Vulnerable website...earlier hacked - now defaced...

See: -http://www.kitanajade.com/ (do not visit as with explicit adult content, not for minors!)
Detected libraries:
jquery - 1.9.1 : -http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
No vulnerable libraries found

Scanner output:
Scanning -http://www.kitanajade.com/
Script loaded: -http://ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/y_/r/XXn49zk5GnD.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yT/r/TY_QLmPlPTq.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/y1/r/2Th-AFfYYpY.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yj/r/jxA_0_Xb4_W.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/y6/r/A_NXJ5FCiKU.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/y8/r/kHTeGEp1QFp.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yY/r/Q4lQvo3pq_l.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yv/r/6_ooZP8fEsU.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/y3/r/LI4HZuT5Ni_.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/y-/r/q5MzqDwGpCa.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yp/r/XHJcz_FFh8S.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yN/r/_bYQL81FU1k.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yY/r/qPkezyNRcng.js
Script loaded: -https://static.xx.fbcdn.net/rsrc.php/v2/yF/r/7kA3Tupvma0.js
Status: success

Reverse DNS Poodle vulnerable? → http://toolbar.netcraft.com/site_report?url=https://static.xx.fbcdn.net
and http://toolbar.netcraft.com/site_report?url=http://xx-fbcdn-shv-01-atl3.fbcdn.net

Flagged as malicious site: https://www.virustotal.com/en/url/2876a7954d99edf91131a3bb13cc47b3fd087b350aad1ca7a58e9043683ed471/analysis/1452949868/

index.html
Severity: Malicious
Reason: Detected malicious PHP content
Details: Website Potentially Defaced

External link cannot be opened: -http://www.nycfragrance.com/csvcategoryimportver1.0.3/system/css/layout/js/crazyIntro.js
secureserver dot net abuse: http://toolbar.netcraft.com/site_report?url=http://www.nycfragrance.com
See: https://www.zone-h.org/mirror/id/24943776
57 websites on one and the same IP: https://urlquery.net/report.php?id=1452949136572

polonus