Scanned pages/files
Request | Server response | Status |
http://pravda.co.il/ | 200 OK Content-Length: 8926 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED BY ANONGHOST ...[2619 bytes skipped]... ='0' cellspacing='0' style='background-color:#C59866;' onmouseover='this.style.backgroundColor="#ECD5BD"' onmouseout='this.style.backgroundColor="#C59866"'><tr><td style='padding:5px 0 5px 0;'><table cellpadding='0' cellspacing='0' width='220'><tr><td align='left' style='padding:0 5px 0 5px; text-transform:uppercase;'><a class='menu' href='http://www.pravda.co.il/articles/rus/1/'>HACKED BY ANONGHOST</a></td></tr></table></td></tr></table></td></tr><tr><td style='padding-bottom:10px;'><table cellpadding='0' cellspacing='0' style='background-color:#C59866;' onmouseover='this.style.backgroundColor="#ECD5BD"' onmouseout='this.style.backgroundColor="#C59866"'><tr><td style='padding:5px 0 5px 0;'><table cellpadding='0' cellspacing='0' width='220'><tr><td align='left' style='p ...[7360 bytes skipped]... | ||
http://www.pravda.co.il/js/addtof.js | 200 OK Content-Length: 173 Content-Type: application/javascript | clean |
http://pravda.co.il/test404page.js | 404 Not Found Content-Length: 3612 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: pravda.co.il
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Sep 2014 12:20:08 GMT
Server: Apache
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: pravda.co.il
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 11 Sep 2014 12:20:08 GMT
Server: Apache
Content-Type: text/html; charset=utf-8
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: pravda.co.il
Referer: http://www.google.com/search?q=pravda.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: pravda.co.il
Referer: http://www.google.com/search?q=pravda.co.il
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=pravda.co.il
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://pravda.co.il/
Result: pravda.co.il is not infected or malware details are not published yet.
Result: pravda.co.il is not infected or malware details are not published yet.