Recovered from defacement still blacklisted!

Viruses and worms
1

See: http://killmalware.com/skird.ru/#
Blacklist Checks
Google Safe Browse reports not in malware database
Phishtank reports URL not found
Site Advisor reports Caution. We tested this link and found it might send your personal information to people online who can use it to access your financial information, or steal your identity.

Detected libraries:
jquery - 1.12.4 : -http://www.skird.ru/media/jui/js/jquery.min.js
jquery - 1.7.1 : (active1) -http://www.skird.ru/templates/ashton/js/jquery.js
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
jquery-migrate - 1.4.1 : -http://www.skird.ru/media/jui/js/jquery-migrate.min.js
(active) - the library was also found to be active by running code
1 vulnerable library detected

Results from scanning URL: -http://www.skird.ru/media/jui/js/jquery.min.js
Number of sources found: 41
Number of sinks found: 17

For active code also see: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.skird.ru%2Ftemplates%2Fashton%2Fjs%2Fjquery.js
ActiveXDataObjectsMDAC detected Microsoft.XMLHTTP Uri fail & kicks up a 404 for me: https://seomon.com/domain/skird.ru/performance/
Number of sources found: 38
Number of sinks found: 21

jquery.js
Date processed: July 22, 2016, 8:07 p.m.
Source: URL Upload

Original URL: -http://www.skird.ru/templates/ashton/js/jquery.js
MD5: d0d286e6b7b8256c9c88dd1d3fdaaab2
SHA1: 22dd234942167041d67170be3173ed5d69dc5ec6
Sha256: bf1f213d09dbe1d77cd43355a77654795b3ffd0715d736f68b9d69a6f10f60d2
Sha512: eadb75028c6230b483d4d6809389204de95c048f7d518ce25a448ce5a2cd810fd4bd917ba2fb754a5ba15280a78e0a23510ddbf626a7e148f6382caad7d1b333
errors:

found JavaScript
	error: undefined function q.getElementsByTagName **
	error: undefined variable q *

Found 4 outbound links
To domain links
-metrika.yandex.ru 1
-www.gven.ru 1
-www.liveinternet.ru 1
-www.skird.ru 60

Web application version:
Joomla Version 3.6.0 found at: http://www.skird.ru//administrator/manifests/files/joomla.xml

Norton alerts as a PHISH: https://safeweb.norton.com/report/show?url=skird.ru

On IP: https://www.threatcrowd.org/ip.php?ip=91.211.106.7
and https://www.virustotal.com/en-gb/ip-address/91.211.106.7/information/
more in particular: https://www.virustotal.com/en-gb/url/d7709cc6af4f7845990f145c1ef3fedbc6826f74b4a0c408a16a671abc220eaa/analysis/

http://toolbar.netcraft.com/site_report?url=http%3A%2F%2Fwww.skird.ru%2Flibraries%2Fgesting

Excessive server header info proliferation found: Linux Apache/2.4.6 CentOS OpenSSL/1.0.1e-fips mod_fcgid/2.3.9 PHP/5.4.16 mod_python/3.5.0- Python/2.7.5

Above third party cold reconnaissance scan report was made up by,

polonus (volunteer website security analyst and website error-hunter)