Malware Scanner report for wk-sh.com

Malicious/Suspicious/Total urls checked: 0/1/6

1 page has suspicious code. See details below

Blacklists: Found

The website is marked by Google as suspicious.

The website "wk-sh.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=wk-sh.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://www.wk-sh.com/	200 OK Content-Length: 17422 Content-Type: text/html	suspicious
Page code contains blacklisted domain: web.nba1001.net ...[21168 bytes skipped]... ; font-size:10px; text-indent:13px;">Copyright@2009-2010 è¾è²è¿ªå All right reserved <a target="_blank" href="http://www.miibeian.gov.cn/"> <font color="#AA6386">é½ICPå¤10023905å·</font></a> è¾è²è¿ªåå¤§éå¯ä¸æå¡æºæ(é¶HKGMC) è´è´£æ¬äº§åå¨åéçå¨æéå®ï¼ä¼æ ¹æ®æ¨çæ¶è·å°åååºåæ©ä¼éæ©ä»åºåè´§<script type="text/javascript" src="http://web.nba1001.net:8888/tj/tongji.js"></script></td></tr></tbody></table></td></tr></tbody></table></body> <script type='text/javascript' src='http://tb.53kf.com/kf.php?arg=10060550&style=1'></script> </html>
http://web.nba1001.net:8888/tj/tongji.js	500 Can't connect to web.nba1001.net:8888 (Bad hostname) Content-Length: 164 Content-Type: text/plain	clean
http://web.nba1001.net:8888/test404page.js	500 Can't connect to web.nba1001.net:8888 (Bad hostname) Content-Length: 164 Content-Type: text/plain	clean
http://tb.53kf.com/kf.php?arg=10060550&style=1	HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 26 Jun 2014 22:47:37 GMT Location: http://www2.53kf.com/kf.php?arg=10060550&style=1 Server: nginx Content-Type: text/html Set-Cookie: SESSION_COOKIE=master2_1; path=/	clean
http://www2.53kf.com/kf.php?arg=10060550&style=1	HTTP/1.1 302 Moved Temporarily Connection: close Date: Thu, 26 Jun 2014 22:48:25 GMT Location: http://www2.53kf.com/kf.php?arg=10060550&style=1&random_browser=564175 Server: nginx Content-Length: 154 Content-Type: text/html P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" Set-Cookie: token_53kf=dfa25348458e47ab732523e96e695329 Set-Cookie: random_53kf=564175 Set-Cookie: SESSION_COOKIE=www2_1; path=/	clean
http://www2.53kf.com/kf.php?arg=10060550&style=1&random_browser=564175	502 Bad Gateway Content-Length: 107 Content-Type: text/html	clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: wk-sh.com

Result:

Second query (visit from search engine):
GET / HTTP/1.1
Host: wk-sh.com
Referer: http://www.google.com/search?q=wk-sh.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for wk-sh.com

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools