Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=iskit.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://iskit.org/ | 200 OK Content-Length: 24283 Content-Type: text/html | clean |
http://www.iskit.org/ckeditor/ckeditor.js | 200 OK Content-Length: 300537 Content-Type: application/x-javascript | clean |
http://www.iskit.org/jquery-1.4.2.min.js | 200 OK Content-Length: 78654 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(A,w){function ma(){if(!c.isReady){try{s.documentElement.doScroll("left")}catch(a){setTimeout(ma,1);return}c.ready()}}function Qa(a,b){b.src?c.ajax({url:b.src,async:false,dataType:"script"}):c.globalEval(b.text||b.textContent||b.innerHTML||"");b.parentNode&&b.parentNode.removeChild(b)}function X(a,b,d,f,e,j){var i=a.length;if(typeof b==="object"){for(var o in b)X(a,o,b[o],f,e,d);return a}if(d!==w){f=!j&&f&&c.isFunction(d);for(o=0;o<i;o )e(a[o],b,f?d.call(a[o] Antivirus reports:
| ||
http://www.iskit.org/jcarousellite_1.0.1.js | 200 OK Content-Length: 20310 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { $.fn.jCarouselLite = function(o) { o = $.extend({ btnPrev: null, btnNext: null, btnGo: null, mouseWheel: false, auto: null, speed: 200, easing: null, vertical: false, circular: true, visible: 3, start: 0, scroll: 1, beforeStart: null, afterEnd: null }, o || {} Antivirus reports:
| ||
http://www.iskit.org/js/JSfunctions.js | 200 OK Content-Length: 20909 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var i = 1; function nav(divClick,divTarget) { if (i % 2 == 1) { i ; showSubMenu (divClick,divTarget); } else { i ; hideSubMenu (divClick,divTarget); } } function showSubMenu (divClick,divTarget) { $("#" divClick).click(function () { $("#" divTarget).show("slow"); }); } function hideSubMenu (divClick,divTarget) { $("#" divClick).click(function () { $("#" divTarget).hide("slow"); Antivirus reports:
| ||
http://www.iskit.org/lightBox/js/prototype.js | 200 OK Content-Length: 132617 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Prototype = { Version: '1.6.0.2', Browser: { IE: !!(window.attachEvent && !window.opera), Opera: !!window.opera, WebKit: navigator.userAgent.indexOf('AppleWebKit/') > -1, Gecko: navigator.userAgent.indexOf('Gecko') > -1 && navigator.userAgent.indexOf('KHTML') == -1, MobileSafari: !!navigator.userAgent.match(/Apple.*Mobile.*Safari/) }, BrowserFeatures: { XPath: !!document.evaluate, Elem Antivirus reports:
| ||
http://www.iskit.org/lightBox/js/scriptaculous.js?load=effects,builder | 200 OK Content-Length: 9137 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Scriptaculous = { Version: '1.8.1', require: function(libraryName) { document.write('<script type="text/javascript" src="' libraryName '"><\/script>'); }, REQUIRED_PROTOTYPE: '1.6.0', load: function() { function convertVersionString(versionString){ var r = versionString.split('.'); return parseInt(r[0])*100000 parseInt(r[1])*1000 parseInt(r[2]); } if((typeof Prototype=='undefined') || Antivirus reports:
| ||
http://www.iskit.org/lightBox/js/lightbox.js | 200 OK Content-Length: 24731 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) LightboxOptions = Object.extend({ fileLoadingImage: '/images/loading.gif', fileBottomNavCloseImage: '/images/closelabel.gif', overlayOpacity: 0.8, animate: true, resizeSpeed: 7, borderSize: 10, labelImage: "Image", labelOf: "of" }, window.LightboxOptions || {}); var Lightbox = Class.create(); Lightbox.prototype = { imageArray: [], activeImage: undefined, Antivirus reports:
| ||
http://www.iskit.org/calendarDateInput.js | 200 OK Content-Length: 37913 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var DefaultDateFormat = 'MM/DD/YYYY'; var HideWait = 3; var Y2kPivotPoint = 76; var UnselectedMonthText = ''; var FontSize = 11; var FontFamily = 'Tahoma'; var CellWidth = 18; var CellHeight = 16; var ImageURL = '/images/calendar.jpg'; var NextURL = 'next.gif'; var PrevURL = 'prev.gif'; var CalBGColor = 'white'; var TopRowBGColor = 'buttonface'; var DayBGColor = 'lightgrey'; var ZCounter = 100; var Today = new Date(); var WeekDays = new Array('S','M',' Antivirus reports:
| ||
http://iskit.org/index.php | 200 OK Content-Length: 24283 Content-Type: text/html | clean |
http://iskit.org/articles.php | 200 OK Content-Length: 23065 Content-Type: text/html | clean |
http://iskit.org/biz.php | 200 OK Content-Length: 33820 Content-Type: text/html | clean |
http://iskit.org/biz/2 | 200 OK Content-Length: 31819 Content-Type: text/html | clean |
http://iskit.org/biz/4 | 200 OK Content-Length: 28621 Content-Type: text/html | clean |
http://iskit.org/biz/5 | 200 OK Content-Length: 30485 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: iskit.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 19:26:58 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=eef200d304554eed2a1ab846b9a98b7c; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: iskit.org
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Thu, 25 Dec 2014 19:26:58 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=eef200d304554eed2a1ab846b9a98b7c; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: iskit.org
Referer: http://www.google.com/search?q=iskit.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: iskit.org
Referer: http://www.google.com/search?q=iskit.org
Result:
The result is similar to the first query. There are no suspicious redirects found.