Scanned pages/files
| Request | Server response | Status |
http://jetflights.org/ | 200 OK Content-Length: 7687 Content-Type: text/html | suspicious |
Deface/Content modification. The following signature was found: Hacked By PhantomGhost <head> <meta http-equiv="Content-Language" content="en-us"> <title>Hacked By PhantomGhost</title> <script>var numraindrops="150";var speed="5";var rainsize="2";var wind="left";var genxgallery="";function tb5_makeArray(n){this.length=n;return this.length;} tb5_messages=new tb5_makeArray(2);tb5_messages[0]="Hacked by";tb5_messages[1]="PhantomGhost";tb5_rptType='infinite';tb5_rptNbr=10;tb5_speed=50;tb5_delay=2000;var tb5_counter=1;var tb5_currMsg=0;var tb5_stsmsg="";function tb5_shuffle(arr){var k ...[8019 bytes skipped]... | ||
http://jetflights.org/test404page.js | 404 Not Found Content-Length: 10706 Content-Type: text/html | clean |
http://jetflights.org/wp-content/themes/WP-TakingFlight/script.js | 200 OK Content-Length: 11081 Content-Type: text/javascript | clean |
http://jetflights.org/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 93085 Content-Type: text/javascript | clean |
http://jetflights.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: text/javascript | clean |
http://jetflights.org/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.44.0-2013.09.15 | 200 OK Content-Length: 14798 Content-Type: text/javascript | clean |
http://jetflights.org/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.6 | 200 OK Content-Length: 8326 Content-Type: text/javascript | clean |
http://jetflights.org/private-plane-charter/ | 200 OK Content-Length: 18350 Content-Type: text/html | clean |
http://jetflights.org/business-jet/ | 200 OK Content-Length: 17956 Content-Type: text/html | clean |
http://jetflights.org/privacy-policy/ | 200 OK Content-Length: 13578 Content-Type: text/html | clean |
http://jetflights.org/one-sky-jets/ | 200 OK Content-Length: 15861 Content-Type: text/html | clean |
http://jetflights.org/contact-us/ | 200 OK Content-Length: 14246 Content-Type: text/html | clean |
http://jetflights.org/feed/ | 200 OK Content-Length: 28613 Content-Type: text/xml | clean |
http://jetflights.org/private-jet-hire/ | 200 OK Content-Length: 18529 Content-Type: text/html | clean |
http://jetflights.org/airline-reservation-cost-cutting-tips/ | 200 OK Content-Length: 19528 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jetflights.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Sep 2014 08:59:23 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 7687
Content-Type: text/html
Last-Modified: Sun, 01 Jun 2014 14:19:06 GMT
...7687 bytes of data.
GET / HTTP/1.1
Host: jetflights.org
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Sep 2014 08:59:23 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 7687
Content-Type: text/html
Last-Modified: Sun, 01 Jun 2014 14:19:06 GMT
...7687 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jetflights.org
Referer: http://www.google.com/search?q=jetflights.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jetflights.org
Referer: http://www.google.com/search?q=jetflights.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jetflights.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://jetflights.org/
Result: jetflights.org is not infected or malware details are not published yet.
Result: jetflights.org is not infected or malware details are not published yet.