New scan:

Malware Scanner report for sermija-klubas.lt

Malicious/Suspicious/Total urls checked
3/0/15
3 pages have malicious code. See details below
Blacklists
Found
The website is marked by Yandex as suspicious.

The website "sermija-klubas.lt" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=sermija-klubas.lt

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sermija-klubas.lt/

Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://sermija-klubas.lt/
500 timeout
Content-Length: 30
Content-Type: text/plain
clean
http://sermija-klubas.lt/test404page.js
404 Not Found
Content-Length: 19446
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

document.write('<marquee behavior="scroll" scrollamount="1" direction="left" width="1010">');
document.write('Tapkite Sermijos klubo nariais, gaukite pastovią 10% nuolaidą ir pasinaudokite klubo nario privilegijomis...');
document.write('<\/marquee>');

Antivirus reports:

Kaspersky
HEUR:Trojan.Script.Generic
Microsoft
Trojan:JS/IframeRef.J

http://sermija-klubas.lt/js/tools.js
200 OK
Content-Length: 6727
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/js/jquery/jquery-1.4.4.min.js
200 OK
Content-Length: 78601
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/js/jquery/jquery.easing.1.3.js
200 OK
Content-Length: 4955
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/js/jquery/marquee.js
200 OK
Content-Length: 7124
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/js/jquery/boxy-0.1.4/src/javascripts/jquery.boxy.js
200 OK
Content-Length: 20640
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/themes/main/js/tools/treeManagement.js
200 OK
Content-Length: 1995
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/modules/blockcart/ajax-cart.js
200 OK
Content-Length: 23745
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/js/jquery/jquery.autocomplete.js
200 OK
Content-Length: 19791
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/content/79-trumpa-sermijos-istorija
200 OK
Content-Length: 24975
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

document.write('<marquee behavior="scroll" scrollamount="1" direction="left" width="1010">');
document.write('Tapkite Sermijos klubo nariais, gaukite pastovią 10% nuolaidą ir pasinaudokite klubo nario privilegijomis...');
document.write('<\/marquee>');

Antivirus reports:

Kaspersky
HEUR:Trojan.Script.Generic
Microsoft
Trojan:JS/IframeRef.J

http://sermija-klubas.lt/themes/main/js/cms.js
200 OK
Content-Length: 1347
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/js/jquery/jquery.fancybox-1.3.4.js
200 OK
Content-Length: 29398
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/tools/rating/jquery-ui.custom.min.js
200 OK
Content-Length: 6131
Content-Type: application/x-javascript
clean
http://sermija-klubas.lt/tools/rating/jquery.ui.stars.js
200 OK
Content-Length: 8560
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

(function($) {
$.widget('ui.stars', {
options: {
inputType: 'radio', split: 0, disabled: false, cancelTitle: 'Cancel Rating',
cancelValue: 0, cancelShow: true,
disableValue: true, oneVoteOnly: false,
showTitles: false,
captionEl: null, callback: null,

starWidth: 16, cancelClass: 'ui-stars-cancel',
starClass: 'ui-stars-star',
starOnClass: 'ui-stars-star-on',
starHoverClass: 'ui-stars-star-hover',
starDisabl
... 6980 bytes are skipped ...
.stars').remove();
this.$stars.unbind('.stars').remove();
this.$value.remove();
this.element.unbind('.stars').html(this.element.data('former.stars')).removeData('stars');
return this;
},
callback: function(e, type) {
var o = this.options;
o.callback && o.callback(this, type, o.value, e);
o.oneVoteOnly && !o.disabled && this.disable();
}
});
$.extend($.ui.stars, {
version: '3.0.1'
});
})(jQuery);

Antivirus reports:

Emsisoft
Win32.Ramnit.N (B)


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: sermija-klubas.lt

Result:
HTTP/1.1 500 timeout
Content-Type: text/plain
Second query (visit from search engine):
GET / HTTP/1.1
Host: sermija-klubas.lt
Referer: http://www.google.com/search?q=sermija-klubas.lt

Result:
The result is similar to the first query. There are no suspicious redirects found.