Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ludlu.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.ludlu.com/ | 200 OK Content-Length: 11069 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.5yss.com ...[2729 bytes skipped]... ;<!--[if lt IE 9 ]><span class="bg_top"><![endif]-->2014-09-10<!--[if lt IE 9 ]></span><span class="bg_tail"></span><![endif]--></span></a></li> </ul> </div> </div> </div> <h6>ÓÑÇéÁ´½Ó</h6> <a target="_blank" href="http://www.rrlu.co">ߣ¶à±¦</a> <a target="_blank" href="http://www.5yss.com">¶¡ÏãÎåÔÂ</a> <a target="_blank" href="http://www.lujlu.com">¶îȥߣ</a> </div> <div id="bottom_box"> <div class="wrap mt20 clearfix"> <div class="box bottom_box"> <ul> <script type="text/javascript" language="javascript" src="/js/ads/ad_foot.js"></script> </ul> </div> </div> </div> </div> <div id="fo ...[1683 bytes skipped]... | ||
http://www.ludlu.com/template/wwzzs_maxcms_2014_1/images/script.js | 200 OK Content-Length: 268 Content-Type: application/x-javascript | clean |
http://www.ludlu.com/js/ads/ad_top.js | 200 OK Content-Length: 730 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com //µÚ1¸ö
//µÚ2¸ö document.write("<script type=\'text\/javascript\'>"); document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'12484\';"); document.write(" ddgu_type = \'0\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'130\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'6\';"); document.write(" ddgu_fd_type = \'0\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); //µÚ3¸ö //µÚ4¸ö //µÚ5¸ö //µÚ6¸ö //µÚ7¸ö //µÚ8¸ö //µÚ9¸ö //ÒÔ´ËÀàÍÆ //×¢ÒâÖмäµÄÒýºÅ¶¼ÊÇÓ¢ÎÄ״̬ϵĵ¥ÒýºÅ£¨ ¡®£©¶ø²»ÊÇË«ÒýºÅ£¨ " £© | ||
http://www.ludlu.com/js/ads/syhf.js | 200 OK Content-Length: 0 Content-Type: application/x-javascript | clean |
http://www.ludlu.com/js/ads/ad_foot.js | 200 OK Content-Length: 102 Content-Type: application/x-javascript | clean |
http://js.users.51.la/17146999.js | 200 OK Content-Length: 1964 Content-Type: application/x-javascript | clean |
http://www.ludlu.com/js/ads/ad_left.js | 200 OK Content-Length: 565 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'13092\';"); document.write(" ddgu_type = \'0\'; "); document.write(" ddgu_w = \'150\';"); document.write(" ddgu_h = \'600\';"); document.write(" ddgu_row = \'5\';"); document.write(" ddgu_col = \'1\';"); document.write(" ddgu_fd_type = \'0\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.ludlu.com/js/ads/ad_right.js | 200 OK Content-Length: 565 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'13094\';"); document.write(" ddgu_type = \'0\'; "); document.write(" ddgu_w = \'150\';"); document.write(" ddgu_h = \'125\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'1\';"); document.write(" ddgu_fd_type = \'5\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.ludlu.com/js/ads/ad_right_bottom.js | 200 OK Content-Length: 631 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com //×¢ÒâÖмäµÄÒýºÅ¶¼ÊÇÓ¢ÎÄ״̬ϵĵ¥ÒýºÅ£¨ ¡®£©¶ø²»ÊÇË«ÒýºÅ£¨ " £©
document.write("<script type=\'text\/javascript\'>"); document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'13095\';"); document.write(" ddgu_type = \'0\'; "); document.write(" ddgu_w = \'300\';"); document.write(" ddgu_h = \'300\';"); document.write(" ddgu_row = \'3\';"); document.write(" ddgu_col = \'1\';"); document.write(" ddgu_fd_type = \'5\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.ludlu.com/qvod_help.html | 200 OK Content-Length: 7999 Content-Type: text/html | clean |
http://www.ludlu.com/js/ads/ad_txtinfo_top.js | 200 OK Content-Length: 630 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'8276\';"); document.write(" ddgu_type = \'0\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'130\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'6\';"); document.write(" ddgu_fd_type = \'0\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); //×¢ÒâÖмäµÄÒýºÅ¶¼ÊÇÓ¢ÎÄ״̬ϵĵ¥ÒýºÅ£¨ ¡®£©¶ø²»ÊÇË«ÒýºÅ£¨ " £© | ||
http://www.ludlu.com/js/ads/ad_txtinfo_bottom.js | 200 OK Content-Length: 630 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'8276\';"); document.write(" ddgu_type = \'0\'; "); document.write(" ddgu_w = \'960\';"); document.write(" ddgu_h = \'130\';"); document.write(" ddgu_row = \'1\';"); document.write(" ddgu_col = \'6\';"); document.write(" ddgu_fd_type = \'0\';"); document.write(" ddgu_pf = \'0\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); //×¢ÒâÖмäµÄÒýºÅ¶¼ÊÇÓ¢ÎÄ״̬ϵĵ¥ÒýºÅ£¨ ¡®£©¶ø²»ÊÇË«ÒýºÅ£¨ " £© | ||
http://www.ludlu.com/list/?1.html | 200 OK Content-Length: 10447 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.5yss.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>ߣ¶à±¦,ÑÇÖÞÉ«Çé_µÚ1Ò³_ÈÕ¼Óߣ,ߣߣߣÍø,ߣ¶à±¦,¶îȥߣ,ºÝºÝ°®,ߣ¶àߣ</title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta name="robots" content="all" /> <meta name="keywords" content= ...[5022 bytes skipped]... | ||
http://www.ludlu.com/js/ads/quanzhantanchuang.js | 200 OK Content-Length: 474 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: js.union.doudouguo.com document.write("<script type=\'text\/javascript\'>");
document.write(" ddgu_uid = \'14413\';"); document.write(" ddgu_zid = \'13505\';"); document.write(" ddgu_type = \'5\'; "); document.write(" ddgu_w = \'0\';"); document.write(" ddgu_h = \'0\';"); document.write(" ddgu_mode = \'3\';"); document.write(" ddgu_pf = \'1\';"); document.write("<\/script>"); document.write("<script src=\'http:\/\/js.union.doudouguo.com\/cpro.js\'><\/script>"); | ||
http://www.ludlu.com/list/?2.html | 200 OK Content-Length: 10562 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.5yss.com <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml"> <head> <title>ߣ¶à±¦,Ç¿¼éÉ«Çé_µÚ1Ò³_ÈÕ¼Óߣ,ߣߣߣÍø,ߣ¶à±¦,¶îȥߣ,ºÝºÝ°®,ߣ¶àߣ</title> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <meta name="robots" content="all" /> <meta name="keywords" content= ...[5022 bytes skipped]... |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ludlu.com
Result:
GET / HTTP/1.1
Host: ludlu.com
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: ludlu.com
Referer: http://www.google.com/search?q=ludlu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ludlu.com
Referer: http://www.google.com/search?q=ludlu.com
Result:
The result is similar to the first query. There are no suspicious redirects found.