Scanned pages/files
Request | Server response | Status |
http://combinations.fr/ | 200 OK Content-Length: 15441 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by Bot ...[4045 bytes skipped]... ticle"> </div> </td> </tr> <tr> <td class="contenu_titre_texte"> <div class="texte_article"> <h1 class="titre">Parking Lots and Battery Problems</h1> <h3 class="date">17 August 2011</h3> <p><body oncontextmenu="return false;"></p> <head> <title>Hacked by Bot</title> <BODY><CENTER><h1 style="color:RED">Hacked by nick jwz #asc</h1></CENTER></BODY> </head><center> <body background="http://www.madtomatoe.com/wp-content/uploads/2010/11/matrix-animated-image.gif"></body> <p align="center"> <form><textarea style="background-color:#000000;color:#32CD32;" name="about" readonly="readonly" rows="10" cols="60" wrap="soft"></t ...[14689 bytes skipped]... | ||
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: text/javascript | clean |
http://combinations.fr/squelettes/js/jquery.cross-slide.min.js | 200 OK Content-Length: 6780 Content-Type: application/javascript | clean |
http://combinations.fr/squelettes/js/jquery.lightbox-0.5.js | 200 OK Content-Length: 20120 Content-Type: application/javascript | clean |
http://combinations.fr/spip.php?article10&lang=en | 200 OK Content-Length: 22569 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article124&lang=en | 200 OK Content-Length: 18708 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article58&lang=en | 200 OK Content-Length: 21662 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article13&lang=en | 200 OK Content-Length: 11798 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article33&lang=en | 200 OK Content-Length: 10921 Content-Type: text/html | clean |
http://combinations.fr/local/cache-vignettes/L216xH166/contact-telephone-7b6fb.jpg | 200 OK Content-Length: 50169 Content-Type: image/jpeg | clean |
http://combinations.fr/test404page.js | 404 Not Found Content-Length: 1335 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article8&lang=en | 200 OK Content-Length: 13714 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article6&lang=en | 200 OK Content-Length: 14380 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article9&lang=en | 200 OK Content-Length: 14086 Content-Type: text/html | clean |
http://combinations.fr/spip.php?article59&lang=en | 200 OK Content-Length: 15225 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: combinations.fr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 17 Mar 2015 21:00:16 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 17 Mar 2015 21:00:16 GMT
Composed-By: SPIP 2.1.11 @ www.spip.net + images(1.0.1), msie_compat(1.0), porte_plume(1.7.8), safehtml(1.3.7), vertebres(1.0), player(0.6), compresseur(1.0.1)
X-Powered-By: PHP/5.3.29
X-Spip-Cache: 86400
GET / HTTP/1.1
Host: combinations.fr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 17 Mar 2015 21:00:16 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Tue, 17 Mar 2015 21:00:16 GMT
Composed-By: SPIP 2.1.11 @ www.spip.net + images(1.0.1), msie_compat(1.0), porte_plume(1.7.8), safehtml(1.3.7), vertebres(1.0), player(0.6), compresseur(1.0.1)
X-Powered-By: PHP/5.3.29
X-Spip-Cache: 86400
Second query (visit from search engine):
GET / HTTP/1.1
Host: combinations.fr
Referer: http://www.google.com/search?q=combinations.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: combinations.fr
Referer: http://www.google.com/search?q=combinations.fr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=combinations.fr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://combinations.fr/
Result: combinations.fr is not infected or malware details are not published yet.
Result: combinations.fr is not infected or malware details are not published yet.