middle" class="table2_titletr"> </td> </tr> <div class="main1"></div> <tr> <td width="4" align="center" valign="middle" class="table2_left"> </td> <td valign="top" class="main2_pad"> <table width="302" align="right" cellpadding="0" cellspacing="0"> <tr> ...[12202 bytes skipped]... | ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21308 Content-Type: text/javascript | clean |
http://affiliateadrotator.com/jquery-latest.js | 200 OK Content-Length: 72191 Content-Type: application/x-javascript | clean |
http://affiliateadrotator.com/ads.js | 200 OK Content-Length: 1615 Content-Type: application/x-javascript | clean |
http://twtgo.com/index.php | 200 OK Content-Length: 21944 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Facebook_Success.html | 200 OK Content-Length: 22304 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Twitter_Secrets.html | 200 OK Content-Length: 22311 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=10_Top_Twitter_Secrets.html | 200 OK Content-Length: 22309 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Traffic.html | 200 OK Content-Length: 17644 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Business.html | 200 OK Content-Length: 22303 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Twitter_Headlines.html | 200 OK Content-Length: 22310 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=5_Twitter_Tips.html | 200 OK Content-Length: 22294 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=10_Twitter_Tools_to_Find_Followers.html | 200 OK Content-Length: 22304 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Build_a_Strong_Brand.html | 200 OK Content-Length: 22308 Content-Type: text/html | clean |
http://twtgo.com/page.php?id=Twit_on_Twitter.html | 200 OK Content-Length: 22301 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: twtgo.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 13:38:00 GMT
Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3
Vary: User-Agent,Accept-Encoding
Content-Length: 21944
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...21944 bytes of data.
GET / HTTP/1.1
Host: twtgo.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 02 Oct 2014 13:38:00 GMT
Server: Apache mod_fcgid/2.3.7 mod_auth_pgsql/2.0.3
Vary: User-Agent,Accept-Encoding
Content-Length: 21944
Content-Type: text/html
X-Powered-By: PHP/5.2.17
...21944 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: twtgo.com
Referer: http://www.google.com/search?q=twtgo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: twtgo.com
Referer: http://www.google.com/search?q=twtgo.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=twtgo.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://twtgo.com/
Result: twtgo.com is not infected or malware details are not published yet.
Result: twtgo.com is not infected or malware details are not published yet.