Scanned pages/files
Request | Server response | Status |
http://pakpoint.tv/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 16 Dec 2015 19:33:32 GMT Location: http://www.pakpoint.tv/ Server: Apache Vary: Accept-Encoding Content-Length: 231 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.pakpoint.tv/ | 200 OK Content-Length: 27850 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: ) and 284 other .PK websites has reportedly been hacked by an international hacker group EBOZ, bloc ...[24981 bytes skipped]... ite hacked" srcset="http://www.pakpoint.org/wp-content/uploads/2012/11/gogole-pakistan-hacked-300x200.jpg 300w, http://www.pakpoint.org/wp-content/uploads/2012/11/gogole-pakistan-hacked-590x393.jpg 590w, http://www.pakpoint.org/wp-content/uploads/2012/11/gogole-pakistan-hacked.jpg 630w" sizes="(max-width: 150px) 100vw, 150px" /></a><p>Google Pakistan (google.com.pk) and 284 other .PK websites has reportedly been hacked by an international hacker group EBOZ, blocking access for consumers of various internet providers. Today (Saturday) morning, attempts to access Google Pakistan (google.com.pk) led to a page which had been hacked and defaced. Hackers swapped the Google logo and a search bar with an image of ...</p> </div> <p> <span class="bracket">{</span> <a class="num_comments_link" href="http://www.pakpoint.tv/google ...[6826 bytes skipped]... | ||
http://www.pakpoint.org/wp-includes/js/jquery/jquery.js?ver=1.11.3 | 200 OK Content-Length: 95977 Content-Type: application/javascript | clean |
http://www.pakpoint.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/javascript | clean |
http://www.pakpoint.org/wp-content/thesis/boxes/thesis-content-slider/js/easySlider1.7.js?ver=4.4 | 404 Not Found Content-Length: 15768 Content-Type: text/html | clean |
http://p.jwpcdn.com/6/10/jwplayer.js?ver=4.3.1 | 200 OK Content-Length: 66799 Content-Type: text/plain | clean |
http://p.jwpcdn.com/test404page.js | 404 Not Found Content-Length: 349 Content-Type: text/html | clean |
http://www.pakpoint.org//pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 16 Dec 2015 19:33:40 GMT Pragma: no-cache Location: http://www.pakpoint.org/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.pakpoint.org/xmlrpc.php | clean |
http://www.pakpoint.org/pagead2.googlesyndication.com/pagead/js/adsbygoogle.js/ | 404 Not Found Content-Length: 15768 Content-Type: text/html | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 87641 Content-Type: application/javascript | clean |
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 27376 Content-Type: text/javascript | clean |
http://resources.infolinks.com/js/infolinks_main.js | 200 OK Content-Length: 3082 Content-Type: text/javascript | suspicious |
Suspicious code. Script contains iFrame. ...[2023 bytes skipped]... 2k";f.2n="2z-8";f.p=e.r;f.1e=M("1e")||f.1e;f.1A=M("26")||f.1A;4 J=6.1G("1T");5(J&&J.7){J[0].13(f)}}})()',62,184,'||||var|if|document|length||com|||||||||||||||window|src|for|url|body|1px|indexOf|function|Math|createElement|try|location|||||||||||||||||||||||||||version|js|catch|appendChild|in|return|display|01|break|keek|none|rand|style|substr|async|infolinks|width|hasOwnProperty|match|else|height|infolinks_|il|search|http|from|script|iframe|2Fdyn|console|random|log|message|3D|an|50|defer|html|null|decodeURIComponent|to|2Frouter|getElementsByTagName|split|continue|Date|phone|ipad|iceboot|getTime|opera|_boot|versions|1276|1273|head|01a|iphone|userAgent|1118|kiwibox|1186|navigator|classic|hostname|weight|undefined|ceil|ddw|true|ads|type|href|AdServer|user_sync|predirect|3Fpmuservalue|img|text|push|sv|floor|javascript|3Fuser_id|24UID|charset|static|getuid|06|join|adnxs|366|siteVersions|resources|toLowerCase|usersyncup|05a|UTF ...[193 bytes skipped]... Decoded script: (function(){try{var O=document.createElement("iframe");O.width="1px";O.height="1px";O.style.display="none";O.src="//ads.pubmatic.com/AdServer/js/user_sync.html?predirect=%2F%2Frouter.infolinks.com%2Fdyn%2Fusersync%3Fpmuservalue%3D";if(document.body){document.body.appendChild(O)}}catch(K){console.log(K.message)}try{var Y=document.createElement("img");Y.src="//ib.adnxs.com/getuid?%2F%2Frouter.infolinks.com%2Fdyn%2Fan-usersync%3Fuser_id%3D%24UID";Y.width="1px";Y.height="1px";Y.style.display="none" ...[5563 bytes skipped]... | ||
http://www.pakpoint.org//static.getclicky.com/js/ | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Wed, 16 Dec 2015 19:33:43 GMT Pragma: no-cache Location: http://www.pakpoint.org/static.getclicky.com/js/ Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.pakpoint.org/xmlrpc.php | clean |
http://www.pakpoint.org/static.getclicky.com/js/ | 404 Not Found Content-Length: 15768 Content-Type: text/html | clean |
http://www.pakpoint.org/ | 200 OK Content-Length: 35284 Content-Type: text/html | clean |
http://www.pakpoint.org/dunya-tv-live/ | 200 OK Content-Length: 20974 Content-Type: text/html | clean |
http://www.pakpoint.org/wp-includes/js/comment-reply.min.js?ver=4.3.1 | 200 OK Content-Length: 757 Content-Type: application/javascript | clean |
http://www.pakpoint.org/bol-tv-netwok-live/ | 200 OK Content-Length: 19734 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pakpoint.tv
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 16 Dec 2015 19:33:32 GMT
Location: http://www.pakpoint.tv/
Server: Apache
Vary: Accept-Encoding
Content-Length: 231
Content-Type: text/html; charset=iso-8859-1
...231 bytes of data.
GET / HTTP/1.1
Host: pakpoint.tv
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 16 Dec 2015 19:33:32 GMT
Location: http://www.pakpoint.tv/
Server: Apache
Vary: Accept-Encoding
Content-Length: 231
Content-Type: text/html; charset=iso-8859-1
...231 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: pakpoint.tv
Referer: http://www.google.com/search?q=pakpoint.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pakpoint.tv
Referer: http://www.google.com/search?q=pakpoint.tv
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pakpoint.tv
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pakpoint.tv/
Result: pakpoint.tv is not infected or malware details are not published yet.
Result: pakpoint.tv is not infected or malware details are not published yet.