Scanned pages/files
Request | Server response | Status |
http://bistrodusiecle.com/ | 200 OK Content-Length: 21373 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Bl4ck punisher <html> <head> <meta http-equiv="Page-Enter" content="blendTrans(Duration=2)"> <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1"> <title>Bistro du siècle à Duclair : Accueil</title> <meta name="description" content='Bistro du siècle à Duclair : Accueil '> <meta name="keywords" content="<title> Hacked By Bl4ck punisher </title> <meta name="description" content="Hacked By Bl4ck punisher"> <meta name="keywords" content="Hacked By Bl4ck punisher"> <link rel='stylesheet' id='validate-engine-css-css' href='http://www.esbrainoise.be/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css' type='text/css' media='all' /> <link rel='stylesheet' id='nextgen_gallery_related_images-css' href='http://www.esbrain ...[23402 bytes skipped]... | ||
https://engowe.com/ad.php?u=0faf50f19233d495bdda2c5de87f43f3&c=gpupdater&p=1 | 200 OK Content-Length: 257 Content-Type: text/html | clean |
http://engowe.com/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery.js | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery-migrate.min.js | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/ajax/static/ajax.js | 404 Not Found Content-Length: 22847 Content-Type: text/html | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 95952 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-includes/js/jquery/jquery-migrate.min.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=21b6cc11b0f6f294541f56be067a5450-2014.06.20 | 200 OK Content-Length: 15248 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 11200 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/google-calendar-events/js/jquery.qtip.min.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 35489 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/google-calendar-events/js/gce-script.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 4374 Content-Type: application/javascript | clean |
http://s0.wp.com/wp-content/js/devicepx-jetpack.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 10372 Content-Type: application/x-javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/fancybox/jquery.fancybox-1.3.7.min.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 15701 Content-Type: application/javascript | clean |
http://www.esbrainoise.be/wp-content/plugins/easy-fancybox/jquery.easing.pack.js?ver=21b6cc11b0f6f294541f56be067a5450 | 200 OK Content-Length: 3649 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: bistrodusiecle.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 15 Dec 2015 13:11:31 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: mailplanBAK=R2555569905; path=/; expires=Tue, 15-Dec-2015 14:24:56 GMT
Set-Cookie: mailplan=R243238177; path=/; expires=Tue, 15-Dec-2015 14:28:18 GMT
Set-Cookie: PHPSESSID=82fff6qunip862u4b6mk202ct2; path=/
X-Cacheable: Not cacheable: no-cache
X-Geo: varn14.rbx5
X-Geo-Port: 1015
GET / HTTP/1.1
Host: bistrodusiecle.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 15 Dec 2015 13:11:31 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: mailplanBAK=R2555569905; path=/; expires=Tue, 15-Dec-2015 14:24:56 GMT
Set-Cookie: mailplan=R243238177; path=/; expires=Tue, 15-Dec-2015 14:28:18 GMT
Set-Cookie: PHPSESSID=82fff6qunip862u4b6mk202ct2; path=/
X-Cacheable: Not cacheable: no-cache
X-Geo: varn14.rbx5
X-Geo-Port: 1015
Second query (visit from search engine):
GET / HTTP/1.1
Host: bistrodusiecle.com
Referer: http://www.google.com/search?q=bistrodusiecle.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: bistrodusiecle.com
Referer: http://www.google.com/search?q=bistrodusiecle.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=bistrodusiecle.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bistrodusiecle.com/
Result: bistrodusiecle.com is not infected or malware details are not published yet.
Result: bistrodusiecle.com is not infected or malware details are not published yet.