New scan:

Malware Scanner report for mdt2012.de

Malicious/Suspicious/Total urls checked
0/0/2
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

Hacked by Casanova  (7 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://mdt2012.de/
200 OK
Content-Length: 300930
Content-Type: text/html
suspicious
Deface/Content modification. The following signature was found: Hacked by Casanova

...[369 bytes skipped]...
= d.createElement(s); js.id = id;
js.src = "//connect.facebook.net/fr_FR/all.js#xfbml=1&appId=148564308496251";
fjs.parentNode.insertBefore(js, fjs);
}(document, 'script', 'facebook-jssdk'));</script>
<meta http-equiv="Content-Language" content="en-us">
<meta name="GENERATOR" content="Casanova">
<meta name="Description" content="Casanova">
<title>Hacked by Casanova</title>
<audio id="background_audio" autoplay="autoplay">
<source src="http://picosong.com/media/songs/304f334bfd12a90f8d4dabb05ef1c2ba/king.mp3" type="audio/ogg" />
<source src="http://picosong.com/media/songs/304f334bfd12a90f8d4dabb05ef1c2ba/king.mp3" type="audio/mpeg" />
</audio>

<!--[if lt IE 9]>
<bgsound id="background_snd" src="static/audio/clip.mp3" autostart="true" loop="1">
&l
...[299976 bytes skipped]...


http://mdt2012.de/test404page.js
404 Not Found
Content-Length: 1503
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: mdt2012.de

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 20 Oct 2014 00:22:28 GMT
Accept-Ranges: bytes
ETag: "15c8584-10006e-5043e15385ec8"
Server: Apache/2.2.22
Content-Length: 1048686
Content-Type: text/html
Last-Modified: Tue, 30 Sep 2014 01:12:54 GMT

...1048686 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mdt2012.de
Referer: http://www.google.com/search?q=mdt2012.de

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=mdt2012.de

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mdt2012.de/

Result: mdt2012.de is not infected or malware details are not published yet.