Malware Scanner report for laufclub-radis.de

Malicious/Suspicious/Total urls checked: 1/0/16

1 page has malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "laufclub-radis.de" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=laufclub-radis.de

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://laufclub-radis.de/	200 OK Content-Length: 17362 Content-Type: text/html	clean
http://laufclub-radis.de/vorstand.htm	200 OK Content-Length: 14824 Content-Type: text/html	clean
http://wetter.rtl.de/services/kunden/homecustomer.php?id=170174&crypt=17d180422edcf4f6a783273863cbe01e	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 09 Oct 2014 15:01:29 GMT Location: http://www.wetter.de/services/kunden/homecustomer.php?id=170174&crypt=17d180422edcf4f6a783273863cbe01e Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 Status: 301 Moved Permanently X-Powered-By: PHP/5.1.6	clean
http://www.wetter.de/services/kunden/homecustomer.php?id=170174&crypt=17d180422edcf4f6a783273863cbe01e	404 Not Found Content-Length: 1830 Content-Type: text/html	clean
http://www.wetter.de/	200 OK Content-Length: 137918 Content-Type: text/html	clean
http://cdn.static-fra.de/wetterv3/js/wetter-head.min.js?n8ssjn	200 OK Content-Length: 246994 Content-Type: application/javascript	clean
http://cdn.static-fra.de/lib/rtli/ipi/1.0.0/functions.js	200 OK Content-Length: 10282 Content-Type: application/javascript	clean
http://www.wetter.de//cdn.static-fra.de/lib/rtli/playerlayer/2.2.2/playerlayer.min.js/	404 Not Found Content-Length: 1830 Content-Type: text/html	clean
http://www.wetter.de/test404page.js	404 Not Found Content-Length: 1830 Content-Type: text/html	clean
http://cdn.static-fra.de/lib/vendor/mediaelementplayer/mediaelement-and-player.min.js	200 OK Content-Length: 73112 Content-Type: application/javascript	clean
http://www.wetter.de//cdn.static-fra.de/lib/rtli/ipi/1.0.0/adreload.js/	404 Not Found Content-Length: 1830 Content-Type: text/html	clean
https://script.ioam.de/iam.js	200 OK Content-Length: 14390 Content-Type: application/x-javascript	clean
http://ip.nuggad.net/rc?nuggn=2059506885&nuggsid=1566232748	200 OK Content-Length: 129 Content-Type: text/javascript	clean
http://cdn.static-fra.de/lib/rtli/ipi/1.0.0/targeting.js	200 OK Content-Length: 1826 Content-Type: application/javascript	malicious
Malicious code - confirmed by antiviruses (see below) if (typeof ip_yieldLab === 'object' && typeof ip_yieldLab.isValid === 'function' && ip_yieldLab.isValid()) { try { var root, scriptNode; scriptNode = document.createElement('script'); scriptNode.setAttribute('class', 'kxct'); scriptNode.setAttribute('data-id', 'Ip_b0nI7'); scriptNode.setAttribute('data-timing', 'async'); scriptNode.setAttribute('data-version', '1.9'); scriptNode.type = 'te ... 763 bytes are skipped ...f ip_yieldLab === 'object' && typeof ip_yieldLab.isValid === 'function' && ip_yieldLab.isValid() && typeof ip_yieldLab.getTargeting === 'function' && typeof ip_yieldLab.getVideoplazaTargeting === 'function') { var yl_targeting = ip_yieldLab.getTargeting(); if ((typeof (yl_targeting)) == 'string' && yl_targeting !== '') { ip_targeting += yl_targeting; } ip_videoplaza += ip_yieldLab.getVideoplazaTargeting(); } Antivirus reports: Emsisoft Trojan.Dropper.Delf.BB (B)
http://pagead2.googlesyndication.com/pagead/show_ads.js	200 OK Content-Length: 21308 Content-Type: text/javascript	clean
http://cdn.static-fra.de/wetterv3/js/wetter-body.min.js?nd12rq	200 OK Content-Length: 300798 Content-Type: application/javascript	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: laufclub-radis.de

Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 09 Oct 2014 15:01:28 GMT
Server: Apache
Vary: User-Agent
Content-Type: text/html

Second query (visit from search engine):
GET / HTTP/1.1
Host: laufclub-radis.de
Referer: http://www.google.com/search?q=laufclub-radis.de

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for laufclub-radis.de

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools