Scanned pages/files
| Request | Server response | Status |
http://absolutblank.co.il/ | 200 OK Content-Length: 9542 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.6.2/jquery.min.js | 200 OK Content-Length: 91556 Content-Type: text/javascript | clean |
https://ajax.googleapis.com/ajax/libs/jqueryui/1.8.14/jquery-ui.min.js | 200 OK Content-Length: 201658 Content-Type: text/javascript | clean |
http://absolutblank.co.il/js/jquery.tinyscrollbar.min.js | 200 OK Content-Length: 4086 Content-Type: text/javascript | clean |
http://absolutblank.co.il/js/jquery.slideViewerPro.1.5.js | 200 OK Content-Length: 11489 Content-Type: text/javascript | clean |
http://platform.twitter.com/widgets.js | 200 OK Content-Length: 109039 Content-Type: application/javascript | clean |
http://absolutblank.co.il/index.php | 200 OK Content-Length: 9542 Content-Type: text/html | clean |
http://absolutblank.co.il/gallery | 200 OK Content-Length: 9542 Content-Type: text/html | clean |
http://absolutblank.co.il/blank | 200 OK Content-Length: 20240 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ANONGHOST ...[9647 bytes skipped]... ; <td> <div id="blank_left"> <table width="250" align="center"><tr> <td class="bottle_box bottle_box_selected" align="center" valign="middle"> <a href="#bottle_1"><img src="images/blank_small_slices/blank_small__01.png" id="bottle_1" border="0" alt="" OnClick="SetNewBottle(0,'images/blank_big_slices/big_01.png','<html> <head> <title>HACKED BY ANONGHOST</title> <style type=\'text/css\'> body, html { margin: 0; padding: 0; height: 100%; overflow: hidden; } </style> </head> <body> <iframe width=\'100%\' height=\'100%\' src=\'http://hayerushalmit.co.il/indexx.html\' /> </body></html>','?? ???????');"/></a> </td> <td class="bottle_box " align="center" valign="middle">< ...[12920 bytes skipped]... | ||
http://absolutblank.co.il/nir+hod | 200 OK Content-Length: 9811 Content-Type: text/html | clean |
http://absolutblank.co.il/movie | 200 OK Content-Length: 8961 Content-Type: text/html | clean |
http://absolutblank.co.il/process | 200 OK Content-Length: 11606 Content-Type: text/html | clean |
http://absolutblank.co.il/test404page.js | 404 Not Found Content-Length: 296 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: absolutblank.co.il
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 18 May 2015 22:52:11 GMT
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html; charset=windows-1255
X-Powered-By: PHP/5.3.3
GET / HTTP/1.1
Host: absolutblank.co.il
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 18 May 2015 22:52:11 GMT
Server: Apache/2.2.15 (CentOS)
Content-Type: text/html; charset=windows-1255
X-Powered-By: PHP/5.3.3
Second query (visit from search engine):
GET / HTTP/1.1
Host: absolutblank.co.il
Referer: http://www.google.com/search?q=absolutblank.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: absolutblank.co.il
Referer: http://www.google.com/search?q=absolutblank.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=absolutblank.co.il
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://absolutblank.co.il/
Result: absolutblank.co.il is not infected or malware details are not published yet.
Result: absolutblank.co.il is not infected or malware details are not published yet.