Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=tudoutv.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://tudoutv.net/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 09 Oct 2014 12:05:07 GMT Location: http://www.tudoutv.net/ Server: nginx/0.8.46 Content-Length: 185 Content-Type: text/html | clean |
http://www.tudoutv.net/ | 200 OK Content-Length: 33516 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://pic.huaxiafengyun.com/pic/ad.js | 200 OK Content-Length: 17381 Content-Type: application/x-javascript | suspicious |
Page code contains blacklisted domain: youku-tv.com ...[1226 bytes skipped]... } if (typeof host != "undefined" && null != host) { var strAry = host.split("."); if (strAry.length > 1) { host = strAry[strAry.length - 2] + "." + strAry[strAry.length - 1]; } } return host; } var dm = getHost(); if(dm == 'youku-tv.com' || dm == 'tudoutv.net' || dm == '7788tv.net' || dm == 'ckdyy.com' || dm == 'aiaidy.org' || dm == '90he.net' || dm == 'huohutv.com' ){ isqi = 1; } if(dm == '51tuo.com' ){ isyou = 1; } if(dm == '138yy.com' ){ ispop = 0; } function ad468x1(){ if (isPc==0) return; document.writeln('<script type="text/JavaScript" charset="gb2312">'); document.writeln('s_noadid="";'); ...[2731 bytes skipped]... | ||
http://js.tongji.linezing.com/1225337/tongji.js | 200 OK Content-Length: 13205 Content-Type: application/x-javascript | clean |
http://tudoutv.net/tu/d_1.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 09 Oct 2014 12:05:11 GMT Location: http://www.tudoutv.net/tu/d_1.html Server: nginx/0.8.46 Content-Length: 185 Content-Type: text/html | clean |
http://www.tudoutv.net/tu/d_1.html | 200 OK Content-Length: 26962 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_2.html | 200 OK Content-Length: 27343 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_13.html | 200 OK Content-Length: 26852 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_3.html | 200 OK Content-Length: 26516 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_4.html | 200 OK Content-Length: 26950 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_5.html | 200 OK Content-Length: 27588 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_6.html | 200 OK Content-Length: 26499 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_7.html | 200 OK Content-Length: 27223 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_8.html | 200 OK Content-Length: 26221 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_9.html | 200 OK Content-Length: 26751 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_18.html | 200 OK Content-Length: 26927 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> | ||
http://www.tudoutv.net/tu/d_19.html | 200 OK Content-Length: 26726 Content-Type: text/html | malicious |
Malicious code found. Script contains blacklisted domain: www.116mm.com document.writeln('<'+'a href="http'+'://www.116'+'mm.com/xh/index.html?f=138'+'"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /><'+'/a>'); Decoded script: <a href="http://www.116mm.com/xh/index.html?f=138"><img src="http://www.138yy.com/120x60.gif" alt="ÃÀŮͼƬ" /></a> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: tudoutv.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 09 Oct 2014 12:05:07 GMT
Location: http://www.tudoutv.net/
Server: nginx/0.8.46
Content-Length: 185
Content-Type: text/html
...185 bytes of data.
GET / HTTP/1.1
Host: tudoutv.net
Result:
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Thu, 09 Oct 2014 12:05:07 GMT
Location: http://www.tudoutv.net/
Server: nginx/0.8.46
Content-Length: 185
Content-Type: text/html
...185 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: tudoutv.net
Referer: http://www.google.com/search?q=tudoutv.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: tudoutv.net
Referer: http://www.google.com/search?q=tudoutv.net
Result:
The result is similar to the first query. There are no suspicious redirects found.