Scanned pages/files
| Request | Server response | Status |
http://www.gsts.co.il/ | 200 OK Content-Length: 20692 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By Josef Paradox ...[13849 bytes skipped]... /param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/zMgr7AvD4HE?version=3&hl=iw_IL&rel=0" type="application/x-shockwave-flash" width="455" height="382" allowscriptaccess="always" allowfullscreen="true"></embed></object> </div> <div class="index_text"> <head></head><title>Hacked By Josef Paradox</title> <center><body bgcolor="black"><font color="#FF3300" face="Tahoma" size="7">[!] Own3d by Josef Paradox - Zaki R00ma <br> </font><p><font color="#FF3300"><font size="6">This </font></font> <font size="6"><font color="#FFFFFF">Domain Registry</font> <font color="#FF3300"> STAMPED</font></font><font size="6" color="#FFFFF ...[10939 bytes skipped]... | ||
http://www.gsts.co.il/misc/jquery.js?v=1.4.4 | 200 OK Content-Length: 78602 Content-Type: application/javascript | clean |
http://www.gsts.co.il/misc/jquery.once.js?v=1.2 | 200 OK Content-Length: 2974 Content-Type: application/javascript | clean |
http://www.gsts.co.il/misc/drupal.js?lxt9ov | 200 OK Content-Length: 13314 Content-Type: application/javascript | clean |
http://www.gsts.co.il/sites/default/files/languages/he_m-8RTwRmgCjbqN58U09n9Ux4HUPJ0LG3eN32xSIc3Ys.js?lxt9ov | 200 OK Content-Length: 3698 Content-Type: application/javascript | clean |
http://www.gsts.co.il/sites/all/libraries/colorbox/colorbox/jquery.colorbox-min.js?lxt9ov | 200 OK Content-Length: 9593 Content-Type: application/javascript | clean |
http://www.gsts.co.il/sites/all/modules/colorbox/js/colorbox.js?lxt9ov | 200 OK Content-Length: 415 Content-Type: application/javascript | clean |
http://www.gsts.co.il/sites/all/modules/colorbox/styles/default/colorbox_default_style.js?lxt9ov | 200 OK Content-Length: 693 Content-Type: application/javascript | clean |
http://www.gsts.co.il/sites/all/modules/google_analytics/googleanalytics.js?lxt9ov | 200 OK Content-Length: 3185 Content-Type: application/javascript | clean |
http://www.gsts.co.il/sites/all/themes/gsts/master.js?lxt9ov | 200 OK Content-Length: 11396 Content-Type: application/javascript | clean |
http://www.gsts.co.il/contact | 404 Not Found Content-Length: 14774 Content-Type: text/html | clean |
http://www.gsts.co.il/consultation | 200 OK Content-Length: 30648 Content-Type: text/html | clean |
http://www.gsts.co.il/threat_and_risk_assessment | 200 OK Content-Length: 19936 Content-Type: text/html | clean |
http://www.gsts.co.il/training | 200 OK Content-Length: 31014 Content-Type: text/html | clean |
http://www.gsts.co.il/technology | 200 OK Content-Length: 32272 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gsts.co.il
Result:
GET / HTTP/1.1
Host: gsts.co.il
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: gsts.co.il
Referer: http://www.google.com/search?q=gsts.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gsts.co.il
Referer: http://www.google.com/search?q=gsts.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gsts.co.il
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://gsts.co.il/
Result: gsts.co.il is not infected or malware details are not published yet.
Result: gsts.co.il is not infected or malware details are not published yet.