New scan:

Malware Scanner report for sz-yxsw.com

Malicious/Suspicious/Total urls checked
0/1/9
1 page has suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "sz-yxsw.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=sz-yxsw.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://www.sz-yxsw.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 10 Oct 2014 21:27:45 GMT
Location: index.html
Server: Microsoft-IIS/6.0
Content-Type: text/html
X-Powered-By: ASP.NET
X-Powered-By: PHP/5.2.17
clean
http://www.sz-yxsw.com/index.html
200 OK
Content-Length: 26640
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.5780.com

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>ÉîÛÚ»ãÓò¹ú¼ÊÉÌÎñÓÐÏÞ¹«Ë¾</title>
<meta name="description" content="www.5780.com-¾¡ÔÚ¶¼·»ÓéÀÖ³Ç:°ÄÃŰͱÈÂ×¹ú¼ÊÓéÀÖ³Ç,רҵΪÄú´òÔì×îÐÂÍøÉÏÓéÀÖ³Ç×¢²á½ð,ÐÂ婲©ÑÇÓéÀÖ³Ç,ÐÇÆÚ8ÓéÀÖ³ÇÏÖ½ðÍøÓÎϷƽ̨ÍøÕ¾¡£" />
<meta name="keywords" content="ÑÇÖÞ²©²Ê¹«Ë¾,°ÙÐÕÓéÀֳDz©²ÊÍø,ÀûÀ´¹ú¼ÊÓéÀÖ³Ç,ÕæÈËÕæÇ®ÓéÀÖ³Ç,Ì«Ñô³Ç¹ÜÀíÍø,Ó¯·á¹ú¼Ê¹Ù·½ÍøÖ·,²©²Ê¹«Ë¾°ÙÀû¹¬" />
<link href="/templets/style13/style/dedecms.css" rel="stylesheet" media="screen" type="text/css" />
<script language="javascript" type="text/javascrip
...[4082 bytes skipped]...

http://www.sz-yxsw.com/include/dedeajax2.js
200 OK
Content-Length: 7961
Content-Type: application/x-javascript
clean
http://www.sz-yxsw.com/images/js/j.js
200 OK
Content-Length: 31018
Content-Type: application/x-javascript
clean
http://www.sz-yxsw.com/templets/style13/js/pic_scroll.js
404 Not Found
Content-Length: 1308
Content-Type: text/html
clean
http://www.sz-yxsw.com/test404page.js
404 Not Found
Content-Length: 1308
Content-Type: text/html
clean
http://www.5780.com/nq.js
200 OK
Content-Length: 151
Content-Type: application/x-javascript
clean
http://www.sz-yxsw.com/data/vote/vote_1.js
200 OK
Content-Length: 1381
Content-Type: application/x-javascript
clean
http://count16.51yes.com/click.aspx?id=160190615&logo=7
200 OK
Content-Length: 1777
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: sz-yxsw.com

Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: sz-yxsw.com
Referer: http://www.google.com/search?q=sz-yxsw.com

Result:
The result is similar to the first query. There are no suspicious redirects found.