Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=poofah.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://poofah.net/ | 200 OK Content-Length: 11071 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net ...[2252 bytes skipped]... n=9,0,0,0" width="50%" height="50%" id="walkcycledefault8" align="middle"> <param name="allowScriptAccespoofahdesign2_12.jpg"> </td> </tr> <tr> </tr> <tr> <td colspan="5" valign="top" background="images/poofahdesign2_24.jpg" class="content"><div align="right"> <img src="images/spacer.gif" width="1" height="30" alt=""><a href="http://peacepunk.net/forum/index.php?showtopic=13400">Read</a> | <a href="http://peacepunk.net/forum/index.php?act=post&do=reply_post&f=8&t=13400">Reply</a> </div> </td> <td> <img src="images/spacer.gif" width="1" height="88" alt=""></td> </tr> <tr> <td colspan="6"><a href="business.html#privacy" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('Image55',' ...[1728 bytes skipped]... | ||
http://poofah.net/images/patches.jpg | 200 OK Content-Length: 44312 Content-Type: image/jpeg | clean |
http://poofah.net/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://poofah.net/images/andrealarge.jpg | 200 OK Content-Length: 78362 Content-Type: image/jpeg | clean |
http://poofah.net/images/poofahppg.jpg | 200 OK Content-Length: 284503 Content-Type: image/jpeg | clean |
http://poofah.net/images/jnkiehomefull.jpg | 200 OK Content-Length: 265019 Content-Type: image/jpeg | clean |
http://poofah.net/allnews.php | 200 OK Content-Length: 7822 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net <html> <head> <title>poofahdesign2</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script type="text/javascript"> <!-- function MM_swapImgRestore() { //v3.0 var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc; } function MM_preloadImages() { //v3.0 var d=document; if(d.images){ ...[4481 bytes skipped]... | ||
http://poofah.net/index.html | 200 OK Content-Length: 11071 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net ...[2252 bytes skipped]... n=9,0,0,0" width="50%" height="50%" id="walkcycledefault8" align="middle"> <param name="allowScriptAccespoofahdesign2_12.jpg"> </td> </tr> <tr> </tr> <tr> <td colspan="5" valign="top" background="images/poofahdesign2_24.jpg" class="content"><div align="right"> <img src="images/spacer.gif" width="1" height="30" alt=""><a href="http://peacepunk.net/forum/index.php?showtopic=13400">Read</a> | <a href="http://peacepunk.net/forum/index.php?act=post&do=reply_post&f=8&t=13400">Reply</a> </div> </td> <td> <img src="images/spacer.gif" width="1" height="88" alt=""></td> </tr> <tr> <td colspan="6"><a href="business.html#privacy" onMouseOut="MM_swapImgRestore()" onMouseOver="MM_swapImage('Image55',' ...[1728 bytes skipped]... | ||
http://poofah.net/episodes.html | 200 OK Content-Length: 8588 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net ...[1983 bytes skipped]... 14w.jpg')"> <!-- ImageReady Slices (poofahdesign2.psd) --> <table width="800" border="0" align="center" cellpadding="0" cellspacing="0" id="Table_01"> <tr> <td colspan="5"><a href="index.html"><img src="images/poofahdesign_01.jpg" alt="" width="502" border="0"></a></td> <td><img srpoofah.net/poofahad9.mov">Quicktime</a> | <a href="http://peacepunk.net/riot8.html">Flash</a> | <a href="http://www.youtube.com/watch?v=ERY9Gxg1dRw&fmt=18">Youtube</a></p> </td> <td colspan="2" rowspan="2" background="images/poofahdesign2_12.jpg"> </td> </tr> <tr> </tr> <tr> <td colspan="5" height="86" valign="top" background="images/poofahdesign2_24.jpg" class="content"><div align="right"> <p><img ...[1989 bytes skipped]... | ||
