Scanned pages/files
Request | Server response | Status |
http://www.repeamaster.com/ | 200 OK Content-Length: 20888 Content-Type: text/html | clean |
http://www.repeamaster.com/include/xoops.js | 200 OK Content-Length: 14162 Content-Type: application/javascript | clean |
http://www.repeamaster.com/modules/formmail/index.php?id_form=1 | 200 OK Content-Length: 16493 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Formmail 1.3 hacked by ...[14268 bytes skipped]... r/> </td> <td> </td> </tr> <tr> <td colspan="2"> </td> </tr> </table> </td> </tr> </table> </form> <br /><br /> <div style='text-align: right; font-size: x-small; font-style: italic;'>Formmail 1.3 hacked by <a href='http://www.chushokigyo.net/' target='_blank'>Chushokigyo.net</a></div><div style='text-align: right; font-size: 6pt; font-style: italic;'> Powered by FormMail 1.0beta by Tom <a href='http://malaika.s31.xrea.com/' target='_blank'>Malaika System</a>Based on Formulaire 1.0 © 2003 <a href='http://www.xoops-themes.com/' target='_blank'>xoops-themes·com</a> / Liaise 1.0b5 by NS Tai (aka tuff) < ...[4948 bytes skipped]... | ||
http://www.repeamaster.com/modules/pico/index.php?content_id=1 | 200 OK Content-Length: 24073 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/pico/index.php?content_id=2 | 200 OK Content-Length: 16577 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/pico/index.php?content_id=4 | 200 OK Content-Length: 24139 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/xoopsfaq | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Feb 2015 09:08:15 GMT Location: http://www.repeamaster.com/modules/xoopsfaq/ Server: Apache/2.2.25 Content-Length: 252 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.repeamaster.com/modules/xoopsfaq/ | 200 OK Content-Length: 15583 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/d3blog/ | 200 OK Content-Length: 39531 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/d3blog/archives.php | 200 OK Content-Length: 20686 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/myalbum | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Feb 2015 09:08:21 GMT Location: http://www.repeamaster.com/modules/myalbum/ Server: Apache/2.2.25 Content-Length: 251 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.repeamaster.com/modules/myalbum/ | 200 OK Content-Length: 38942 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/pico/index.php?content_id=3 | 200 OK Content-Length: 17149 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/weblinks/ | 200 OK Content-Length: 19083 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/weblinks/submit.php | 200 OK Content-Length: 51465 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/weblinks/topten.php?hit=1 | 200 OK Content-Length: 17675 Content-Type: text/html | clean |
http://www.repeamaster.com/modules/weblinks/topten.php?rate=1 | 200 OK Content-Length: 17673 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: repeamaster.com
Result:
GET / HTTP/1.1
Host: repeamaster.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: repeamaster.com
Referer: http://www.google.com/search?q=repeamaster.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: repeamaster.com
Referer: http://www.google.com/search?q=repeamaster.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=repeamaster.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://repeamaster.com/
Result: repeamaster.com is not infected or malware details are not published yet.
Result: repeamaster.com is not infected or malware details are not published yet.