Scanned pages/files
| Request | Server response | Status |
http://ceni.mr/ | 200 OK Content-Length: 24031 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by PenggunaLayanan ...[17040 bytes skipped]... 0" border="0" cellspacing="0" cellpadding="2" align="center"><tr><td align="center" valign="top"><div class="cadre-bleu" align="left"><h1 class="cadre"> <marquee width="95%" direction ="left" scrollAmount='3'> <font face="font-family:verdana" size="2" color="000000"> <a href="spip.php?page=article&id_article=732" style="text-decoration : none">Hacked by PenggunaLayanan</a> *** </FONT> <font face="font-family:verdana" size="2" color="000000"> <a href="spip.php?page=article&id_article=728" style="text-decoration : none">FICHE DâINFORMATIONS SUR LES CANDIDATURES AUX ELECTIONS SENATORIALES </a> *** </FONT> <font face="font-family:verdana" size="2" color="000000"> <a href="spip.php?page=article&id_article=723" style="text-decoration : none">Communiqué</a ...[13058 bytes skipped]... | ||
http://ceni.mr/local/cache-js/e902be63a2b7307aa0a65166fbc91e9d.js | 200 OK Content-Length: 211096 Content-Type: application/javascript | clean |
http://ceni.mr/scripts/onglets.js | 200 OK Content-Length: 1570 Content-Type: application/javascript | clean |
http://ceni.mr/scripts/jquery.tabs.pack.js | 200 OK Content-Length: 5737 Content-Type: application/javascript | clean |
http://ceni.mr/spip.php?page=rubrique&id_rubrique=3 | 200 OK Content-Length: 16926 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=77 | 200 OK Content-Length: 21852 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=86 | 200 OK Content-Length: 20505 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=rubrique&id_rubrique=4 | 200 OK Content-Length: 17680 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=87 | 200 OK Content-Length: 18141 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=88 | 200 OK Content-Length: 20627 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=89 | 200 OK Content-Length: 17809 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=91 | 200 OK Content-Length: 17330 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=92 | 200 OK Content-Length: 17367 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=article&id_article=101 | 200 OK Content-Length: 17813 Content-Type: text/html | clean |
http://ceni.mr/spip.php?page=rubrique&id_rubrique=6 | 200 OK Content-Length: 18894 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ceni.mr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 12 May 2015 04:04:20 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 12 May 2015 04:04:20 GMT
Composed-By: SPIP 3.0.5 @ www.spip.net + spip(3.0.5),compagnon(1.4.0),dump(1.6.7),images(1.1.1),forum(1.8.16),jqueryui(1.8.21),mediabox(0.8.2),medias(2.7.34),mots(2.4.8),msie_compat(1.2.0),organiseur(0.8.6),petitions(1.4.3),porte_plume(1.12.2),revisions(1.7.0),safehtml(1.4.0),saisies(1.28.1),sites(1.7.6),squelettes_par_rubrique(1.1.0),stats(0.4.9),svp(0.80.5),urls(1.4.13),vertebres(1.2.1),yaml(1.5.0),iterateurs(0.6.1),queue(0.6.6),breves(1.3.3),compresseur(1.6.7),tw(0.8.14)
X-Powered-By: PHP/5.4.25
X-Spip-Cache: 86400
GET / HTTP/1.1
Host: ceni.mr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 12 May 2015 04:04:20 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 12 May 2015 04:04:20 GMT
Composed-By: SPIP 3.0.5 @ www.spip.net + spip(3.0.5),compagnon(1.4.0),dump(1.6.7),images(1.1.1),forum(1.8.16),jqueryui(1.8.21),mediabox(0.8.2),medias(2.7.34),mots(2.4.8),msie_compat(1.2.0),organiseur(0.8.6),petitions(1.4.3),porte_plume(1.12.2),revisions(1.7.0),safehtml(1.4.0),saisies(1.28.1),sites(1.7.6),squelettes_par_rubrique(1.1.0),stats(0.4.9),svp(0.80.5),urls(1.4.13),vertebres(1.2.1),yaml(1.5.0),iterateurs(0.6.1),queue(0.6.6),breves(1.3.3),compresseur(1.6.7),tw(0.8.14)
X-Powered-By: PHP/5.4.25
X-Spip-Cache: 86400
Second query (visit from search engine):
GET / HTTP/1.1
Host: ceni.mr
Referer: http://www.google.com/search?q=ceni.mr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ceni.mr
Referer: http://www.google.com/search?q=ceni.mr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ceni.mr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ceni.mr/
Result: ceni.mr is not infected or malware details are not published yet.
Result: ceni.mr is not infected or malware details are not published yet.