New scan:

Malware Scanner report for sexguest.ru

Malicious/Suspicious/Total urls checked
0/15/15
15 pages have suspicious code. See details below
Blacklists
Found
The website is marked by Yandex as SMS-fraud resource.

The website "sexguest.ru" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/105
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=sexguest.ru

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sexguest.ru/

Result: The website is marked by Yandex as SMS-fraud resource. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://sexguest.ru/
200 OK
Content-Length: 28325
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

...[67 bytes skipped]...
</a> òåáå ïîìîãóò<br>Áîëüøîé è ìàëåíüêèé <a href="http://www.mega-porno.ru">õóé</a> ìîæíî óâèäåòü òóò mega-porno.ru
</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div class="content">

<h2>Ñë
...[3954 bytes skipped]...

http://sexguest.ru/2009-10-15/3.htm
200 OK
Content-Length: 18057
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2013-07-24/6.htm
200 OK
Content-Length: 18427
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2013-04-30/5.htm
200 OK
Content-Length: 18369
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2011-10-15/2.htm
200 OK
Content-Length: 18190
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2012-12-13/6.htm
200 OK
Content-Length: 17919
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2014-05-06/9.htm
200 OK
Content-Length: 18263
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2013-03-24/2.htm
200 OK
Content-Length: 19736
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4199 bytes skipped]...

http://sexguest.ru/2013-03-25/2.htm
200 OK
Content-Length: 19536
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4203 bytes skipped]...

http://sexguest.ru/2012-09-21/8.htm
200 OK
Content-Length: 18301
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4185 bytes skipped]...

http://sexguest.ru/2014-07-01/12.htm
200 OK
Content-Length: 17665
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4199 bytes skipped]...

http://sexguest.ru/2014-07-23/7.htm
200 OK
Content-Length: 19049
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2012-04-27/4.htm
200 OK
Content-Length: 18297
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4196 bytes skipped]...

http://sexguest.ru/2013-08-20/4.htm
200 OK
Content-Length: 18095
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...

http://sexguest.ru/2012-01-21/2.htm
200 OK
Content-Length: 19217
Content-Type: text/html
suspicious
Page code contains blacklisted domain: smartcode.sexguest.ru

</small></center>

</div>

</div>

<div class="right">

<div style="margin:5px 0px 0px -15px;">
<script type="text/javascript"><!--<![CDATA[
/* (c)AdOcean 2003-2013 */
/* PLACEMENT: smartcode.sexguest.ru.240_400 */
if(location.protocol.substr(0,4)=='http')document.write(unescape('%3C')+'script id="smartcode.sexguest.ru.240_400" src="'+location.protocol+'//by.adocean.pl/_'+(new Date()).getTime()+'/ad.js?id=fgDm4jZn0k6hdJCoNDOoYp4mA5hxb1K0A0JGrj30Cq3.n7/x='+screen.width+'/y='+screen.height+'" type="text/javascript"'+unescape('%3E%3C')+'/script'+unescape('%3E'));
//]]>--></script>
</div>
<div c
...[4207 bytes skipped]...


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: sexguest.ru

Result:
HTTP/1.1 200 OK
Cache-Control: max-age=0
Connection: close
Date: Wed, 25 Feb 2015 02:44:15 GMT
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=windows-1251
Expires: Wed, 25 Feb 2015 02:44:15 GMT
Second query (visit from search engine):
GET / HTTP/1.1
Host: sexguest.ru
Referer: http://www.google.com/search?q=sexguest.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.