Scanned pages/files
| Request | Server response | Status |
http://imperial.sg/ | 200 OK Content-Length: 20810 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: hacked by mafia boy ...[6075 bytes skipped]... "images/logoNew.gif" /></a></div> <div style="clear:both"></div> </div> </div> <nav style=" height:47px"> <div class="main"> <ul class="sf-menu"> <li ><a href="index.php"><span><span>Home</span></span></a> <ul> <li><a href="pages.php?id=50">hacked by mafia boy</a></li> </ul></li> <li ><a href="#"><span><span>About Us</span></span></a> <ul> <li><a href="pages.php?id=20">Overview</a></li> <li><a href="halloffame.php">Hall Of Fame</a></li> <li><a href="pages.php?id=15">Vision & Mission Statement</a></li> <li><a href="leaders.php">Our ...[18716 bytes skipped]... | ||
http://imperial.sg/js/jquery-1.6.min.js | 200 OK Content-Length: 90518 Content-Type: application/javascript | clean |
http://imperial.sg/js/jquery.easing.1.3.js | 200 OK Content-Length: 3517 Content-Type: application/javascript | clean |
http://imperial.sg/js/superfish.js | 200 OK Content-Length: 1988 Content-Type: application/javascript | clean |
http://imperial.sg/js/easyTooltip.js | 200 OK Content-Length: 1108 Content-Type: application/javascript | clean |
http://imperial.sg/js/tms-0.3.js | 200 OK Content-Length: 11753 Content-Type: application/javascript | clean |
http://imperial.sg/js/tms_presets.js | 200 OK Content-Length: 18653 Content-Type: application/javascript | clean |
http://imperial.sg/js/jquery.jqtransform.js | 200 OK Content-Length: 6776 Content-Type: application/javascript | clean |
http://imperial.sg/js/FF-cash.js | 200 OK Content-Length: 376 Content-Type: application/javascript | clean |
http://imperial.sg/js/news-ticker.js | 200 OK Content-Length: 14287 Content-Type: application/javascript | clean |
http://imperial.sg/js/jquery.nivo.slider.pack.js | 200 OK Content-Length: 15853 Content-Type: application/javascript | clean |
http://imperial.sg/index.php | 200 OK Content-Length: 20810 Content-Type: text/html | clean |
http://imperial.sg/pages.php?id=50 | 200 OK Content-Length: 53803 Content-Type: text/html | clean |
http://imperial.sg/pages.php?id=20 | 200 OK Content-Length: 21241 Content-Type: text/html | clean |
http://imperial.sg/halloffame.php | 200 OK Content-Length: 28914 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: imperial.sg
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Jul 2015 13:15:11 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.4.38
GET / HTTP/1.1
Host: imperial.sg
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Jul 2015 13:15:11 GMT
Server: Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4
Content-Type: text/html
X-Powered-By: PHP/5.4.38
Second query (visit from search engine):
GET / HTTP/1.1
Host: imperial.sg
Referer: http://www.google.com/search?q=imperial.sg
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: imperial.sg
Referer: http://www.google.com/search?q=imperial.sg
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=imperial.sg
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://imperial.sg/
Result: imperial.sg is not infected or malware details are not published yet.
Result: imperial.sg is not infected or malware details are not published yet.