Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=maniciurfa.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://maniciurfa.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://maniciurfa.com/ | HTTP/1.1 200 OK Date: Mon, 22 Dec 2014 05:10:01 GMT Accept-Ranges: bytes ETag: "7fea898731a3cf1:373b8" Server: Microsoft-IIS/6.0 Content-Length: 6688 Content-Location: http://maniciurfa.com/Default.htm Content-Type: text/html Last-Modified: Sat, 19 Jul 2014 09:12:13 GMT X-Powered-By: ASP.NET | clean |
http://maniciurfa.com/default.htm | 200 OK Content-Length: 6688 Content-Type: text/html | clean |
http://maniciurfa.com/AnimateBtn.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://maniciurfa.com/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://www.jscache.com/wejs?wtype=rated&uniq=394&locationId=2138163&lang=tr | 200 OK Content-Length: 129 Content-Type: application/x-javascript | clean |
http://www.booking.com/general.html?tmpl=bookit;aid=330843;lang=tr;hotel_id=328589;cc1=tr;hotel_page=manici | HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 05:09:34 GMT Location: http://www.booking.com/general.tr.html?tmpl=bookit Server: nginx Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOjxubVDUPeld%2FEMJ6SIXg53iBFGi3EwAvkXznjqXZMFl7H%2BXaRmyrd8%2BcbgOniUP2iXfevaVbWXlk9GLp1m4o9HA%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:34 GMT; HTTPOnly X-Cnection: close X-Recruiting: Like HTTP headers? Come write ours: https://workingatbooking.com X-UA-Compatible: IE=edge | clean |
http://www.booking.com/general.tr.html?tmpl=bookit | HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 05:09:34 GMT Location: http://www.booking.com/general.tr.html Server: nginx Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOjxubVDUPeld%2FEMJ6SIXg53v2jUwl6zeQGf%2FaOdMmnjFRzfwtbkWiRVo6fb9jY7xFrRqUNLMARcg76GRrdKKX%2BFA%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:34 GMT; HTTPOnly X-Cnection: close X-Recruiting: Like HTTP headers? Come write ours: https://workingatbooking.com X-UA-Compatible: IE=edge | clean |
http://www.booking.com/general.tr.html | HTTP/1.1 200 OK Date: Mon, 22 Dec 2014 05:09:35 GMT Server: nginx Vary: User-Agent, Accept-Encoding Content-Length: 230 Content-Type: text/html; charset=UTF-8 Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOjponTIPVTolQdFbvzmWJt8CZLixg2b9RdLyvHBcVBGA94SUoutul1Mtgw2OQBMypzoUW7zpyimzswpAB117OLBA%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:35 GMT; HTTPOnly X-Cnection: close X-Recruiting: Like HTTP headers? Come write ours: https://workingatbooking.com X-UA-Compatible: IE=edge | clean |
http://www.booking.com/index.tr.html | 200 OK Content-Length: 261550 Content-Type: text/html | clean |
http://q-ec.bstatic.com/static/js/bhc/e8487f37f2b974a9d6455369f26233a4a30e5642.js | 200 OK Content-Length: 9862 Content-Type: application/x-javascript | clean |
http://r-ec.bstatic.com/static/js/jquery-1.4.4.min/e185cfe54ae7b27a09cc0bdbe1063f3b6275078b.js | 200 OK Content-Length: 78629 Content-Type: application/x-javascript | clean |
http://r-ec.bstatic.com/static/js/main_edgecast/92c04430aa4379abaf0c82826f58e61b9681a947.js | 200 OK Content-Length: 302252 Content-Type: application/x-javascript | suspicious |
Hidden iFrame found. size: 1x1 style: hidden src: http://4228414.fls.doubleclick.net/activityi;src=4228414;type=apps;cat=now;u3= <iframe src="http://4228414.fls.doubleclick.net/activityi;src=4228414;type=apps;cat=now;u3=';u+=window.utag_data.channel_id;u+=";u4="+d.env.aid;u+=";ord="+window.utag_data.sid+'?"';u+='width="1" height="1" frameborder="0" style="display:none"> | ||
http://r-ec.bstatic.com/static/js/landingpage_edgecast/19c9bb128ba255a9ae206a4a5e68636a86ae4585.js | 200 OK Content-Length: 94731 Content-Type: application/x-javascript | clean |
http://r-ec.bstatic.com/static/js/autocomplete_edgecast/837947be100ef14928d00ac8b471a77c86d78a9f.js | 200 OK Content-Length: 37439 Content-Type: application/x-javascript | clean |
