Scanned pages/files
| Request | Server response | Status |
http://www.ccaian.org/ | 200 OK Content-Length: 11940 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Copres-Dz ...[280 bytes skipped]... url('http://1.bp.blogspot.com/-iuQfcAcl_Ys/TdEfB_cCfEI/AAAAAAAAHzA/zs5PYQog9j8/s1600/black-wallpaper.jpg')" alink="#993300" background="index838993403.php_files/p_0001.htm" bgcolor="#333366" link="#0066CC" text="#FFFFFF" vlink="#999999"> <meta http-equiv="Content-Language" content="en-us"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1252"> <title>Hacked By Copres-Dz</title> <link rel="shortcut icon" href="http://l.yimg.com/us.yimg.com/i/mesg/emoticons7/21.gif" "=""> <title>HaCkeD By Copres-Dz</title><owned by="" Copres-Dz=""><noscript></noscript><!-- --><script type="text/javascript" async="" src="index838993403.php_files/ga.js"></script><script type="text/javascript" async="" src="index838993403.php_files/do.htm"></script><script type=" ...[15643 bytes skipped]... | ||
http://www.ccaian.org/index838993403.php_files/ga.js | HTTP/1.1 302 Found Connection: close Date: Wed, 02 Dec 2015 13:15:33 GMT Location: http://www.meuse.cci.fr/404.php Server: Apache Content-Length: 215 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: BIGipServerOBS_www1-obh-http=385984704.20480.0000; path=/ | clean |
http://www.meuse.cci.fr/404.php | 500 Affichage introuvable [name, type, prefix] : article, php, contentView Content-Length: 1537 Content-Type: text/html | clean |
http://www.meuse.cci.fr/index.php | 200 OK Content-Length: 39618 Content-Type: text/html | clean |
http://www.meuse.cci.fr/media/system/js/core.js | 200 OK Content-Length: 4225 Content-Type: application/javascript | clean |
http://www.meuse.cci.fr/media/system/js/mootools-core.js | 200 OK Content-Length: 88540 Content-Type: application/javascript | clean |
http://www.meuse.cci.fr/media/system/js/caption.js | 200 OK Content-Length: 800 Content-Type: application/javascript | clean |
http://www.meuse.cci.fr/media/system/js/mootools-more.js | 200 OK Content-Length: 238128 Content-Type: application/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://www.meuse.cci.fr/toutsur-ma-cci/le-fonctionnement-de-la-cci.html | 200 OK Content-Length: 15774 Content-Type: text/html | clean |
http://www.meuse.cci.fr/createurs.html | 200 OK Content-Length: 14705 Content-Type: text/html | clean |
http://www.meuse.cci.fr/industriels.html | 200 OK Content-Length: 15828 Content-Type: text/html | clean |
http://www.meuse.cci.fr/commercants.html | 200 OK Content-Length: 15831 Content-Type: text/html | clean |
http://www.meuse.cci.fr/hoteliers-restaurateurs.html | 200 OK Content-Length: 15307 Content-Type: text/html | clean |
http://www.meuse.cci.fr/collectivites.html | 200 OK Content-Length: 14428 Content-Type: text/html | clean |
http://www.meuse.cci.fr/grand-public.html | 200 OK Content-Length: 13598 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ccaian.org
Result:
GET / HTTP/1.1
Host: ccaian.org
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ccaian.org
Referer: http://www.google.com/search?q=ccaian.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ccaian.org
Referer: http://www.google.com/search?q=ccaian.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ccaian.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ccaian.org/
Result: ccaian.org is not infected or malware details are not published yet.
Result: ccaian.org is not infected or malware details are not published yet.