百度官方发现的存在劫持风险的第三方JS地址

百度发现部分站点出现回退劫持,是因为在站点页面上携带了部分第三方的外链JS。
百度集中定位了一批有问题的第三方JS,具体JS地址见下。
请广大站长关注,并自查网站代码里面是否携带了如下JS,如果携带了,请尽快与JS提供方沟通或者下线这些JS。

问题JS地址如下:

http://3g.365jia.cn/js/riot.min.js
http://a.adnium.com/static?r=23326206&id=94837&pid=5044&sid=73633&tid=1&w=300&h=250
http://aaa.1688zl.top/static/bottom.js
http://ca2.hnzz-zhuoran.top/new/ldy/js/comm.js
http://cdn.qlclup.cn/pop/search.js
http://fip.77417.cn/js/top/7324.js
http://js.juicyads.com/jads.js
http://md.1drj.com/file/bdast.js

http://mjs.sinajs.cn/blog/ria/h5/v2/js/sj.js?v=106978重点注意

http://mldy.rsgbt.cn/info/main.js
http://page.kaikele.top/static/js/comm.js
http://rt68.wscif.top/static/bottom.js

http://vedio.soso.com/s/js/lib/perf.js?t=201907091134重点注意

http://www.woyaofuli.cn/wp-content/themes/Beginning/js/base.js?ver=23
http://www.xdf.cn/zhuanti/wapjyttnr11.29/js/Testing.js
http://www.xvideostube.me/wp-content/plugins/clean-tube-player/public/vendors/videojs/silvermine-videojs-quality-selector.min.js?ver=1.1.2
http://yun.tuisnake.com/h5-mami/dist/7.7447173f676519bdad63.js
https://a.urlet.cn/js_183.js
https://a.urlet.cn/js_228.js
https://ad.scjcgj.top/wap/script/md/md-1000105/b/?v=4496732894f5b022b80105e4d27f8356
https://adserver.juicyads.com/js/jads.js
https://click.moneyoffer.pro/ad3/f3d09bca8392c6d888d9400bb31ec344a5c550d4?1=&2=&3=&4=&5=&utm_campaign=1st%20link%20test&cid=
https://denuomall.com/63www/js/log.js
https://ight192.e-com301.top:168/ua80163/js/comm.js
https://ight192.e-com301.top:168/ua80554/js/comm.js
https://ight192.e-com301.top:168/ua80750/js/comm.js
https://ight192.e-com301.top:168/ub85181/js/comm.js
https://ight192.yanglaohangyew.top:168/ua80750/js/comm.js
https://ight192.yanglaohangyew.top:168/ub85181/js/comm.js
https://ight192.yanglaohangyew.top:168/ub85286/js/comm.js

https://inxx.in/v20v2/?/这个系列有一堆,需要特别小心

https://js.juicyads.com/jads.js
https://kk1.woqiuyi.cn/nldy/js/comm.js?v=2
https://ld.qunlitoto.com/static/fq/h5/js/main.js
https://m.kanshuzhong.cc/404/js.js
https://m.lihhu.cn:4433/ssluu/js/main.js
https://m.zhongheschool.com/js/wap/common.js
https://pages.anjukestatic.com/usersite/touch/js/qj/underscore-min.js
https://s.baixing.net/w/turntable/index.re.f8a4f79d.js
https://sept19.me3gt.cn:890/50087/js/comm.js
https://static.tianyaui.com/global/dashang/js/switch/switch.js
https://ts.yunjiantec.com/api/EuqGzcoYdI.js
https://ts.yunjiantec.com/api/KB5PuyT7m2.js
https://ts.yunjiantec.com/api/MreCsLuQWO.js
https://ts.yunjiantec.com/api/nFEgFRkQBl.js
https://v8.zzwanshou.com/swt.js?v=37412c7cc8546642ea136f46c2fe21
https://www.kizzboy.com/wp-content/plugins/ultimate-member/assets/js/um-account.min.js
https://www.kizzboy.com/wp-includes/js/underscore.min.js
https://www.wuiso.com/content/templates/FLY/js/jquery.pjax.js

https://www25c1.53kf.com/kf_new.php?注意53客服

https://zhinan.qianzhan.com/js/comment.js
https://zn.qianzhan.com/js/comment.js

调用了以上js的网站,建议直接在网站源码里面去除掉,否则将会迎来百度的降权处理。
不管百度是否降权你的网站,我们都要尽可能的少调用别人的外部的JS,尽量把js放在自己的网站里。

点赞

发表评论