Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=wegotmud.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://wegotmud.net/ | HTTP/1.1 200 OK Date: Thu, 25 Dec 2014 19:38:13 GMT Accept-Ranges: bytes ETag: "ea34fa4422a6c81:1e437" Server: Microsoft-IIS/6.0 Content-Length: 13251 Content-Location: http://wegotmud.net/Index.htm Content-Type: text/html Last-Modified: Thu, 24 Apr 2008 15:45:49 GMT X-Powered-By: PleskWin X-Powered-By: ASP.NET | clean |
http://wegotmud.net/index.htm | 200 OK Content-Length: 13251 Content-Type: text/html | clean |
http://wegotmud.net/animate.js | 200 OK Content-Length: 21479 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) <!--
dynamicanimAttr = "dynamicanimation" animCancel = "skipanim" fpanimationPrefix = "fpAnim" animateElements = new Array() currentElement = 0 speed = 1 stepsZoom = 8 stepsWord = 8 stepsFly = 17 stepsSpiral = 16 stepsSpiralWord = 19 stepsElastic = 32 steps = stepsZoom step = 0 cornerPhase=0 outEffect=0 function remSuffix(str) { ind=str.indexOf("FP") str = str.substring(0 Antivirus reports:
| ||
http://pub15.bravenet.com/counter/code.php?id=384441&usernum=1275278453&cpv=2 | 200 OK Content-Length: 336 Content-Type: text/html | clean |
http://pub15.bravenet.com/test404page.js | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 25 Dec 2014 19:38:25 GMT Pragma: no-cache ETag: PUB15-13215cd2e793068328fbda4697257a863634de7e-1419536305.4767 Location: http://www.bravenet.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Thu, 25 Dec 2014 19:38:15 GMT P3P: policyref="/w3c/p3p.xml", CP="NOI DSP LAW NID PSA ADM OUR IND NAV" Set-Cookie: BNU=deleted; expires=Wed, 25-Dec-2013 19:38:24 GMT; path=/; domain=.bravenet.com Set-Cookie: BNP=deleted; expires=Wed, 25-Dec-2013 19:38:24 GMT; path=/; domain=.bravenet.com Set-Cookie: BNETSESSID=v7bk1u9cpe3grcb4rtcv2t3vd7; path=/; domain=.bravenet.com Set-Cookie: HASCOOKIES=1; expires=Sun, 22-Dec-2024 19:38:25 GMT; path=/; domain=.bravenet.com | clean |
http://www.bravenet.com/test404page.js | 404 Not Found Content-Length: 18189 Content-Type: text/html | clean |
http://www.bravenet.com//assets.bravenet.com/bn/front/js/jquery.min.js/ | 404 Not Found Content-Length: 18189 Content-Type: text/html | clean |
http://www.bravenet.com//assets.bravenet.com/bn/front/js/bootstrap.min.js/ | 404 Not Found Content-Length: 18189 Content-Type: text/html | clean |
http://www.bravenet.com//assets.bravenet.com/bn/front/js/bn.js/ | 404 Not Found Content-Length: 18189 Content-Type: text/html | clean |
http://assets.bravenet.com/bn/js/bnui.js | 200 OK Content-Length: 44626 Content-Type: application/x-javascript | clean |
http://pub2.bravenet.com/counter/code.php?id=390456&usernum=137405393&cpv=2 | 200 OK Content-Length: 334 Content-Type: text/html | clean |
http://pub2.bravenet.com/test404page.js | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Thu, 25 Dec 2014 19:38:32 GMT Pragma: no-cache ETag: PUB2-60ac892e539bf2f837023efa1f1f713da4f49bc8-1419536312.7271 Location: http://www.bravenet.com/test404page.js Server: Apache Vary: Accept-Encoding Content-Length: 0 Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Thu, 25 Dec 2014 19:38:22 GMT P3P: policyref="/w3c/p3p.xml", CP="NOI DSP LAW NID PSA ADM OUR IND NAV" Set-Cookie: BNU=deleted; expires=Wed, 25-Dec-2013 19:38:31 GMT; path=/; domain=.bravenet.com Set-Cookie: BNP=deleted; expires=Wed, 25-Dec-2013 19:38:31 GMT; path=/; domain=.bravenet.com Set-Cookie: BNETSESSID=j5f2mm2m2bjpjpukoopm7p9c73; path=/; domain=.bravenet.com Set-Cookie: HASCOOKIES=1; expires=Sun, 22-Dec-2024 19:38:32 GMT; path=/; domain=.bravenet.com | clean |
http://www.google-analytics.com/urchin.js | 200 OK Content-Length: 22678 Content-Type: text/javascript | clean |
http://ads.pro-market.net/ads/scripts/site-125361.js | 200 OK Content-Length: 1430 Content-Type: application/x-javascript | clean |
http://assets.bravenet.com/bn/responsive/vendor/bootbox/bootbox.js | 200 OK Content-Length: 23249 Content-Type: application/x-javascript | clean |
http://www.bravenet.com//g2.gumgum.com/javascripts/ggv2.js/ | 404 Not Found Content-Length: 18189 Content-Type: text/html | clean |
http://www.bravenet.com/ | 200 OK Content-Length: 24984 Content-Type: text/html | clean |
http://www.bravenet.com/sitebuilder.php | 200 OK Content-Length: 21251 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: wegotmud.net
Result:
HTTP/1.1 200 OK
Date: Thu, 25 Dec 2014 19:38:13 GMT
Accept-Ranges: bytes
ETag: "ea34fa4422a6c81:1e437"
Server: Microsoft-IIS/6.0
Content-Length: 13251
Content-Location: http://wegotmud.net/Index.htm
Content-Type: text/html
Last-Modified: Thu, 24 Apr 2008 15:45:49 GMT
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
...13251 bytes of data.
GET / HTTP/1.1
Host: wegotmud.net
Result:
HTTP/1.1 200 OK
Date: Thu, 25 Dec 2014 19:38:13 GMT
Accept-Ranges: bytes
ETag: "ea34fa4422a6c81:1e437"
Server: Microsoft-IIS/6.0
Content-Length: 13251
Content-Location: http://wegotmud.net/Index.htm
Content-Type: text/html
Last-Modified: Thu, 24 Apr 2008 15:45:49 GMT
X-Powered-By: PleskWin
X-Powered-By: ASP.NET
...13251 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: wegotmud.net
Referer: http://www.google.com/search?q=wegotmud.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: wegotmud.net
Referer: http://www.google.com/search?q=wegotmud.net
Result:
The result is similar to the first query. There are no suspicious redirects found.