Scanned pages/files
Request | Server response | Status |
http://popxilla.com/ | 200 OK Content-Length: 1936 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: / HACKED BY Albanian Hacker ...[790 bytes skipped]... mily: "Courier New", Courier, monospace; } .style15 { font-family: "Times New Roman", Times, serif; font-size: 24px; } .style16 {font-size: 18; color: #FF0000; font-weight: bold; } .style17 {font-size: 16px; font-family: Arial, Helvetica, sans-serif; color: #FF0000;} --> </style></head> <body> <p align="center" class="style5">/ HACKED BY Albanian Hacker's Terrorist \ </p> <p align="center" class="style3"><img src="https://fbcdn-sphotos-g-a.akamaihd.net/hphotos-ak-ash3/6552_148035875355905_935606909_n.png" width="400" height="393" /></p> <p align="center" class="style6"><strong>Members : </strong>Dr.Injection ~ Individ^H4ck ~ AnnonyH4ck ~ GeneraL ~ aGoH4ck ~ Driblexx ~ The r00t.-:~#<strong>!</strong> <strong><3</strong></p> ...[735 bytes skipped]... | ||
http://popxilla.com/test404page.js | 404 Not Found Content-Length: 1721 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: popxilla.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 01 Apr 2014 05:35:03 GMT
Server: Apache
Content-Type: text/html; charset=UTF-7
X-Pingback: http://popxilla.com/xmlrpc.php
X-Powered-By: PHP/5.4.23
GET / HTTP/1.1
Host: popxilla.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 01 Apr 2014 05:35:03 GMT
Server: Apache
Content-Type: text/html; charset=UTF-7
X-Pingback: http://popxilla.com/xmlrpc.php
X-Powered-By: PHP/5.4.23
Second query (visit from search engine):
GET / HTTP/1.1
Host: popxilla.com
Referer: http://www.google.com/search?q=popxilla.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: popxilla.com
Referer: http://www.google.com/search?q=popxilla.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=popxilla.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://popxilla.com/
Result: popxilla.com is not infected or malware details are not published yet.
Result: popxilla.com is not infected or malware details are not published yet.