Scanned pages/files
| Request | Server response | Status |
http://bcperlycertoux.org/ | 200 OK Content-Length: 43497 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Lou Sh ...[15524 bytes skipped]... lass="complements"> <a href="spip.php?rubrique10" title="Se rendre sur la page de cette rubrique">Adultes</a> - <a href="spip.php?article667#commentaires">Aucun commentaire</a> </div> <!-- Fin complements --> <div class="introduction"> Hacked By Lou Sh <br />Hacked By Lou Sh Team Ghosts Western Sahara Message de Sahraouis à l’Etat français J’ai fatigué de vos positions de l’Etat qui se tient avec les Sahraouis contre l’occupation marocaine Chaque fois que vous utilisez le droit de veto and’re ajoutant ? la souffrance du (...) </div> <!-- Fin introduction --> <div class="nettoyeur"></div> | ||
http://bcperlycertoux.org/prive/javascript/jquery.js | 200 OK Content-Length: 163855 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/prive/javascript/jquery.form.js | 200 OK Content-Length: 20400 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/prive/javascript/ajaxCallback.js | 200 OK Content-Length: 10815 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/extensions/porte_plume/javascript/xregexp-min.js | 200 OK Content-Length: 7084 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/extensions/porte_plume/javascript/jquery.markitup_pour_spip.js | 200 OK Content-Length: 22168 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/extensions/porte_plume/javascript/jquery.previsu_spip.js | 200 OK Content-Length: 2512 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/spip.php?page=porte_plume_start.js&lang=fr | 200 OK Content-Length: 12342 Content-Type: text/javascript | clean |
http://bcperlycertoux.org/plugins/boutonstexte/boutonstexte.js | 200 OK Content-Length: 4081 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/plugins/sarkaspip_300/scripts/menu_deroulant_vertical.js | 200 OK Content-Length: 748 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/plugins/sarkaspip_300/scripts/jquery.innerfade.js | 200 OK Content-Length: 2636 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/plugins/thickbox2/javascript/thickbox.js | 200 OK Content-Length: 15658 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/plugins/phpmyvisites_1_9/spip_phpmyvisites.js | 200 OK Content-Length: 2661 Content-Type: application/x-javascript | clean |
http://bcperlycertoux.org/spip.php?article9 | 200 OK Content-Length: 29510 Content-Type: text/html | clean |
http://bcperlycertoux.org/spip.php?rubrique3 | 200 OK Content-Length: 29552 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bcperlycertoux.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 19 Apr 2015 00:19:26 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Sun, 19 Apr 2015 00:19:26 GMT
Composed-By: SPIP 2.1.0 @ www.spip.net + images(1.0.1), msie_compat(1.0), porte_plume(1.7.1), safehtml(1.3.7), article_pdf(0.1), boutonstexte(0.3.1), cfg(1.14.3), cextras(1.4.4), crayons(1.5.1), jeux(1.3), entravaux(1.2), couteau_suisse(1.8.18.00), phpmv(0.1), rainette(1.1), spip_bonux(1.8.5), spiplistes(2.0144), sarkaspip(3.0.3), thickbox1(0.3), accesrestreint(0.3.0.3), autorite(0.9.2), contact(0.5.2), compresseur(1.0)
X-Outils-CS: mailcrypt, insert_head, introduction
X-Spip-Cache: 7200
GET / HTTP/1.1
Host: bcperlycertoux.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 19 Apr 2015 00:19:26 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Sun, 19 Apr 2015 00:19:26 GMT
Composed-By: SPIP 2.1.0 @ www.spip.net + images(1.0.1), msie_compat(1.0), porte_plume(1.7.1), safehtml(1.3.7), article_pdf(0.1), boutonstexte(0.3.1), cfg(1.14.3), cextras(1.4.4), crayons(1.5.1), jeux(1.3), entravaux(1.2), couteau_suisse(1.8.18.00), phpmv(0.1), rainette(1.1), spip_bonux(1.8.5), spiplistes(2.0144), sarkaspip(3.0.3), thickbox1(0.3), accesrestreint(0.3.0.3), autorite(0.9.2), contact(0.5.2), compresseur(1.0)
X-Outils-CS: mailcrypt, insert_head, introduction
X-Spip-Cache: 7200
Second query (visit from search engine):
GET / HTTP/1.1
Host: bcperlycertoux.org
Referer: http://www.google.com/search?q=bcperlycertoux.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bcperlycertoux.org
Referer: http://www.google.com/search?q=bcperlycertoux.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bcperlycertoux.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bcperlycertoux.org/
Result: bcperlycertoux.org is not infected or malware details are not published yet.
Result: bcperlycertoux.org is not infected or malware details are not published yet.