Scanned pages/files
Request | Server response | Status |
http://chaifreshveg.com/ | HTTP/1.1 200 OK Connection: close Date: Sat, 06 Jun 2015 07:03:12 GMT Server: LiteSpeed Content-Length: 4578 Content-Type: text/html X-Powered-By: PHP/5.4.39 | clean |
https://www.facebook.com/ant.hacktim | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Sat, 06 Jun 2015 07:03:14 GMT Pragma: no-cache Vary: Accept-Encoding Content-Type: text/html Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Fant.hacktim; path=/; domain=.facebook.com; httponly Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fant.hacktim; path=/; domain=.facebook.com; httponly Strict-Transport-Security: max-age=15552000; preload X-Content-Type-Options: nosniff X-FB-Debug: Xjtb7Tv2SWD+LCKfetP2kgguJO9SgA4yr6j+8YsNuonx2kw5rlu3OxVPTbUCPZeS5yU+ZOrLSEHA7LVZOBHflQ== X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/ant.hacktim?_fb_noscript=1 | 200 OK Content-Length: 300826 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY A.N.T ...[297170 bytes skipped]... <div class="mbs _6m6"><a href="http://l.facebook.com/l.php?u=http%3A%2F%2Fimryou.com%2F&h=RAQH5mDA5&s=1" rel="nofollow" target="_blank" onmouseover="LinkshimAsyncLink.swap(this, "http:\/\/imryou.com\/");" onclick="LinkshimAsyncLink.swap(this, "http:\/\/l.facebook.com\/l.php?u=http\u00253A\u00252F\u00252Fimryou.com\u00252F&h=RAQH5mDA5&s=1");">HACKED BY A.N.T</a></div><div class="_6m7"></div><div class="_59tj"><div class="_6lz _6mb ellipsis">imryou.com</div></div></div><a class="_52c6" href="http://l.facebook.com/l.php?u=http%3A%2F%2Fimryou.com%2F&h=RAQH5mDA5AQHGDzsIrqyza56GDsMA9uije_Tb5LRCDk4nuA&enc=AZP-4FbuflS1y5apJJmLt3btZnEjbVRIy4OTSwk2FbtlLlEnNoP8jl8biVAnUyFTfWHqK2T0A8MDzs2JL512cNkrSXU1SJBguqWC33DEZzB_UnzNLgd1jShWkCF1AbCNOxvqfrW3OsauNo-3BiixpL3MYZcQaRZlR ...[35544 bytes skipped]... | ||
https://fbstatic-a.akamaihd.net/rsrc.php/v2/yy/r/ycIMKZdfCak.js | 200 OK Content-Length: 108229 Content-Type: application/x-javascript | clean |
http://chaifreshveg.com/pages/create/?ref_type=page_profile_button&ref_id=735695683175046 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/test404page.js | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/r.php?profile_id=735695683175046&next=https%3A%2F%2Fwww.facebook.com%2Fant.hacktim&friend_or_subscriber=friend | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/login/?next=https%3A%2F%2Fwww.facebook.com%2Fant.hacktim | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/a.735697386508209.1073741827.735695683175046/787136511364296/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/a.735696129841668.1073741825.735695683175046/825587190852561/?type=1&source=11 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./826911207386826/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./826904194054194/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./826458047432142/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./826406884103925/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./825587190852561/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./825007464243867/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
http://chaifreshveg.com/ant.hacktim/photos/pb.735695683175046.-2207520000.1433574195./823848594359754/?type=1 | 404 Not Found Content-Length: 1148 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: chaifreshveg.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 06 Jun 2015 07:03:12 GMT
Server: LiteSpeed
Content-Length: 4578
Content-Type: text/html
X-Powered-By: PHP/5.4.39
...4578 bytes of data.
GET / HTTP/1.1
Host: chaifreshveg.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 06 Jun 2015 07:03:12 GMT
Server: LiteSpeed
Content-Length: 4578
Content-Type: text/html
X-Powered-By: PHP/5.4.39
...4578 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: chaifreshveg.com
Referer: http://www.google.com/search?q=chaifreshveg.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: chaifreshveg.com
Referer: http://www.google.com/search?q=chaifreshveg.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=chaifreshveg.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://chaifreshveg.com/
Result: chaifreshveg.com is not infected or malware details are not published yet.
Result: chaifreshveg.com is not infected or malware details are not published yet.