Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=holidays123.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://holidays123.net/ | 200 OK Content-Length: 15211 Content-Type: text/html | clean |
http://holidays123.net/SearchRentals.htm | 200 OK Content-Length: 29694 Content-Type: text/html | clean |
http://holidays123.net/index.htm | 200 OK Content-Length: 15211 Content-Type: text/html | clean |
http://holidays123.net/AreaInformation.htm | 200 OK Content-Length: 15033 Content-Type: text/html | clean |
http://holidays123.net/AdvertiseWithUs.htm | 200 OK Content-Length: 16391 Content-Type: text/html | clean |
http://holidays123.net/BusinessAdvertising.htm | 200 OK Content-Length: 25855 Content-Type: text/html | clean |
http://holidays123.net/PropertySales.htm | 200 OK Content-Length: 17112 Content-Type: text/html | clean |
http://holidays123.net/CarHire.htm | 200 OK Content-Length: 12204 Content-Type: text/html | clean |
http://holidays123.net/ContactUs.htm | 200 OK Content-Length: 9063 Content-Type: text/html | clean |
http://holidays123.net/CheapFlights.htm | 200 OK Content-Length: 11832 Content-Type: text/html | clean |
http://holidays123.net/AquopolisWaterPark.htm | 200 OK Content-Length: 15587 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var popbackground="lightskyblue" var windowtitle="Image Window" function detectexist(obj){ return (typeof obj !="undefined") } function jkpopimage(imgpath, popwidth, popheight, textdescription){ function getpos(){ leftpos=(detectexist(window.screenLeft))? screenLeft+document.body.clientWidth/2-popwidth/2 : detectexist(window.screenX)? screenX+innerWidth/2-popwidth/2 : 0 toppos=(detectexist(window.screenTop))? screenTop+document.body.clientHeight/2-popheight/2 : dete if (typeof jkpopwin=="undefined" || jkpopwin.closed) jkpopwin=window.open("","",winattributes) else{ jkpopwin.resizeTo(popwidth, popheight+30) } jkpopwin.document.open() jkpopwin.document.write('<html><title>'+windowtitle+'</title><body '+bodyattribute+'><img src="'+imgpath+'" style="margin-bottom: 0.5em"><br>'+textdescription+'</body></html>') jkpopwin.document.close() jkpopwin.focus() } Antivirus reports:
| ||
http://holidays123.net/Beaches.htm | 200 OK Content-Length: 16103 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var popbackground="lightskyblue" var windowtitle="Image Window" function detectexist(obj){ return (typeof obj !="undefined") } function jkpopimage(imgpath, popwidth, popheight, textdescription){ function getpos(){ leftpos=(detectexist(window.screenLeft))? screenLeft+document.body.clientWidth/2-popwidth/2 : detectexist(window.screenX)? screenX+innerWidth/2-popwidth/2 : 0 toppos=(detectexist(window.screenTop))? screenTop+document.body.clientHeight/2-popheight/2 : dete if (typeof jkpopwin=="undefined" || jkpopwin.closed) jkpopwin=window.open("","",winattributes) else{ jkpopwin.resizeTo(popwidth, popheight+30) } jkpopwin.document.open() jkpopwin.document.write('<html><title>'+windowtitle+'</title><body '+bodyattribute+'><img src="'+imgpath+'" style="margin-bottom: 0.5em"><br>'+textdescription+'</body></html>') jkpopwin.document.close() jkpopwin.focus() } Antivirus reports:
| ||
http://holidays123.net/ElcheSafariPark.htm | 200 OK Content-Length: 14818 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var popbackground="lightskyblue" var windowtitle="Image Window" function detectexist(obj){ return (typeof obj !="undefined") } function jkpopimage(imgpath, popwidth, popheight, textdescription){ function getpos(){ leftpos=(detectexist(window.screenLeft))? screenLeft+document.body.clientWidth/2-popwidth/2 : detectexist(window.screenX)? screenX+innerWidth/2-popwidth/2 : 0 toppos=(detectexist(window.screenTop))? screenTop+document.body.clientHeight/2-popheight/2 : dete if (typeof jkpopwin=="undefined" || jkpopwin.closed) jkpopwin=window.open("","",winattributes) else{ jkpopwin.resizeTo(popwidth, popheight+30) } jkpopwin.document.open() jkpopwin.document.write('<html><title>'+windowtitle+'</title><body '+bodyattribute+'><img src="'+imgpath+'" style="margin-bottom: 0.5em"><br>'+textdescription+'</body></html>') jkpopwin.document.close() jkpopwin.focus() } Antivirus reports:
| ||
http://holidays123.net/TerraMitica.htm | 200 OK Content-Length: 11279 Content-Type: text/html | clean |
http://holidays123.net/GolfCourses.htm | 200 OK Content-Length: 17172 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) var popbackground="lightskyblue" var windowtitle="Image Window" function detectexist(obj){ return (typeof obj !="undefined") } function jkpopimage(imgpath, popwidth, popheight, textdescription){ function getpos(){ leftpos=(detectexist(window.screenLeft))? screenLeft+document.body.clientWidth/2-popwidth/2 : detectexist(window.screenX)? screenX+innerWidth/2-popwidth/2 : 0 toppos=(detectexist(window.screenTop))? screenTop+document.body.clientHeight/2-popheight/2 : dete if (typeof jkpopwin=="undefined" || jkpopwin.closed) jkpopwin=window.open("","",winattributes) else{ jkpopwin.resizeTo(popwidth, popheight+30) } jkpopwin.document.open() jkpopwin.document.write('<html><title>'+windowtitle+'</title><body '+bodyattribute+'><img src="'+imgpath+'" style="margin-bottom: 0.5em"><br>'+textdescription+'</body></html>') jkpopwin.document.close() jkpopwin.focus() } Antivirus reports:
|
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: holidays123.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Jan 2015 04:16:53 GMT
Accept-Ranges: bytes
ETag: "54a17c4f-3b6b"
Server: nginx
Content-Length: 15211
Content-Type: text/html
Last-Modified: Mon, 29 Dec 2014 16:07:43 GMT
X-Powered-By: PleskLin
...15211 bytes of data.
GET / HTTP/1.1
Host: holidays123.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 10 Jan 2015 04:16:53 GMT
Accept-Ranges: bytes
ETag: "54a17c4f-3b6b"
Server: nginx
Content-Length: 15211
Content-Type: text/html
Last-Modified: Mon, 29 Dec 2014 16:07:43 GMT
X-Powered-By: PleskLin
...15211 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: holidays123.net
Referer: http://www.google.com/search?q=holidays123.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: holidays123.net
Referer: http://www.google.com/search?q=holidays123.net
Result:
The result is similar to the first query. There are no suspicious redirects found.