Scanned pages/files
| Request | Server response | Status |
http://crackle.com/ | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:37:58 GMT Location: http://www.crackle.com/ Server: Microsoft-IIS/8.0 Content-Length: 146 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/ | 200 OK Content-Length: 54701 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var axel = Math.floor(Math.random() * 10000000000000); document.write('<iframe src="https://fls.doubleclick.net/activityi;src=3670346;type=pages001;cat=homep393;ord=' + axel + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); })(); Antivirus reports:
| ||
http://d.audienceiq.com/r/dd/id/L21rdC80NC9jaWQvMjg0Mzg3MDkvdC8wL2NhdC8yODQ3OTYyMg | 200 OK Content-Length: 387 Content-Type: text/javascript | clean |
http://crackle.com/scripts/yui.2.9.0.js | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:38:02 GMT Location: http://www.crackle.com/scripts/yui.2.9.0.js Server: Microsoft-IIS/8.0 Content-Length: 166 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/scripts/yui.2.9.0.js | 200 OK Content-Length: 115134 Content-Type: application/javascript | clean |
http://crackle.com/scripts/Homepage_8BFCEAA77E5A3FE0D9BAD5AEC9A17341.js | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:38:03 GMT Location: http://www.crackle.com/scripts/Homepage_8BFCEAA77E5A3FE0D9BAD5AEC9A17341.js Server: Microsoft-IIS/8.0 Content-Length: 198 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/scripts/homepage_8bfceaa77e5a3fe0d9bad5aec9a17341.js | 200 OK Content-Length: 301344 Content-Type: application/javascript | clean |
http://crackle.com//cdn.optimizely.com/js/284669517.js/ | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:38:05 GMT Location: http://www.crackle.com/cdn.optimizely.com/js/284669517.js/ Server: Microsoft-IIS/8.0 Content-Length: 181 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/cdn.optimizely.com/js/284669517.js/ | 404 Not Found Content-Length: 45398 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var axel = Math.floor(Math.random() * 10000000000000); document.write('<iframe src="https://fls.doubleclick.net/activityi;src=3670346;type=pages001;cat=homep393;ord=' + axel + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); })(); Antivirus reports:
| ||
http://www.crackle.com/scripts/Static_35B1264272EEFE965159D37260147E69.js | 200 OK Content-Length: 300853 Content-Type: application/javascript | clean |
http://crackle.com/scripts/foresee/foresee-trigger.js | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:38:07 GMT Location: http://www.crackle.com/scripts/foresee/foresee-trigger.js Server: Microsoft-IIS/8.0 Content-Length: 180 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/scripts/foresee/foresee-trigger.js | 200 OK Content-Length: 68681 Content-Type: application/javascript | clean |
http://crackle.com/scripts/googleTagManager/googleTagManagerFactory.js | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:38:09 GMT Location: http://www.crackle.com/scripts/googleTagManager/googleTagManagerFactory.js Server: Microsoft-IIS/8.0 Content-Length: 197 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/scripts/googletagmanager/googletagmanagerfactory.js | 200 OK Content-Length: 605 Content-Type: application/javascript | clean |
http://cache.adfeedstrk.com/tags/pixels/crackle.js | 200 OK Content-Length: 1968 Content-Type: application/x-javascript | clean |
http://crackle.com//www.googleadservices.com/pagead/conversion.js/ | HTTP/1.1 301 Moved Permanently Date: Sun, 14 Sep 2014 22:38:09 GMT Location: http://www.crackle.com/www.googleadservices.com/pagead/conversion.js/ Server: Microsoft-IIS/8.0 Content-Length: 192 Content-Type: text/html; charset=UTF-8 X-Powered-By: ASP.NET | clean |
http://www.crackle.com/www.googleadservices.com/pagead/conversion.js/ | 404 Not Found Content-Length: 45409 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var axel = Math.floor(Math.random() * 10000000000000); document.write('<iframe src="https://fls.doubleclick.net/activityi;src=3670346;type=pages001;cat=homep393;ord=' + axel + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); })(); Antivirus reports:
| ||
http://www.crackle.com//cdn.optimizely.com/js/284669517.js/ | 404 Not Found Content-Length: 45399 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var axel = Math.floor(Math.random() * 10000000000000); document.write('<iframe src="https://fls.doubleclick.net/activityi;src=3670346;type=pages001;cat=homep393;ord=' + axel + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); })(); Antivirus reports:
| ||
http://www.crackle.com/scripts/googleTagManager/googleTagManagerFactory.js | 200 OK Content-Length: 605 Content-Type: application/javascript | clean |
http://www.crackle.com//www.googleadservices.com/pagead/conversion.js/ | 404 Not Found Content-Length: 45409 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var axel = Math.floor(Math.random() * 10000000000000); document.write('<iframe src="https://fls.doubleclick.net/activityi;src=3670346;type=pages001;cat=homep393;ord=' + axel + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); })(); Antivirus reports:
| ||
http://www.crackle.com/outreach/faq | 200 OK Content-Length: 86976 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) (function () { var axel = Math.floor(Math.random() * 10000000000000); document.write('<iframe src="https://fls.doubleclick.net/activityi;src=3670346;type=pages001;cat=homep393;ord=' + axel + '?" width="1" height="1" frameborder="0" style="display:none"></iframe>'); })(); Antivirus reports:
| ||
http://www.crackle.com/scripts/OutreachPage_6BC99365BD9E788E112CAF77F5592A7C.js | 200 OK Content-Length: 300078 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: crackle.com
Result:
HTTP/1.1 301 Moved Permanently
Date: Sun, 14 Sep 2014 22:37:58 GMT
Location: http://www.crackle.com/
Server: Microsoft-IIS/8.0
Content-Length: 146
Content-Type: text/html; charset=UTF-8
X-Powered-By: ASP.NET
...146 bytes of data.
GET / HTTP/1.1
Host: crackle.com
Result:
HTTP/1.1 301 Moved Permanently
Date: Sun, 14 Sep 2014 22:37:58 GMT
Location: http://www.crackle.com/
Server: Microsoft-IIS/8.0
Content-Length: 146
Content-Type: text/html; charset=UTF-8
X-Powered-By: ASP.NET
...146 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: crackle.com
Referer: http://www.google.com/search?q=crackle.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: crackle.com
Referer: http://www.google.com/search?q=crackle.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=crackle.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://crackle.com/
Result: crackle.com is not infected or malware details are not published yet.
Result: crackle.com is not infected or malware details are not published yet.