New scan:

Malware Scanner report for sm2day.com

Malicious/Suspicious/Total urls checked
2/0/2
2 pages have malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
Found
Probably the website is defaced. The following signature was found:

Website Has Been hacked By   (24 websites defaced)

See details below

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://www.sm2day.com/
200 OK
Content-Length: 21856
Content-Type: text/html
suspicious
Malicious code - confirmed by antiviruses (see below)



window.scrollBy(0, 1)

window.resizeTo(0,0)

window.moveTo(0,0)


setTimeout("move()", 1);

var mxm=50

var mym=25

var mx=0

var my=0

var sv=50

var status=1

var szx=0

var szy=0

var c=255

var n=0

var sm=30

var cycle=2 <
... 2515 bytes are skipped ...
Color=c*65536

document.fgColor=(255-c)*65536

if (c > 128)

{status=8}

}

if (status == 8)

{

window.moveTo(0,0)

sx=screen.availWidth

sy=screen.availHeight

window.resizeTo(sx,sy)

status=9

}

var timer=setTimeout("move()",0.3)

}

Antivirus reports:

NANO-Antivirus
Trojan.Script.StartPage.fakt

Deface/Content modification. The following signature was found: Website Has Been hacked By

...[4515 bytes skipped]...
msg[0] = "<font color='00ff00'><center><h2>.::------ Myanmar Hackers Unite4m ------::.</h2></center></font>";

msg[1] = "<font color='00ff00'><center> *(` . * * . )* *(` . * * . )* *(` . * * . )* *(` . * * . )* </center> </font>";

msg[2] = " <br>";

msg[3] = "<font color='00ff00'><center>Website Has Been hacked By <font Face='Harrington' color='Red'> <b>!uCky6u9</b></font></a></font>";

msg[4] = "<font color='00ff00'><h2><center><font face='Verdana' color='Red'><u> ' Feel The Power of Myanmar '</u></font></center></h2></font>";

msg[5] = "<font size = '5' color='00ff33' ><b><center> </center></b></font>";
...[24874 bytes skipped]...


http://www.sm2day.com/test404page.js
200 OK
Content-Length: 21856
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)



window.scrollBy(0, 1)

window.resizeTo(0,0)

window.moveTo(0,0)


setTimeout("move()", 1);

var mxm=50

var mym=25

var mx=0

var my=0

var sv=50

var status=1

var szx=0

var szy=0

var c=255

var n=0

var sm=30

var cycle=2 <
... 2515 bytes are skipped ...
Color=c*65536

document.fgColor=(255-c)*65536

if (c > 128)

{status=8}

}

if (status == 8)

{

window.moveTo(0,0)

sx=screen.availWidth

sy=screen.availHeight

window.resizeTo(sx,sy)

status=9

}

var timer=setTimeout("move()",0.3)

}

Antivirus reports:

NANO-Antivirus
Trojan.Script.StartPage.fakt


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: sm2day.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sm2day.com
Referer: http://www.google.com/search?q=sm2day.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=sm2day.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://sm2day.com/

Result: sm2day.com is not infected or malware details are not published yet.