Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=airparkingservices.co.uk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://airparkingservices.co.uk/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://airparkingservices.co.uk/ | 200 OK Content-Length: 65042 Content-Type: text/html | clean |
http://www.airparkingservices.co.uk/SpryAssets/SpryCollapsiblePanel.js | 200 OK Content-Length: 15813 Content-Type: text/javascript | clean |
http://www.airparkingservices.co.uk/js/preload.js | 200 OK Content-Length: 1245 Content-Type: text/javascript | clean |
http://www.airparkingservices.co.uk/js/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: text/javascript | clean |
http://www.airparkingservices.co.uk/js/jquery-ui-1.10.3.custom.js | 200 OK Content-Length: 84215 Content-Type: text/javascript | clean |
http://airparkingservices.co.uk/./dialog/dialog_box.js | 200 OK Content-Length: 5036 Content-Type: text/javascript | clean |
http://secure.holidayextras.co.uk/bookingforms/coreEngine.php?agent=WT933&noCSS=true&action=http://www.airparkingservices.co.uk/cms/admin/index.php?fuseaction=search.hotel&buttonText=Quote%20Me&chosenProduct=hcp&departStyle=consistent&chosen=hcp | 200 OK Content-Length: 57091 Content-Type: text/javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.airparkingservices.co.uk ...[29365 bytes skipped]... return hxEmbed.validate(); } ); $("select[@name='product']", this.frm).change( function(o) { $('div,select.hcp,select.cp,select.lo', hxEmbed.frm ).not('.common').hide(); $('.' + $("form.hxEmbed select[@name='product']").val(), hxEmbed.frm).show(); switch( $("form.hxEmbed select[@name='product']").val()) { case 'lo': $('select.lo', hxEmbed.frm).change(); $( hxEmbed.frm ).attr('action','http://www.airparkingservices.co.uk/cms/admin/index.php?fuseaction=search.hotel'); $("input[@name='request']", hxEmbed.frm).val('1'); break; case 'hcp': case 'ho': $('.secondHotelRoom', hxEmbed.frm).change(); $( hxEmbed.frm ).attr('action','http://www.airparkingservices.co.uk/cms/admin/index.php?fuseaction=search.hotel'); $("input[@name='request']", hxEmbed.frm).val('21'); break; case 'cp': $('select.airport', hxEmbed.frm).change(); $( hxEmbed.frm ).attr(' ...[33792 bytes skipped]... Decoded script: ...[66259 bytes skipped]... a; } a = jQuery.event.handle.apply(d, arguments); return a; } function () { var a; if (typeof jQuery == "undefined" || jQuery.event.triggered) { return a; } a = jQuery.event.handle.apply(d, arguments); return a; } <style type="text/css">/* NO CSS */</style> <form class="hxEmbed" name="advanced" method="post" action=" http://www.airparkingservices.co.uk/cms/admin/index.php?fuseaction=search.hotel "> <input type="hidden" name="agent" value="WT933" /> <input type="hidden" name="ID1" value="" /> <input type="hidden" name="seosession" value="" /> <input type="hidden" name="request" value="21" /> <input type="hidden" name="profile" value="" /> <input type="hidden" name="Referer" value="" /> <input type="hidden" name="ddiphone" value="" /> <input type="hidden" name="associate" value= ...[22499 bytes skipped]... | ||
http://airparkingservices.co.uk/<?php echo $path;?> | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
http://airparkingservices.co.uk/test404page.js | 404 Not Found Content-Length: 299 Content-Type: text/html | clean |
http://airparkingservices.co.uk/<?php echo $path;?>gatwick-airport-parking.php | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
http://airparkingservices.co.uk/<?php echo $path;?>heathrow-airport-parking.php | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
http://airparkingservices.co.uk/<?php echo $path;?>liverpool-airport-parking.php | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
http://airparkingservices.co.uk/<?php echo $path;?>manchester-airport-parking.php | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
http://airparkingservices.co.uk/<?php echo $path;?>aberdeen-airport-parking.php | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
http://airparkingservices.co.uk/<?php echo $path;?>belfast-international-airport-parking.php | 200 OK Content-Length: 44615 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: airparkingservices.co.uk
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 30 Jun 2014 23:13:11 GMT
Pragma: no-cache
Server: Apache/2.4.9 (Unix)
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=fpiutqnjk4q7aoch0pt7e0gsn0; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: airparkingservices.co.uk
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 30 Jun 2014 23:13:11 GMT
Pragma: no-cache
Server: Apache/2.4.9 (Unix)
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=fpiutqnjk4q7aoch0pt7e0gsn0; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: airparkingservices.co.uk
Referer: http://www.google.com/search?q=airparkingservices.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: airparkingservices.co.uk
Referer: http://www.google.com/search?q=airparkingservices.co.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.