Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=iseec.org.uk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://iseec.org.uk/ | HTTP/1.1 302 Found Connection: close Date: Fri, 09 Jan 2015 06:24:01 GMT Location: /home/index/cat_id/1 Server: nginx Content-Type: text/html; charset=utf-8 Set-Cookie: symfony=37krbr6aqn47ea8577mlkr9ub0; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://iseec.org.uk/home/index/cat_id/1 | 200 OK Content-Length: 10747 Content-Type: text/html | clean |
http://iseec.org.uk/js/jquery-1.4.2.min.js | 200 OK Content-Length: 73855 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(A,w){function ma(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(ma,1);return}c.ready()}}function Qa(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}function X(a,b,d,f,e,j){var i=a.length;if(typeof b==="object"){for(var o in b)X(a,o,b[o],f,e,d);return a}if(d!==w){f=!j&&f&&c.isFunction(d);for(o=0;o<i;o )e(a[o],b,f?d.call(a[o] Antivirus reports:
| ||
http://iseec.org.uk/js/jquery.hoverIntent.minified.js | 200 OK Content-Length: 3155 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){$.fn.hoverIntent=function(f,g){var cfg={sensitivity:7,interval:100,timeout:0};cfg=$.extend(cfg,g?{over:f,out:g}:f);var cX,cY,pX,pY;var track=function(ev){cX=ev.pageX;cY=ev.pageY;};var compare=function(ev,ob){ob.hoverIntent_t=clearTimeout(ob.hoverIntent_t);if((Math.abs(pX-cX) Math.abs(pY-cY))<cfg.sensitivity){$(ob).unbind("mousemove",track);ob.hoverIntent_s=1;return cfg.over.apply(ob,[ev]);}else{pX=cX;pY=cY;ob.hoverIntent_t=setTimeout(function(){compare(ev,ob);},cfg.interval);}};v Antivirus reports:
| ||
http://iseec.org.uk/js/jquery.colorbox.js | 200 OK Content-Length: 24811 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function ($, window) { var defaults = { transition: "elastic", speed: 300, width: false, initialWidth: "600", innerWidth: false, maxWidth: false, height: false, initialHeight: "450", innerHeight: false, maxHeight: false, scalePhotos: true, scrolling: true, inline: false, html: false, iframe: false, photo: false, href: false, title: false, rel: false, opacity: Antivirus reports:
| ||
http://iseec.org.uk/js/jquery/jquery-ui-1.8.6.custom.min | 502 Bad Gateway Content-Length: 568 Content-Type: text/html | clean |
http://iseec.org.uk/test404page.js | 502 Bad Gateway Content-Length: 568 Content-Type: text/html | clean |
http://iseec.org.uk/js/jquery/ui/jquery.ui.core.js | 200 OK Content-Length: 14397 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function( $, undefined ) { $.ui = $.ui || {}; if ( $.ui.version ) { return; } $.extend( $.ui, { version: "1.8.6", keyCode: { ALT: 18, BACKSPACE: 8, CAPS_LOCK: 20, COMMA: 188, COMMAND: 91, COMMAND_LEFT: 91, COMMAND_RIGHT: 93, CONTROL: 17, DELETE: 46, DOWN: 40, END: 35, ENTER: 13, ESCAPE: 27, HOME: 36, INSERT: 45, LEFT: 37, MENU: 93, NUMPAD_ADD: 107, NUMPAD_DECI Antivirus reports:
| ||
http://iseec.org.uk/js/jquery/ui/jquery.ui.datepicker.js | 200 OK Content-Length: 78596 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function( $, undefined ) { $.extend($.ui, { datepicker: { version: "1.8.6" } }); var PROP_NAME = 'datepicker'; var dpuuid = new Date().getTime(); function Datepicker() { this.debug = false; this._curInst = null; this._keyEvent = false; this._disabledInputs = []; this._datepickerShowing = false; this._inDialog = false; this._mainDivId = 'ui-datepicker-div'; this._inlineClass = 'ui-datepicker-inline'; this._appendClass = 'ui-datepicker-append'; this._triggerClass = ' Antivirus reports:
| ||
http://iseec.org.uk/js/jquery/jquery.vticker.1.4.js | 200 OK Content-Length: 4299 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){ $.fn.vTicker = function(options) { var defaults = { speed: 700, pause: 4000, showItems: 3, animation: '', mousePause: true, isPaused: false, direction: 'up', height: 0 }; var options = $.extend(defaults, options); moveUp = function(obj2, height, options){ if(options.isPaused) return; var obj = obj2.children('ul'); var clone = obj.children('li:first').clone(true); Antivirus reports:
| ||
http://iseec.org.uk/js/jquery.nivo.slider.pack.js | 200 OK Content-Length: 13426 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){var NivoSlider=function(element,options){var settings=$.extend({},$.fn.nivoSlider.defaults,options);var vars={currentSlide:0,currentImage:'',totalSlides:0,randAnim:'',running:false,paused:false,stop:false};var slider=$(element);slider.data('nivo:vars',vars);slider.css('position','relative');slider.addClass('nivoSlider');var kids=slider.children();kids.each(function(){var child=$(this);var link='';if(!child.is('img')){if(child.is('a')){child.addClass('nivo-imageLink');link=child;} Antivirus reports:
| ||
http://iseec.org.uk/js/jquery.validationEngine.js | 502 Bad Gateway Content-Length: 568 Content-Type: text/html | clean |
http://iseec.org.uk/js/jquery.validationEngine-en.js | 502 Bad Gateway Content-Length: 568 Content-Type: text/html | clean |
http://timcox.net/r3mgtqrl.php?id=39463971 | 200 OK Content-Length: 1 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: iseec.org.uk
Result:
HTTP/1.1 302 Found
Connection: close
Date: Fri, 09 Jan 2015 06:24:01 GMT
Location: /home/index/cat_id/1
Server: nginx
Content-Type: text/html; charset=utf-8
Set-Cookie: symfony=37krbr6aqn47ea8577mlkr9ub0; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: iseec.org.uk
Result:
HTTP/1.1 302 Found
Connection: close
Date: Fri, 09 Jan 2015 06:24:01 GMT
Location: /home/index/cat_id/1
Server: nginx
Content-Type: text/html; charset=utf-8
Set-Cookie: symfony=37krbr6aqn47ea8577mlkr9ub0; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: iseec.org.uk
Referer: http://www.google.com/search?q=iseec.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: iseec.org.uk
Referer: http://www.google.com/search?q=iseec.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.