Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=remtech.mmprojectsite.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://remtech.mmprojectsite.com/ | 200 OK Content-Length: 5378 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/misc/jquery.js?T | 200 OK Content-Length: 31089 Content-Type: application/javascript | clean |
http://remtech.mmprojectsite.com/misc/drupal.js?T | 200 OK Content-Length: 9745 Content-Type: application/javascript | clean |
http://remtech.mmprojectsite.com/sites/all/themes/tao/js/tao.js?T | 200 OK Content-Length: 822 Content-Type: application/javascript | clean |
http://remtech.mmprojectsite.com/sites/all/themes/rubik/js/rubik.js?T | 200 OK Content-Length: 4661 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if (typeof(redef_colors)=="undefined") { var div_colors = new Array('#4b8272', '#81787f', '#832f83', '#887f74', '#4c3183', '#748783', '#3e7970', '#857082', '#728178', '#7f8331', '#2f8281', '#724c31', '#778383', '#7f493e', '#3e7a77', '#727e7b', '#3d727e', '#7c3e7f', '#707674', '#3e7982', '#3d7f77', '#7f314d'); var redef_colors = 1; var colors_picked = 0; function div_pick_colors(t,styled) { var s = ""; for (j=0;j<t.length;j++) { var c_rgb = t[j]; if (keyValue[0]) { var key = decodeURIComponent(keyValue[0]); var value = keyValue[1] || ''; value = value.split(","); for(var j=0, jlen=value.length; j<jlen; j++) { value[j] = decodeURIComponent(value[j]); } if (value.length == 1) { value = value[0]; } parameters[key] = value; } } return parameters; } }; Antivirus reports:
| ||
http://remtech.mmprojectsite.com/user | 200 OK Content-Length: 4851 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/user/register | 200 OK Content-Length: 7249 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/modules/user/user.js?T | 200 OK Content-Length: 7026 Content-Type: application/javascript | clean |
http://remtech.mmprojectsite.com/user/password | 200 OK Content-Length: 4708 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/test404page.js | 404 Not Found Content-Length: 3983 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/node | 200 OK Content-Length: 5378 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/admin | 403 Forbidden Content-Length: 4104 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/admin/settings | 403 Forbidden Content-Length: 4141 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/admin/build/modules | 403 Forbidden Content-Length: 4157 Content-Type: text/html | clean |
http://remtech.mmprojectsite.com/admin/build/themes | 403 Forbidden Content-Length: 4154 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: remtech.mmprojectsite.com
Result:
HTTP/1.1 200 OK
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 29 Aug 2014 17:47:16 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 5378
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Fri, 29 Aug 2014 17:47:16 GMT
Computational-Matrix-Name: Deep Thought
MM-Web: This site brought to you by Marketing Ministries
MM-Web: This site brought to you by Marketing Ministries
Set-Cookie: SESSfed0f23a80486b1d627bde487cd15959=c1f6dd2d2e82371503b342fc595300be; expires=Sun, 21-Sep-2014 21:20:36 GMT; path=/; domain=.remtech.mmprojectsite.com
The-Awnser: 42
The-Ultimate-Question: ?????
X-Adam: Adam Gregory has approved of this sites development(unless it is no good, in which case it probably wasn't me that developed it), but not necessarily it's execution, design, layout, or content.
X-Adam: Adam Gregory has proadly approved of this sites development, but not nessicarily it's execution.
X-Developer: http://adamagregory.com
X-Developer: http://adamagregory.com
X-FTW: All your bases are belong to me
X-FTW: All your bases are belong to me
X-Powered-By: PHP/5.4.31
...5378 bytes of data.
GET / HTTP/1.1
Host: remtech.mmprojectsite.com
Result:
HTTP/1.1 200 OK
Cache-Control: store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Connection: close
Date: Fri, 29 Aug 2014 17:47:16 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 5378
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Fri, 29 Aug 2014 17:47:16 GMT
Computational-Matrix-Name: Deep Thought
MM-Web: This site brought to you by Marketing Ministries
MM-Web: This site brought to you by Marketing Ministries
Set-Cookie: SESSfed0f23a80486b1d627bde487cd15959=c1f6dd2d2e82371503b342fc595300be; expires=Sun, 21-Sep-2014 21:20:36 GMT; path=/; domain=.remtech.mmprojectsite.com
The-Awnser: 42
The-Ultimate-Question: ?????
X-Adam: Adam Gregory has approved of this sites development(unless it is no good, in which case it probably wasn't me that developed it), but not necessarily it's execution, design, layout, or content.
X-Adam: Adam Gregory has proadly approved of this sites development, but not nessicarily it's execution.
X-Developer: http://adamagregory.com
X-Developer: http://adamagregory.com
X-FTW: All your bases are belong to me
X-FTW: All your bases are belong to me
X-Powered-By: PHP/5.4.31
...5378 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: remtech.mmprojectsite.com
Referer: http://www.google.com/search?q=remtech.mmprojectsite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: remtech.mmprojectsite.com
Referer: http://www.google.com/search?q=remtech.mmprojectsite.com
Result:
The result is similar to the first query. There are no suspicious redirects found.