Scanned pages/files
Request | Server response | Status |
http://www.crt.co.il/ | 200 OK Content-Length: 903 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By bl4ck-dz <body bgcolor='#000000' text='white'>
<title>Hacked By bl4ck-dz</title> <center><img src='http://static3.demotix.com/sites/default/files/imagecache/a_scale_large/400-1/photos/1282231691-the-secrets-behind-the-palestinian-flag-_414391.jpg' height='300' width='300'></img><br><p align='center' dir='ltr'> <font face='Verdana' size='4' color='#FFFFFF'> Hacked By bl4ck-dz </font></br> <font face='Verdana' size='4' color='blue'& ...[611 bytes skipped]... | ||
http://www.crt.co.il/test404page.js | HTTP/1.1 302 Redirect Date: Tue, 04 Aug 2015 02:49:08 GMT Location: http://www.allbiz.co.il/crt/Error404.asp Server: Microsoft-IIS/7.5 Content-Length: 163 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.allbiz.co.il/crt/error404.asp | 200 OK Content-Length: 37752 Content-Type: text/html | clean |
http://www.allbiz.co.il//www.googleadservices.com/pagead/conversion.js/ | 404 Not Found Content-Length: 5259 Content-Type: text/html | clean |
http://www.allbiz.co.il/test404page.js | 404 Not Found Content-Length: 5195 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: crt.co.il
Result:
GET / HTTP/1.1
Host: crt.co.il
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: crt.co.il
Referer: http://www.google.com/search?q=crt.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: crt.co.il
Referer: http://www.google.com/search?q=crt.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=crt.co.il
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://crt.co.il/
Result: crt.co.il is not infected or malware details are not published yet.
Result: crt.co.il is not infected or malware details are not published yet.