Scanned pages/files
Request | Server response | Status |
http://cafe-culturel.com/ | 200 OK Content-Length: 17085 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by PsyC0s ...[6603 bytes skipped]... /> <h2>Derniers articles</h2> <ul> <li class="hentry"> <a href="spip.php?article41"><img class='spip_logos' alt="" src="local/cache-vignettes/L134xH100/arton41-1c913.png" width='134' height='100' style='height:100px;width:134px;' /></a> <h3 class="entry-title"><a href="spip.php?article41" rel="bookmark"><script>alert('Hacked by PsyC0s')</script> </a></h3> <div class="date"> <div class="jour">30</div> <!-- POST DAY --> <div class="mois">jui</div> <!-- POST MONTH --> </div> <div class="auteur"><small>par <span class="vcard author"><a class="url fn spip_in" href="spip.php?auteur3">Chrisnalin</a></span>, <span class="vcard author"><a class="url ...[13888 bytes skipped]... | ||
http://cafe-culturel.com/squelettes/nifty.js | 200 OK Content-Length: 4517 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/prive/javascript/jquery.js | 200 OK Content-Length: 183184 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/prive/javascript/jquery.form.js | 200 OK Content-Length: 21060 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/prive/javascript/ajaxCallback.js | 200 OK Content-Length: 10815 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/prive/javascript/jquery.cookie.js | 200 OK Content-Length: 4246 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/extensions/porte_plume/javascript/xregexp-min.js | 200 OK Content-Length: 7085 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/extensions/porte_plume/javascript/jquery.markitup_pour_spip.js | 200 OK Content-Length: 22302 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/extensions/porte_plume/javascript/jquery.previsu_spip.js | 200 OK Content-Length: 2598 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/spip.php?page=porte_plume_start.js&lang=fr | 200 OK Content-Length: 46519 Content-Type: text/javascript | clean |
http://cafe-culturel.com/local/couteau-suisse/header.js | 200 OK Content-Length: 10634 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/plugins/auto/lecteur_multimedia/soundmanager/soundmanager2.js | 200 OK Content-Length: 30080 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/plugins/auto/lecteur_multimedia/javascript/jscroller.js | 200 OK Content-Length: 2971 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/plugins/auto/lecteur_multimedia/player_enclosure.js | 200 OK Content-Length: 13770 Content-Type: application/x-javascript | clean |
http://cafe-culturel.com/plugins/auto/menu_babbibel/js/menu_babbi.js | 200 OK Content-Length: 326 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cafe-culturel.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 10 Dec 2015 15:38:30 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Thu, 10 Dec 2015 15:38:30 GMT
Composed-By: SPIP 2.1.12 @ www.spip.net + images(1.0.1), msie_compat(1.0.0), porte_plume(1.7.8), safehtml(1.3.7), vertebres(1.0.0), cfg(1.16.0), crayons(1.13.1), image_cliquable(1.2.0), couteau_suisse(1.8.51), player(0.77.0), babbi(2.2.1), spip_bonux(2.3.0), testeur(1.12), compresseur(1.0.1)
X-Outils-CS: decoupe, SPIP_liens, decoration, couleurs, typo_exposants, liens_orphelins, filets_sep, blocs, paragrapher2, filtrer_javascript, supprimer_numero, pucesli, citations_bb, insertions, autobr, titres_typo, orientation
X-Powered-By: PHP/5.2.17
X-Spip-Cache: 3600
GET / HTTP/1.1
Host: cafe-culturel.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 10 Dec 2015 15:38:30 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Thu, 10 Dec 2015 15:38:30 GMT
Composed-By: SPIP 2.1.12 @ www.spip.net + images(1.0.1), msie_compat(1.0.0), porte_plume(1.7.8), safehtml(1.3.7), vertebres(1.0.0), cfg(1.16.0), crayons(1.13.1), image_cliquable(1.2.0), couteau_suisse(1.8.51), player(0.77.0), babbi(2.2.1), spip_bonux(2.3.0), testeur(1.12), compresseur(1.0.1)
X-Outils-CS: decoupe, SPIP_liens, decoration, couleurs, typo_exposants, liens_orphelins, filets_sep, blocs, paragrapher2, filtrer_javascript, supprimer_numero, pucesli, citations_bb, insertions, autobr, titres_typo, orientation
X-Powered-By: PHP/5.2.17
X-Spip-Cache: 3600
Second query (visit from search engine):
GET / HTTP/1.1
Host: cafe-culturel.com
Referer: http://www.google.com/search?q=cafe-culturel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cafe-culturel.com
Referer: http://www.google.com/search?q=cafe-culturel.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cafe-culturel.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cafe-culturel.com/
Result: cafe-culturel.com is not infected or malware details are not published yet.
Result: cafe-culturel.com is not infected or malware details are not published yet.