Scanned pages/files
Request | Server response | Status |
http://www.cs168.tw/ | 200 OK Content-Length: 2899 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Ashiyane Digital Security Team_modiret_Hacked By Ashiyane Digital Security Team_modiret_Ha <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="zh-TW" lang="zh-TW"> <head> <meta http-equiv="content-type" content="text/html; charset=UTF-8" /> <title>Hacked By Ashiyane Digital Security Team_modiret_Hacked By Ashiyane Digital Security Team_modiret_Hacked By Ashiyane Digital Security Team_modiret_Hacked By Ashiyane Digital Security Team_modiret_</title> <meta name="Keywords" content="Hacked By Ashiyane Digital Security Team_modiret_ Hacked By Ashiyane Digital Security Team_modiret_ Hacked By Ashiyane Digital Security Team_modiret_ Hacked By Ashiyane Digital Security Team_modiret_ Hacked By Ashiyane Digi ...[2683 bytes skipped]... | ||
http://www.cs168.tw/js/jquery-1.3.2.js | 200 OK Content-Length: 120763 Content-Type: application/javascript | clean |
http://www.cs168.tw/js/supersized.2.0.js | 200 OK Content-Length: 10352 Content-Type: application/javascript | clean |
http://www.cs168.tw/index.php | 200 OK Content-Length: 2899 Content-Type: text/html | clean |
http://www.cs168.tw/contact.php | 200 OK Content-Length: 9310 Content-Type: text/html | clean |
http://www.cs168.tw/download.php | 200 OK Content-Length: 4663 Content-Type: text/html | clean |
http://www.cs168.tw/product.php?id=339 | 200 OK Content-Length: 7801 Content-Type: text/html | clean |
http://www.cs168.tw/about.php?id=39 | 200 OK Content-Length: 8434 Content-Type: text/html | clean |
http://www.cs168.tw/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://www.cs168.tw/product_con.php?id=339&classid=483 | 200 OK Content-Length: 9741 Content-Type: text/html | clean |
http://www.cs168.tw/js/scriptaculous.js | 200 OK Content-Length: 2931 Content-Type: application/javascript | clean |
http://www.cs168.tw/js/prototype.js | 200 OK Content-Length: 163312 Content-Type: application/javascript | clean |
http://www.cs168.tw/js/lightbox.js | 200 OK Content-Length: 18512 Content-Type: application/javascript | clean |
http://www.cs168.tw/js/effects.js | 200 OK Content-Length: 38471 Content-Type: application/javascript | clean |
http://www.cs168.tw/js/builder.js | 200 OK Content-Length: 4744 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cs168.tw
Result:
GET / HTTP/1.1
Host: cs168.tw
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: cs168.tw
Referer: http://www.google.com/search?q=cs168.tw
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cs168.tw
Referer: http://www.google.com/search?q=cs168.tw
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cs168.tw
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cs168.tw/
Result: cs168.tw is not infected or malware details are not published yet.
Result: cs168.tw is not infected or malware details are not published yet.