New scan:

Malware Scanner report for cordbloodbankingreviews.net

Malicious/Suspicious/Total urls checked
2/0/2
2 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

Hacked by shadow-mawi Turkhackteam.Net/Org  (36 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://cordbloodbankingreviews.net/
200 OK
Content-Length: 4893
Content-Type: text/html
suspicious
Malicious code - confirmed by antiviruses (see below)





function text_wechsel ()
{
if (window.Document.getElementById)
{
window.Document.getElementById ("textfeld").innerHTML=texte[a];
if ((a+1)<texte.length)
{
a++;
}
else
{
a=0;
}
window.setTimeout ("text_wechsel ()",geschwindigkeit);
}
}

window.onload=text_wechsel;

Antivirus reports:

McAfee
JS/Exploit-DDay-b

Deface/Content modification. The following signature was found: Hacked by shadow-mawi Turkhackteam.Net/Org

<html>
<head>
<script language="JavaScript">
<!--
yourLogo=' Hacked by shadow-mawi Turkhackteam.Net/Org';
logoFont='Arial';
logoSize=1; // 1-7 only! for larger font sizes alter logoWidth/Height accordingly!
logoColor='#FFFFFF';
logoWidth=70;
logoHeight=70;
logoSpeed=0.002;

//Nothing needs altering below!
yourLogo=yourLogo.split('');
L=yourLogo.length;
Result="<font face="+logoFont+" size="+logoSize+" color="+logoColor+">";
TrigSplit=360/L;
b
...[5535 bytes skipped]...


http://cordbloodbankingreviews.net/test404page.js
200 OK
Content-Length: 4893
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)





function text_wechsel ()
{
if (window.Document.getElementById)
{
window.Document.getElementById ("textfeld").innerHTML=texte[a];
if ((a+1)<texte.length)
{
a++;
}
else
{
a=0;
}
window.setTimeout ("text_wechsel ()",geschwindigkeit);
}
}

window.onload=text_wechsel;

Antivirus reports:

McAfee
JS/Exploit-DDay-b


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: cordbloodbankingreviews.net

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 01 Sep 2014 14:39:21 GMT
Server: Apache/2.2.22 (Unix) mod_ssl/2.2.22 OpenSSL/0.9.8e-fips-rhel5 DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_perl/2.0.6 Perl/v5.8.8
Content-Type: text/html
X-Powered-By: PHP/5.3.24
Second query (visit from search engine):
GET / HTTP/1.1
Host: cordbloodbankingreviews.net
Referer: http://www.google.com/search?q=cordbloodbankingreviews.net

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=cordbloodbankingreviews.net

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cordbloodbankingreviews.net/

Result: cordbloodbankingreviews.net is not infected or malware details are not published yet.