Scanned pages/files
Request | Server response | Status |
http://1stclassairfares.com/ | 200 OK Content-Length: 127054 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: HACKED by 4Z15 ...[170 bytes skipped]... ikipedia/commons/thumb/9/90/National_emblem_of_Indonesia_ Garuda_Pancasila.svg/20px-National_emblem_of_Indonesia_Garuda_Pancasila.svg.png"> <title>4Z15 - INDONESIAN PEOPLE</title> <meta charset="UTF-8"> <!-- If Chrome Frame is enabled, let's use it! --> <meta http-equiv="X-UA-Compatible" content="chrome=1" /> <meta name="Description" content="HACKED by 4Z15" /> <script> /*! jQuery v1.11.0 | (c) 2005, 2014 jQuery Foundation, Inc. | jquery.org/license */ !function(a,b){"object"==typeof module&&"object"==typeof module.exports? module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window with a document");return b(a)}:b(a)}("undefined"!=typeof window? window:this,function(a,b){var c=[],d=c.slice,e=c.concat,f=c.push,g=c.ind ...[146106 bytes skipped]... | ||
http://1stclassairfares.com/test404page.js | 404 Not Found Content-Length: 401 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: 1stclassairfares.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 02 Oct 2015 02:18:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
GET / HTTP/1.1
Host: 1stclassairfares.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 02 Oct 2015 02:18:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: 1stclassairfares.com
Referer: http://www.google.com/search?q=1stclassairfares.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: 1stclassairfares.com
Referer: http://www.google.com/search?q=1stclassairfares.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=1stclassairfares.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://1stclassairfares.com/
Result: 1stclassairfares.com is not infected or malware details are not published yet.
Result: 1stclassairfares.com is not infected or malware details are not published yet.