New scan:

Malware Scanner report for plb.fr

Malicious/Suspicious/Total urls checked
1/0/19
1 page has malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/1
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://plb.fr/
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 07:21:30 GMT
Location: http://www.plb.fr/
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Length: 298
Content-Type: text/html; charset=iso-8859-1
clean
http://www.plb.fr/
200 OK
Content-Length: 32484
Content-Type: text/html
clean
http://www.plb.fr/fonctions.js
200 OK
Content-Length: 419
Content-Type: application/javascript
clean
http://plb.fr/flashobject.js
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 07:21:31 GMT
Location: http://www.plb.fr/flashobject.js
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Length: 312
Content-Type: text/html; charset=iso-8859-1
clean
http://www.plb.fr/flashobject.js
200 OK
Content-Length: 7609
Content-Type: application/javascript
clean
http://plb.fr/includes/js/jquery.js
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 07:21:31 GMT
Location: http://www.plb.fr/includes/js/jquery.js
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Length: 319
Content-Type: text/html; charset=iso-8859-1
clean
http://www.plb.fr/includes/js/jquery.js
200 OK
Content-Length: 96380
Content-Type: application/javascript
clean
http://www.plb.fr/script/easySlider1.7.js
200 OK
Content-Length: 6221
Content-Type: application/javascript
clean
http://code.jquery.com/ui/1.9.2/jquery-ui.js
200 OK
Content-Length: 300760
Content-Type: application/x-javascript
clean
http://www.plb.fr/includes/js/jquery.validate.js
200 OK
Content-Length: 21068
Content-Type: application/javascript
clean
http://www.plb.fr/includes/js/jstarbox.js
200 OK
Content-Length: 5509
Content-Type: application/javascript
clean
http://www.plb.fr/includes/js/jquery.form.js
200 OK
Content-Length: 43761
Content-Type: application/javascript
clean
http://www.googleadservices.com/pagead/conversion.js
200 OK
Content-Length: 9447
Content-Type: text/javascript
clean
http://plb.fr/presentation.php
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 07:21:35 GMT
Location: http://www.plb.fr/presentation.php
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Length: 314
Content-Type: text/html; charset=iso-8859-1
X-Pad: avoid browser bug
clean
http://www.plb.fr/presentation.php
200 OK
Content-Length: 35570
Content-Type: text/html
clean
http://www.plb.fr/formations.php
200 OK
Content-Length: 301376
Content-Type: text/html
clean
http://www.plb.fr/includes/js/google.adwords.js
200 OK
Content-Length: 243
Content-Type: application/javascript
clean
http://w.sharethis.com/button/buttons.js
200 OK
Content-Length: 145774
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

if(typeof(stlib)=="undefined"){var stlib={}}if(!stlib.functions){stlib.functions=[];stlib.functionCount=0}stlib.global={};stlib.global.hash=document.location.href.split("#");stlib.global.hash.shift();stlib.global.hash=stlib.global.hash.join("#");stlib.dynamicOn=true;stlib.debugOn=false;stlib.debug={count:0,messages:[],debug:function(b,a){if(a&&(typeof console)!="undefined"){console.log(b)}stlib.debug.messages.push(b)},show:function(a){for(message in stlib.debug.messages){if((typeof conso
... 3023 bytes are skipped ...
Listener("DOMContentLoaded",stLight.onDomContentLoadedLazy,false)}}}if(typeof(window.addEventListener)!="undefined"){window.addEventListener("message",stLight.messageReceiver,false)}else{if(typeof(document.addEventListener)!="undefined"){document.addEventListener("message",stLight.messageReceiver,false)}else{if(typeof window.attachEvent!="undefined"){window.attachEvent("onmessage",stLight.messageReceiver)}}}if(document.readyState=="complete"&&stLight.readyRun==false){stLight.domReady()};

Antivirus reports:

Qihoo-360
susp.cve.20142804.1

http://www.plb.fr/infos.php
200 OK
Content-Length: 35584
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: plb.fr

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 08 Oct 2014 07:21:30 GMT
Location: http://www.plb.fr/
Server: Apache/2.2.16 (Debian)
Vary: Accept-Encoding
Content-Length: 298
Content-Type: text/html; charset=iso-8859-1

...298 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: plb.fr
Referer: http://www.google.com/search?q=plb.fr

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=plb.fr

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://plb.fr/

Result: plb.fr is not infected or malware details are not published yet.