Scanned pages/files
| Request | Server response | Status |
http://jetflights.info/ | 200 OK Content-Length: 7687 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By PhantomGhost <head> <meta http-equiv="Content-Language" content="en-us"> <title>Hacked By PhantomGhost</title> <script>var numraindrops="150";var speed="5";var rainsize="2";var wind="left";var genxgallery="";function tb5_makeArray(n){this.length=n;return this.length;} tb5_messages=new tb5_makeArray(2);tb5_messages[0]="Hacked by";tb5_messages[1]="PhantomGhost";tb5_rptType='infinite';tb5_rptNbr=10;tb5_speed=50;tb5_delay=2000;var tb5_counter=1;var tb5_currMsg=0;var tb5_stsmsg="";function tb5_shuffle(arr){var k ...[8019 bytes skipped]... | ||
http://jetflights.info/test404page.js | 404 Not Found Content-Length: 7643 Content-Type: text/html | clean |
http://jetflights.info/wp-content/themes/simplo/js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/themes/simplo/js/contactform.js | 200 OK Content-Length: 1129 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/themes/simplo/js/cufon-yui.js | 200 OK Content-Length: 18264 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/themes/simplo/js/DIN_400-DIN_700.font.js | 200 OK Content-Length: 27257 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/themes/simplo/js/ddsmoothmenu.js | 200 OK Content-Length: 7013 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/themes/simplo/js/jquery.prettyPhoto.js | 200 OK Content-Length: 16909 Content-Type: text/javascript | clean |
http://jetflights.info/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: text/javascript | clean |
http://jetflights.info/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.44.0-2013.09.15 | 200 OK Content-Length: 16305 Content-Type: text/javascript | clean |
http://jetflights.info/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.7.2 | 200 OK Content-Length: 8326 Content-Type: text/javascript | clean |
http://jetflights.info/feed/ | 200 OK Content-Length: 51864 Content-Type: text/xml | clean |
http://jetflights.info/contact/ | 200 OK Content-Length: 9408 Content-Type: text/html | clean |
http://jetflights.info/privacy-policy/ | 200 OK Content-Length: 10480 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jetflights.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Aug 2014 03:34:23 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 7687
Content-Type: text/html
Last-Modified: Sun, 01 Jun 2014 14:19:06 GMT
...7687 bytes of data.
GET / HTTP/1.1
Host: jetflights.info
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 21 Aug 2014 03:34:23 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 7687
Content-Type: text/html
Last-Modified: Sun, 01 Jun 2014 14:19:06 GMT
...7687 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jetflights.info
Referer: http://www.google.com/search?q=jetflights.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jetflights.info
Referer: http://www.google.com/search?q=jetflights.info
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jetflights.info
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jetflights.info/
Result: jetflights.info is not infected or malware details are not published yet.
Result: jetflights.info is not infected or malware details are not published yet.