Scanned pages/files
Request | Server response | Status |
http://wendys.com.ph/search.php | 200 OK Content-Length: 4058 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HaCked by x.An0nPH ...[672 bytes skipped]... ty Breach !")</script> <script>alert("xAn0nPH was Here !")</script> <link href='http://fonts.googleapis.com/css?family=Iceland' rel='stylesheet' type='text/css'> <style type="text/css">body, a:hover {cursor: url(http://cur.cursors-4u.net/cursors/cur-11/cur1054.cur), url(http://cur.cursors-4u.net/cursors/cur-9/cur862.png), progress !important;}</style> <title>HaCked by x.An0nPH</title> <style type="text/css"> body { background-image:url('http://fc00.deviantart.net/fs70/f/2010/206/e/5/Black_Wallpaper_1920x1080_by_PhysXPSP.png'); background-color: #000000; background-repeat:no-repeat; background-position:center center; color:#ffffff; } </style> <span style="font-weight:bold; text-shadow:white 0px 0px 8px; color:black"> <body oncontextmenu="re ...[3188 bytes skipped]... | ||
https://ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js | 200 OK Content-Length: 93435 Content-Type: text/javascript | clean |
http://wendys.com.ph/test404page.js | 500 Internal Server Error Content-Length: 1844 Content-Type: text/html | clean |
http://wendys.com.ph/ | HTTP/1.1 302 Moved Temporarily Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 29 Mar 2015 08:06:27 GMT Pragma: no-cache Location: https://wendys.com.ph/home/ Server: Apache Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=ksdss9v2cbv6teqq1tr6ksgvr2; path=/ X-Powered-By: PHP/5.4.21 | clean |
https://wendys.com.ph/home/ | 200 OK Content-Length: 11619 Content-Type: text/html | clean |
https://wendys.com.ph/plugins/bootstrap/js/html5shiv.js | 200 OK Content-Length: 2429 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/bootstrap/js/respond.min.js | 200 OK Content-Length: 4591 Content-Type: application/javascript | clean |
https://wendys.com.ph/js/jquery-1.9.1.min.js | 200 OK Content-Length: 92629 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/bootstrap/js/bootstrap.min.js | 200 OK Content-Length: 29165 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/lazyLoad/jquery.lazyload.min.js | 200 OK Content-Length: 2131 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/prettyPhoto/jquery.prettyPhoto.js | 200 OK Content-Length: 22061 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/print-area/jquery.PrintArea.js | 200 OK Content-Length: 7127 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/ajaxFileUpload/ajaxfileupload.js | 200 OK Content-Length: 6476 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/ui/jquery-ui-1.10.4.custom.min.js | 200 OK Content-Length: 223870 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/ui/jquery.easing.js | 200 OK Content-Length: 8097 Content-Type: application/javascript | clean |
https://wendys.com.ph/plugins/camera/jquery.mobile.customized.min.js | 200 OK Content-Length: 114620 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wendys.com.ph
Result:
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 29 Mar 2015 08:06:27 GMT
Pragma: no-cache
Location: https://wendys.com.ph/home/
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=ksdss9v2cbv6teqq1tr6ksgvr2; path=/
X-Powered-By: PHP/5.4.21
GET / HTTP/1.1
Host: wendys.com.ph
Result:
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 29 Mar 2015 08:06:27 GMT
Pragma: no-cache
Location: https://wendys.com.ph/home/
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=ksdss9v2cbv6teqq1tr6ksgvr2; path=/
X-Powered-By: PHP/5.4.21
Second query (visit from search engine):
GET / HTTP/1.1
Host: wendys.com.ph
Referer: http://www.google.com/search?q=wendys.com.ph
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wendys.com.ph
Referer: http://www.google.com/search?q=wendys.com.ph
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wendys.com.ph
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://wendys.com.ph/
Result: wendys.com.ph is not infected or malware details are not published yet.
Result: wendys.com.ph is not infected or malware details are not published yet.