Scanned pages/files
Request | Server response | Status |
http://psma.com.pk/ | 200 OK Content-Length: 2216 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=home | 200 OK Content-Length: 5668 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=about | 200 OK Content-Length: 5740 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Zeeshan Haxor ZeSn Cyber TeamRox ...[2179 bytes skipped]... .jpg" alt="" /> </a> <a href="#"> <img src="images/main_13.jpg" alt="" /> </a> <a href="#"> <img src="images/main_15.jpg" alt="" /> </a> </div> <div class="mainContent"> <!-- CMS AREA Start --> <h2>"><script>document.body.innerHTML = "Hacked By Zeeshan Haxor ZeSn Cyber TeamRox"; </script></h2> <p> "><script>document.body.innerHTML = "Hacked By Zeeshan Haxor ZeSn Cyber TeamRox"; </script> </p> <!-- CMS AREA End --> <!-- CMS AREA Repeat --> <!-- <h2>Title Repeat</h2> <p> Lorem ipsum dolor sit amit. Lorem ipsum dolor sit amit. Lorem ipsum dolor sit amit. Lorem ipsum dolor si ...[4224 bytes skipped]... | ||
http://psma.com.pk/cms.php?page_id=members | 200 OK Content-Length: 5740 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=meetings | 200 OK Content-Length: 5560 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=reports | 200 OK Content-Length: 7457 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=imports_exports | 200 OK Content-Length: 5560 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=gallery | 200 OK Content-Length: 5794 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=contact | 200 OK Content-Length: 7464 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=intro | 200 OK Content-Length: 5668 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=country | 200 OK Content-Length: 5831 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=memorandum | 200 OK Content-Length: 5740 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=chair_message | 200 OK Content-Length: 5740 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=past_chair | 200 OK Content-Length: 5560 Content-Type: text/html | clean |
http://psma.com.pk/cms.php?page_id=office_bearers | 200 OK Content-Length: 5582 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: psma.com.pk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 25 Dec 2015 18:53:33 GMT
Server: nginx/1.8.0
Content-Type: text/html
GET / HTTP/1.1
Host: psma.com.pk
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 25 Dec 2015 18:53:33 GMT
Server: nginx/1.8.0
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: psma.com.pk
Referer: http://www.google.com/search?q=psma.com.pk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: psma.com.pk
Referer: http://www.google.com/search?q=psma.com.pk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=psma.com.pk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://psma.com.pk/
Result: psma.com.pk is not infected or malware details are not published yet.
Result: psma.com.pk is not infected or malware details are not published yet.