Malware Scanner report for dhammadhammo.com

Malicious/Suspicious/Total urls checked: 1/0/15

1 page has malicious code. See details below

Blacklists: OK

Malicious redirects: Found

The website redirects visitors from search engines to the 3rd-party URL:
->http://www.caribsoft-online.biz/templates/rhuk_solarflare_ii/images/index.php
1241 websites infected.

The website "dhammadhammo.com" is most probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues. Here is our redirects fixing guide.

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Malicious/Suspicious Redirects

Request	Server response	Status
URL: http://dhammadhammo.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: dhammadhammo.com Referer: http://www.google.com/search?q=redirect+check1	HTTP/1.1 302 Found Connection: close Date: Mon, 08 Sep 2014 15:46:33 GMT Location: http://www.caribsoft-online.biz/templates/rhuk_solarflare_ii/images/index.php Server: Apache Vary: User-Agent Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.27	malicious

Scanned pages/files

Request	Server response	Status
http://dhammadhammo.com/	200 OK Content-Length: 205223 Content-Type: text/html	clean
http://dhammadhammo.com/plugins/system/jceutilities/js/mediaobject.js	200 OK Content-Length: 3717 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/system/jceutilities/js/jquery-126.js	200 OK Content-Length: 31033 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/system/jceutilities/js/jceutilities-213.js	200 OK Content-Length: 20269 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/system/yvbbcode/default.js	200 OK Content-Length: 118 Content-Type: application/javascript	clean
http://dhammadhammo.com/media/system/js/caption.js	200 OK Content-Length: 1963 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/content/avreloaded/silverlight.js	200 OK Content-Length: 8093 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/content/avreloaded/wmvplayer.js	200 OK Content-Length: 16476 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/content/avreloaded/swfobject.js	200 OK Content-Length: 12254 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/content/avreloaded/avreloaded.js	200 OK Content-Length: 2359 Content-Type: application/javascript	clean
http://dhammadhammo.com/plugins/system/jcemediabox/js/jcemediabox.js?version=113	200 OK Content-Length: 54726 Content-Type: application/javascript	clean
http://dhammadhammo.com/modules/mod_ariyuimenu/mod_ariyuimenu/js/yui.combo.js	200 OK Content-Length: 136091 Content-Type: application/javascript	malicious
Malicious code - confirmed by antiviruses (see below) if(typeof YAHOO=="undefined"\|\|!YAHOO){var YAHOO={};}YAHOO.namespace=function(){var A=arguments,E=null,C,B,D;for(C=0;C<A.length;C=C+1){D=(""+A[C]).split(".");E=YAHOO;for(B=(D[0]=="YAHOO")?1:0;B<D.length;B=B+1){E[D[B]]=E[D[B]]\|\|{};E=E[D[B]];}}return E;};YAHOO.log=function(D,A,C){var B=YAHOO.widget.Logger;if(B&&B.log){return B.log(D,A,C);}else{return false;}};YAHOO.register=function(A,E,D){var I=YAHOO.env.modules,B,H,G,F,C;if(!I[A]){I[A]={versions:[],builds:[]};}B=I[A];H=D.version;G=D ... 3104 bytes are skipped ....widget.MenuItem,{init:function(B,A){if(!this.SUBMENU_TYPE){this.SUBMENU_TYPE=YAHOO.widget.Menu;}YAHOO.widget.MenuBarItem.superclass.init.call(this,B);var C=this.cfg;if(A){C.applyConfig(A,true);}C.fireQueue();},CSS_CLASS_NAME:"yuimenubaritem",CSS_LABEL_CLASS_NAME:"yuimenubaritemlabel",toString:function(){var A="MenuBarItem";if(this.cfg&&this.cfg.getProperty("text")){A+=(": "+this.cfg.getProperty("text"));}return A;}});YAHOO.register("menu",YAHOO.widget.Menu,{version:"2.8.1",build:"19"}); Antivirus reports: Ikarus Trojan.Script Comodo TrojWare.JS.Agent.TC
http://dhammadhammo.com/modules/mod_lofarticlesslideshow/assets/mod_lofarticlesslideshow_jl15x.js	200 OK Content-Length: 8670 Content-Type: application/javascript	clean
http://dhammadhammo.com/modules/mod_briaskISS/mod_briaskISS.js	200 OK Content-Length: 3389 Content-Type: application/javascript	clean
http://dhammadhammo.com/modules/mod_aidanews2/lib/pagination/aidapager.js	200 OK Content-Length: 14875 Content-Type: application/javascript	clean

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=dhammadhammo.com

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://dhammadhammo.com/

Result: dhammadhammo.com is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for dhammadhammo.com

Malware & Hack Repair

Website Hack Insurance

Malicious/Suspicious Redirects

Scanned pages/files

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools