Scanned pages/files
| Request | Server response | Status |
http://oceotrade.com/ | 200 OK Content-Length: 8592 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked by ZeynnymouZ - Hacked by ZeynnymouZ ...[735 bytes skipped]... > <![endif]--> <!--[if (gt IE 9)|!(IE)]><!--> <html dir="ltr" lang="en" xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" class="ltr en no-js"> <!--<![endif]--> <head> <script type='text/javascript'>/*<![CDATA[*/(function(H){H.className=H.className.replace(/\bno-js\b/,'js')})(document.documentElement);/*]]>*/</script> <title>Hacked by ZeynnymouZ - Hacked by ZeynnymouZ</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link rel="alternate" type="application/rss+xml" title="Subscribe to the whole site" href="spip.php?page=backend" /> <meta name="viewport" content="width=device-width" /> <link rel="stylesheet" href="squelettes/css/reset.css" type="text/css" /> <link rel="stylesheet" href="squelettes/css/typo.css" type="text/css" /> <lin ...[8421 bytes skipped]... | ||
http://oceotrade.com/prive/javascript/jquery.js | 200 OK Content-Length: 252881 Content-Type: application/javascript | clean |
http://oceotrade.com/prive/javascript/jquery.form.js | 200 OK Content-Length: 28454 Content-Type: application/javascript | clean |
http://oceotrade.com/prive/javascript/jquery.autosave.js | 200 OK Content-Length: 1464 Content-Type: application/javascript | clean |
http://oceotrade.com/prive/javascript/jquery.placeholder-label.js | 200 OK Content-Length: 1565 Content-Type: application/javascript | clean |
http://oceotrade.com/prive/javascript/ajaxCallback.js | 200 OK Content-Length: 30009 Content-Type: application/javascript | clean |
http://oceotrade.com/prive/javascript/jquery.cookie.js | 200 OK Content-Length: 4246 Content-Type: application/javascript | clean |
http://oceotrade.com/plugins-dist/mediabox/javascript/jquery.colorbox.js?1344348820 | 200 OK Content-Length: 27918 Content-Type: application/javascript | clean |
http://oceotrade.com/plugins-dist/mediabox/javascript/spip.mediabox.js?1344348821 | 200 OK Content-Length: 3802 Content-Type: application/javascript | clean |
http://oceotrade.com/plugins-dist/porte_plume/javascript/jquery.markitup_pour_spip.js | 200 OK Content-Length: 24860 Content-Type: application/javascript | clean |
http://oceotrade.com/plugins-dist/porte_plume/javascript/jquery.previsu_spip.js | 200 OK Content-Length: 2658 Content-Type: application/javascript | clean |
http://oceotrade.com/spip.php?page=porte_plume_start.js&lang=en | 200 OK Content-Length: 12982 Content-Type: text/javascript | clean |
http://oceotrade.com/plugins/auto/menuder/v2.1.4/js/menuder.js | 200 OK Content-Length: 380 Content-Type: application/javascript | clean |
http://oceotrade.com/-Logistic- | 200 OK Content-Length: 10832 Content-Type: text/html | clean |
http://oceotrade.com/-Presentation- | 200 OK Content-Length: 9614 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: oceotrade.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Tue, 17 Mar 2015 19:36:11 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Tue, 17 Mar 2015 19:36:11 GMT
Last-Modified: Tue, 17 Mar 2015 19:36:11 GMT
Composed-By: SPIP 3.0.4 @ www.spip.net + spip(3.0.4),compagnon(1.4.0),dump(1.6.7),images(1.1.1),forum(1.8.16),jqueryui(1.8.21),mediabox(0.8.1),medias(2.7.32),mots(2.4.8),msie_compat(1.2.0),organiseur(0.8.6),petitions(1.4.3),porte_plume(1.11.6),revisions(1.7.0),safehtml(1.4.0),sites(1.7.6),squelettes_par_rubrique(1.1.0),stats(0.4.9),svp(0.80.1),tw(0.8.14),urls(1.4.13),vertebres(1.2.1),menuder(2.1.4),iterateurs(0.6.1),queue(0.6.6),breves(1.3.3),compresseur(1.6.7)
Set-Cookie: mailplanBAK=R2555569905; path=/; expires=Tue, 17-Mar-2015 20:57:31 GMT
Set-Cookie: mailplan=R3631018048; path=/; expires=Tue, 17-Mar-2015 20:35:30 GMT
X-Powered-By: PHP/5.3.29
X-Spip-Cache: 86400
GET / HTTP/1.1
Host: oceotrade.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Tue, 17 Mar 2015 19:36:11 GMT
Server: Apache
Vary: Cookie,Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Tue, 17 Mar 2015 19:36:11 GMT
Last-Modified: Tue, 17 Mar 2015 19:36:11 GMT
Composed-By: SPIP 3.0.4 @ www.spip.net + spip(3.0.4),compagnon(1.4.0),dump(1.6.7),images(1.1.1),forum(1.8.16),jqueryui(1.8.21),mediabox(0.8.1),medias(2.7.32),mots(2.4.8),msie_compat(1.2.0),organiseur(0.8.6),petitions(1.4.3),porte_plume(1.11.6),revisions(1.7.0),safehtml(1.4.0),sites(1.7.6),squelettes_par_rubrique(1.1.0),stats(0.4.9),svp(0.80.1),tw(0.8.14),urls(1.4.13),vertebres(1.2.1),menuder(2.1.4),iterateurs(0.6.1),queue(0.6.6),breves(1.3.3),compresseur(1.6.7)
Set-Cookie: mailplanBAK=R2555569905; path=/; expires=Tue, 17-Mar-2015 20:57:31 GMT
Set-Cookie: mailplan=R3631018048; path=/; expires=Tue, 17-Mar-2015 20:35:30 GMT
X-Powered-By: PHP/5.3.29
X-Spip-Cache: 86400
Second query (visit from search engine):
GET / HTTP/1.1
Host: oceotrade.com
Referer: http://www.google.com/search?q=oceotrade.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: oceotrade.com
Referer: http://www.google.com/search?q=oceotrade.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=oceotrade.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://oceotrade.com/
Result: oceotrade.com is not infected or malware details are not published yet.
Result: oceotrade.com is not infected or malware details are not published yet.