Scanned pages/files
Request | Server response | Status |
http://www.hagaderhatova.co.il/ | 200 OK Content-Length: 8479 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ANONGHOST <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head><meta http-equiv="Content-Type" content="text/html; charset=utf-8" /><meta id="md" name="description" content="HACKED BY ANONGHOST" /><meta id="kw" name="keywords" content="HACKED BY ANONGHOST" /><title> HACKED BY ANONGHOST </title><link id="CSS" href="h.css" rel="stylesheet" type="text/css" /></head> <body> <form name="frm1" method="post" action="default.aspx" id="frm1"> <div> <input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="/wEPDwUKLTcxOTYyOTAxOGRkW/H ...[10062 bytes skipped]... | ||
http://www.hagaderhatova.co.il/jscript/img.js | 200 OK Content-Length: 5798 Content-Type: application/x-javascript | clean |
http://www.hagaderhatova.co.il/××£-×××ת.aspx | 200 OK Content-Length: 8529 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/××ר××ת-ת××× ×ת.aspx | 200 OK Content-Length: 28296 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/צ×ר-קשר.aspx | 200 OK Content-Length: 9519 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/×©×¤× ×-ס××¢.aspx | 200 OK Content-Length: 8520 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/××ר×ת-רשת.aspx | 200 OK Content-Length: 8614 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/××ר×ת-×ש××××ת.aspx | 200 OK Content-Length: 15749 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/××ר×ת-××ק×ר×× ××ת.aspx | 200 OK Content-Length: 10100 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/צ×××.aspx | 200 OK Content-Length: 8127 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/english.aspx | 200 OK Content-Length: 16850 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/admin | HTTP/1.1 301 Moved Permanently Date: Tue, 09 Dec 2014 13:51:14 GMT Location: http://www.hagaderhatova.co.il/admin/ Content-Length: 160 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.hagaderhatova.co.il/admin/ | HTTP/1.1 302 Found Cache-Control: private Date: Tue, 09 Dec 2014 13:51:14 GMT Location: AdminLogin.aspx?ReturnUrl=http://www.hagaderhatova.co.il/admin/default.aspx Content-Length: 206 Content-Type: text/html; charset=utf-8 Set-Cookie: ASP.NET_SessionId=kd5qruqwajqbfyrdh2ec4xaw; path=/; HttpOnly Set-Cookie: LangName=h; expires=Fri, 19-Dec-2014 13:51:15 GMT; path=/ Set-Cookie: LangDir=True; expires=Fri, 19-Dec-2014 13:51:15 GMT; path=/ Set-Cookie: LangFullName=Hebrew; expires=Fri, 19-Dec-2014 13:51:15 GMT; path=/ X-AspNet-Version: 2.0.50727 X-Powered-By: ASP.NET | clean |
http://www.hagaderhatova.co.il/admin/adminlogin.aspx?returnurl=http://www.hagaderhatova.co.il/admin/default.aspx | 200 OK Content-Length: 5591 Content-Type: text/html | clean |
http://www.hagaderhatova.co.il/WebResource.axd?d=L2KWL19B8n_GamT507QU_FJBCJeUlBLW66Y6n2qZ52VsD31PfXgdSUo2I3bCUqKBuNgfK6Qx-gwHA8fptnTvrYYeuuw1&t=635295166417495136 | 200 OK Content-Length: 20794 Content-Type: application/x-javascript | clean |
http://www.hagaderhatova.co.il/WebResource.axd?d=SuYfgpbLs59C6dWPOT7OmUBwSh4xdEVvc3-M7FeJ0Z6IIJGfk986bdg_VgrWQ-aLetFJpNFuO_2BzTHeFtgfLfbb3G41&t=635295166417495136 | 200 OK Content-Length: 21547 Content-Type: application/x-javascript | clean |
http://www.hagaderhatova.co.il/../default.aspx | 403 Forbidden Content-Length: 312 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hagaderhatova.co.il
Result:
GET / HTTP/1.1
Host: hagaderhatova.co.il
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: hagaderhatova.co.il
Referer: http://www.google.com/search?q=hagaderhatova.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hagaderhatova.co.il
Referer: http://www.google.com/search?q=hagaderhatova.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hagaderhatova.co.il
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://hagaderhatova.co.il/
Result: hagaderhatova.co.il is not infected or malware details are not published yet.
Result: hagaderhatova.co.il is not infected or malware details are not published yet.