Malware Scanner report for yijukj.com

Malicious/Suspicious/Total urls checked: 13/0/15

13 pages have malicious code. See details below

Blacklists: OK

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Scanned pages/files

Request	Server response	Status
http://www.yijukj.com/	200 OK Content-Length: 60576 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/js/pic_auto.js	200 OK Content-Length: 898 Content-Type: application/x-javascript	clean
http://www.yijukj.com/js/prototype.js	200 OK Content-Length: 96073 Content-Type: application/x-javascript	clean
http://www.yijukj.com/index.asp	200 OK Content-Length: 60576 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/about.asp	200 OK Content-Length: 28244 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/products.asp	200 OK Content-Length: 46779 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/news.asp	200 OK Content-Length: 27814 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/news1.asp	200 OK Content-Length: 27814 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/feedback.asp	200 OK Content-Length: 31423 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/job.asp	200 OK Content-Length: 29861 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/contact.asp	200 OK Content-Length: 28401 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/products.asp?c_code=007011	200 OK Content-Length: 31309 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/products.asp?c_code=007010	200 OK Content-Length: 35687 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/products.asp?c_code=007009	200 OK Content-Length: 37317 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)
http://www.yijukj.com/products.asp?c_code=007008	200 OK Content-Length: 42074 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) var focus_width=1004 var focus_height=250 var text_height=0 var swf_height = focus_height+text_height var pics='pic/20144418123485716.jpg\|pic/20143512151476122.jpg\|pic/2014351223059111.jpg\|pic/20143139255034723.jpg\|pic/20143131321930420.jpg' var links='products.asp\|products.asp\|products.asp\|products.asp\|products.asp' var texts='\|\|\|\|' document.write('<object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://downloa ... 714 bytes are skipped ...s_flash" src="inc/focus1.swf" wmode="transparent" FlashVars="pics='+pics+'&links='+links+'&texts='+texts+'&borderwidth='+focus_width+'&borderheight='+focus_height+'&textheight='+text_height+'\" menu="false" bgcolor="#C5C5C5" quality="high" width="'+ focus_width +'" height="'+ swf_height +'" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer"></embed>'); document.write('</object>'); Antivirus reports: Emsisoft Win32.Sality.3 (B)

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: yijukj.com

Result:

Second query (visit from search engine):
GET / HTTP/1.1
Host: yijukj.com
Referer: http://www.google.com/search?q=yijukj.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=yijukj.com

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://yijukj.com/

Result: yijukj.com is not infected or malware details are not published yet.

Recently found suspicious websites

Malware Scanner report for yijukj.com

Malware & Hack Repair

Website Hack Insurance

Scanned pages/files

Malicious Redirects

Safe Browsing / Blacklists

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools