Scanned pages/files
Request | Server response | Status |
http://colorsrestaurant.com/ | 200 OK Content-Length: 6565 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By KaSHi HaXor ...[5190 bytes skipped]... t;a href="#" class="replace" id="iconfacebook"><span></span>Facebook</a></li> </ul> </div> <div class="placewidgetfooter"> <div class="boxfooter"> <div class="widgetfooter"> <h4>Latest News</h4> <blah> <link href="images/Pakistan-icon.png" rel="shortcut icon"> <title>Hacked By KaSHi HaXor</title> <head> <style type="text/css"> body {scrolling:no; } iframe {position:absolute; <p> <a href="latest.php">Read more . .</a></p> </div> </div> <div class="boxfooter"> <div class="widgetfooter"> <h4>Special Menu</h4> <blah> <link href="images/Pakistan-icon.png" ...[2683 bytes skipped]... | ||
http://colorsrestaurant.com/script/jquery.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/script/jquery-ui.js | 200 OK Content-Length: 19354 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/script/jquery_cycle.js | 200 OK Content-Length: 32587 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/script/backnav.js | 200 OK Content-Length: 782 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/script/lightbox.js | 200 OK Content-Length: 19604 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/index.php | 200 OK Content-Length: 6565 Content-Type: text/html | clean |
http://colorsrestaurant.com/aboutus.html | 200 OK Content-Length: 7859 Content-Type: text/html | clean |
http://colorsrestaurant.com/Regular-menu/ | 200 OK Content-Length: 1094 Content-Type: text/html | clean |
http://colorsrestaurant.com/Regular-menu/swfobject.js | 200 OK Content-Length: 6722 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/Regular-menu/swfaddress.js | 200 OK Content-Length: 16549 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/test404page.js | 404 Not Found Content-Length: 474 Content-Type: text/html | clean |
http://colorsrestaurant.com/Party-menu/ | 200 OK Content-Length: 1092 Content-Type: text/html | clean |
http://colorsrestaurant.com/Party-menu/swfobject.js | 200 OK Content-Length: 6722 Content-Type: application/javascript | clean |
http://colorsrestaurant.com/Party-menu/swfaddress.js | 200 OK Content-Length: 16549 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: colorsrestaurant.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 14 Jul 2015 08:56:04 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=cdcf81ac7fa1d8ceca945b234dbbbd01; path=/
X-Powered-By: PHP/5.4.28
GET / HTTP/1.1
Host: colorsrestaurant.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 14 Jul 2015 08:56:04 GMT
Pragma: no-cache
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1e-fips DAV/2 mod_bwlimited/1.4
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=cdcf81ac7fa1d8ceca945b234dbbbd01; path=/
X-Powered-By: PHP/5.4.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: colorsrestaurant.com
Referer: http://www.google.com/search?q=colorsrestaurant.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: colorsrestaurant.com
Referer: http://www.google.com/search?q=colorsrestaurant.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=colorsrestaurant.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://colorsrestaurant.com/
Result: colorsrestaurant.com is not infected or malware details are not published yet.
Result: colorsrestaurant.com is not infected or malware details are not published yet.