Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=prospero-knowledge.nl
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://prospero-knowledge.nl/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://prospero-knowledge.nl/ | HTTP/1.1 200 OK Date: Thu, 21 Aug 2014 08:03:17 GMT Accept-Ranges: bytes ETag: "baafbe55cdddce1:2b8143" Server: Microsoft-IIS/6.0 Content-Length: 366 Content-Location: http://prospero-knowledge.nl/index.html Content-Type: text/html Last-Modified: Sun, 10 Nov 2013 04:28:41 GMT X-Powered-By: ASP.NET | clean |
http://prospero-knowledge.nl/index.html | HTTP/1.1 200 OK Date: Thu, 21 Aug 2014 08:03:17 GMT Accept-Ranges: bytes ETag: "baafbe55cdddce1:2b8143" Server: Microsoft-IIS/6.0 Content-Length: 366 Content-Type: text/html Last-Modified: Sun, 10 Nov 2013 04:28:41 GMT X-Powered-By: ASP.NET | clean |
http://www.prospero-knowledge.nl/starklasse/index.php | 200 OK Content-Length: 15577 Content-Type: text/html | clean |
http://www.prospero-knowledge.nl/starklasse/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/x-javascript | clean |
http://www.prospero-knowledge.nl/starklasse/templates/ja_purity/js/ja.script.js | 200 OK Content-Length: 3207 Content-Type: application/x-javascript | clean |
http://www.prospero-knowledge.nl/starklasse/templates/ja_purity/js/ja.rightcol.js | 200 OK Content-Length: 1600 Content-Type: application/x-javascript | clean |
http://www.prospero-knowledge.nl/starklasse/js/prototype.js | 200 OK Content-Length: 133484 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Prototype = { Version: '1.6.0.2', Browser: { IE: !!(window.attachEvent && !window.opera), Opera: !!window.opera, WebKit: navigator.userAgent.indexOf('AppleWebKit/') > -1, Gecko: navigator.userAgent.indexOf('Gecko') > -1 && navigator.userAgent.indexOf('KHTML') == -1, MobileSafari: !!navigator.userAgent.match(/Apple.*Mobile.*Safari/) }, BrowserFeatures: { XPath: Antivirus reports:
| ||
http://www.prospero-knowledge.nl/starklasse/js/scriptaculous.js?load=effects,builder | 200 OK Content-Length: 5843 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Scriptaculous = { Version: '1.8.1', require: function(libraryName) { document.write('<script type="text/javascript" src="'+libraryName+'"><\/script>'); }, REQUIRED_PROTOTYPE: '1.6.0', load: function() { function convertVersionString(versionString){ var r = versionString.split('.'); return parseInt(r[0])*100000 + parseInt(r[1])*1000 + parseInt(r[2]); } if((typeof Pro Antivirus reports:
| ||
http://www.prospero-knowledge.nl/starklasse/js/lightbox.js | 200 OK Content-Length: 22017 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) LightboxOptions = Object.extend({ fileLoadingImage: 'images/loading.gif', fileBottomNavCloseImage: 'images/closelabel.gif', overlayOpacity: 0.8, animate: true, resizeSpeed: 7, borderSize: 10, labelImage: "Image", labelOf: "of" }, window.LightboxOptions || {}); var Lightbox = Class.create(); Lightbox.prototype = { imageArray: [], Antivirus reports:
| ||
http://prospero-knowledge.nl/starklasse/index.php | 200 OK Content-Length: 15497 Content-Type: text/html | clean |
http://prospero-knowledge.nl/starklasse/media/system/js/caption.js | 200 OK Content-Length: 1721 Content-Type: application/x-javascript | clean |
http://prospero-knowledge.nl/starklasse/templates/ja_purity/js/ja.script.js | 200 OK Content-Length: 3207 Content-Type: application/x-javascript | clean |
http://prospero-knowledge.nl/starklasse/templates/ja_purity/js/ja.rightcol.js | 200 OK Content-Length: 1600 Content-Type: application/x-javascript | clean |
http://prospero-knowledge.nl/starklasse/ | 200 OK Content-Length: 15488 Content-Type: text/html | clean |
http://prospero-knowledge.nl/starklasse/index.php?option=com_mailto&tmpl=component&link=aHR0cDovL3Byb3NwZXJvLWtub3dsZWRnZS5ubC9zdGFya2xhc3NlL2luZGV4LnBocD9vcHRpb249Y29tX2NvbnRlbnQmdmlldz1hcnRpY2xlJmlkPTgwOndlZHN0cmlqZGthbGVuZGVyLTIwMTM= | 200 OK Content-Length: 2727 Content-Type: text/html | clean |
http://prospero-knowledge.nl/test404page.js | 404 Not Found Content-Length: 1635 Content-Type: text/html | clean |
http://prospero-knowledge.nl/starklasse/index.php?view=article&id=80:wedstrijdkalender-2013&tmpl=component&print=1&layout=default&page= | 200 OK Content-Length: 1874 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: prospero-knowledge.nl
Result:
HTTP/1.1 200 OK
Date: Thu, 21 Aug 2014 08:03:17 GMT
Accept-Ranges: bytes
ETag: "baafbe55cdddce1:2b8143"
Server: Microsoft-IIS/6.0
Content-Length: 366
Content-Location: http://prospero-knowledge.nl/index.html
Content-Type: text/html
Last-Modified: Sun, 10 Nov 2013 04:28:41 GMT
X-Powered-By: ASP.NET
...366 bytes of data.
GET / HTTP/1.1
Host: prospero-knowledge.nl
Result:
HTTP/1.1 200 OK
Date: Thu, 21 Aug 2014 08:03:17 GMT
Accept-Ranges: bytes
ETag: "baafbe55cdddce1:2b8143"
Server: Microsoft-IIS/6.0
Content-Length: 366
Content-Location: http://prospero-knowledge.nl/index.html
Content-Type: text/html
Last-Modified: Sun, 10 Nov 2013 04:28:41 GMT
X-Powered-By: ASP.NET
...366 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: prospero-knowledge.nl
Referer: http://www.google.com/search?q=prospero-knowledge.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: prospero-knowledge.nl
Referer: http://www.google.com/search?q=prospero-knowledge.nl
Result:
The result is similar to the first query. There are no suspicious redirects found.