http://q-ec.bstatic.com/static/js/calendar2_edgecast/5b9bf000b77985df33d202b27869b12c162df300.js | 200 OK Content-Length: 25785 Content-Type: application/x-javascript | clean |
http://www.booking.com/ | 200 OK Content-Length: 261435 Content-Type: text/html | clean |
http://www.booking.com/content/cs.html | 200 OK Content-Length: 193368 Content-Type: text/html | clean |
http://r-ec.bstatic.com/static/js/contact_cs_edgecast/ea8a5d0ce63e92141d4bd7111bded640fcd22b61.js | 200 OK Content-Length: 7679 Content-Type: application/x-javascript | clean |
http://www.booking.com/index.html | HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 05:09:44 GMT Location: http://www.booking.com/ Server: nginx Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOjM%2F5HzaKeZcBFAsW09H5JH45DFNvln6YduB8rJInkFUI%2BLwJ%2Br1oGyjlyRhgRY5Vo5MRp3fs7h%2F50vP%2FcomF3Kg%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:44 GMT; HTTPOnly X-Cnection: close X-Recruiting: Like HTTP headers? Come write ours: https://workingatbooking.com X-UA-Compatible: IE=edge | clean |
http://www.booking.com/content/ | HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 05:09:45 GMT Location: http://www.booking.com/searchresults.html?si=ai%2Cco%2Cci%2Cre%2Cla%2Cdi;ss=content;ifl=1;label=short-content Server: nginx Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOj8%2B7zMU9W6xLpKcX%2BEnVvBlyzXRx9hOXuTbgiyaCGhqA2YYBd4oWW784nh7y%2FRXzqt9Ks7awW0CLpZhWQjchvtw%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:45 GMT; HTTPOnly X-Cnection: close X-Recruiting: Like HTTP headers? Come write ours: https://workingatbooking.com X-UA-Compatible: IE=edge | clean |
http://www.booking.com/searchresults.html?si=ai%2cco%2cci%2cre%2cla%2cdi;ss=content;ifl=1;label=short-content | HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 05:09:45 GMT Location: http://www.booking.com/searchresults.html?si=ai%252cco%252cci%252cre%252cla%252cdi;ss=content Server: nginx Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOj8%2B7zMU9W6xLpKcX%2BEnVvBhhCO%2FA7PsxH39y9CG43%2BK92Kn11NnJBJ33m7w8nk2Iy7HEQVFyj8L5Y3aH8N2idpQ%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:45 GMT; HTTPOnly X-Cnection: close X-Recruiting: Like HTTP headers? Come write ours: https://workingatbooking.com X-UA-Compatible: IE=edge | clean |
http://www.booking.com/searchresults.html?si=ai%252cco%252cci%252cre%252cla%252cdi;ss=content | HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 05:09:46 GMT Location: /searchresults.html?si=ai%2cco%2cci%2cre%2cla%2cdi;ss=content Server: nginx Set-Cookie: bkng=11UmFuZG9tSVYkc2RlIyh9YWJdm48m5cJDreRivtoOBD%2FKCQVc9QdlIRn7noye8HOjqZV6Gi%2FmcvmbDHqFL0RcR2xARZ1wXyT%2F7QggBh7ab9P8WBPwTo3FeTY20mVL1cjpIRmXXMWyfRViWQ5KARYtlA%3D%3D; domain=.booking.com; path=/; expires=Sat, 21-Dec-2019 05:09:46 GMT; HTTPOnly X-Cnection: close | clean |
http://www.booking.com/searchresults.html?si=ai%2cco%2cci%2cre%2cla%2cdi;ss=content | 200 OK Content-Length: 302463 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: maniciurfa.com
Result:
HTTP/1.1 200 OK
Date: Mon, 22 Dec 2014 05:10:01 GMT
Accept-Ranges: bytes
ETag: "7fea898731a3cf1:373b8"
Server: Microsoft-IIS/6.0
Content-Length: 6688
Content-Location: http://maniciurfa.com/Default.htm
Content-Type: text/html
Last-Modified: Sat, 19 Jul 2014 09:12:13 GMT
X-Powered-By: ASP.NET
...6688 bytes of data.
GET / HTTP/1.1
Host: maniciurfa.com
Result:
HTTP/1.1 200 OK
Date: Mon, 22 Dec 2014 05:10:01 GMT
Accept-Ranges: bytes
ETag: "7fea898731a3cf1:373b8"
Server: Microsoft-IIS/6.0
Content-Length: 6688
Content-Location: http://maniciurfa.com/Default.htm
Content-Type: text/html
Last-Modified: Sat, 19 Jul 2014 09:12:13 GMT
X-Powered-By: ASP.NET
...6688 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: maniciurfa.com
Referer: http://www.google.com/search?q=maniciurfa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: maniciurfa.com
Referer: http://www.google.com/search?q=maniciurfa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.