http://poofah.net/about.html | 200 OK Content-Length: 9162 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net ...[1924 bytes skipped]... ,'images/legal2.jpg','images/contact2.jpg','images/poofahdesign2_14w.jpg')"> <!-- ImageReady Slices (poofahdesign2.psd) --> <table width="800" border="0" align="center" cellpadding="0" cellspacing="0" id="Table_01"> <tr> <td colspan="5"><a href="index.html"><img src="images/poofahdesign_01.jpg" alt="" width="502" border="0"></a></td> <td><>http://peacepunk.net</a>, our sister site.</p> <p align="left" class="main"><em>Poofah! was created and is owned by Punk Rock Geek. All rights reserved.</em></p> </td> <td colspan="2" rowspan="2" background="images/poofahdesign2_12.jpg"> </td> </tr> <tr> </tr> <tr> <td colspan="5" height="86" valign="top" background="images/poofahdesign2_24.jpg" class="content"&g ...[2044 bytes skipped]... | ||
http://poofah.net/characters.html | 200 OK Content-Length: 12813 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net <html> <head> <title>poofahdesign2</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script type="text/javascript"> <!-- function MM_swapImgRestore() { //v3.0 var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc; } function MM_preloadImages() { //v3.0 var d=document; if(d.images){ ...[4451 bytes skipped]... | ||
http://poofah.net/screenshots.html | 200 OK Content-Length: 8285 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net <html> <head> <title>poofahdesign2</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script type="text/javascript"> <!-- function MM_swapImgRestore() { //v3.0 var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc; } function MM_preloadImages() { //v3.0 var d=document; if(d.images){ ...[4440 bytes skipped]... | ||
http://poofah.net/applications.html | 200 OK Content-Length: 12102 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: peacepunk.net <html> <head> <title>poofahdesign2</title> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> <script src="SpryAssets/SpryValidationTextField.js" type="text/javascript"></script> <script src="SpryAssets/SpryValidationSelect.js" type="text/javascript"></script> <script src="SpryAssets/SpryValidationTextarea.js" type="text/javascript"></script> ...[4411 bytes skipped]... | ||
http://poofah.net/SpryAssets/SpryValidationTextField.js | 200 OK Content-Length: 78146 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Spry; if (!Spry) Spry = {}; if (!Spry.Widget) Spry.Widget = {}; Spry.Widget.BrowserSniff = function() { var b = navigator.appName.toString(); var up = navigator.platform.toString(); var ua = navigator.userAgent.toString(); this.mozilla = this.ie = this.opera = r = false; var re_opera = /Opera.([0-9\.]*)/i; var re_msie = /MSIE.([0-9\.]*)/i; var re_gecko = /gecko/i; var re_safari = /safari\/([\d\.]*)/i; if (ua.match(re_opera)) { Antivirus reports:
| ||
http://poofah.net/SpryAssets/SpryValidationSelect.js | 200 OK Content-Length: 20101 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Spry; if (!Spry) Spry = {}; if (!Spry.Widget) Spry.Widget = {}; Spry.Widget.ValidationSelect = function(element, opts) { this.init(element); Spry.Widget.Utils.setOptions(this, opts); var validateOn = ['submit'].concat(this.validateOn || []); validateOn = validateOn.join(","); this.validateOn = 0 | (validateOn.indexOf('submit') != -1 ? Spry.Widget.ValidationSelect.ONSUBMIT : 0); this.validateOn = this.validateOn | (validateOn.indexOf('blur') != - Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: poofah.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 12:32:14 GMT
Accept-Ranges: bytes
ETag: "2b3f-502a4a7cea45d"
Server: Apache
Vary: Accept-Encoding
Content-Length: 11071
Content-Type: text/html
Last-Modified: Tue, 09 Sep 2014 16:44:56 GMT
X-Pad: avoid browser bug
...11071 bytes of data.
GET / HTTP/1.1
Host: poofah.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 26 Feb 2015 12:32:14 GMT
Accept-Ranges: bytes
ETag: "2b3f-502a4a7cea45d"
Server: Apache
Vary: Accept-Encoding
Content-Length: 11071
Content-Type: text/html
Last-Modified: Tue, 09 Sep 2014 16:44:56 GMT
X-Pad: avoid browser bug
...11071 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: poofah.net
Referer: http://www.google.com/search?q=poofah.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: poofah.net
Referer: http://www.google.com/search?q=poofah.net
Result:
The result is similar to the first query. There are no suspicious redirects found.