Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=jpmpusa.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://jpmpusa.com/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 11 May 2014 15:55:06 GMT Pragma: no-cache Location: shop/index.php Server: Apache Content-Length: 0 Content-Type: text/html; charset=euc-kr Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Sun, 11 May 2014 15:55:06 GMT P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC" Set-Cookie: PHPSESSID=f0336c8603de629d11e71805c8eeeff7; path=/ Set-Cookie: cookie_check=1; path=/; domain=.jpmpusa.com Set-Cookie: Ncisy=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com Set-Cookie: N_t=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com Set-Cookie: N_e=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com Set-Cookie: N_ba=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com Set-Cookie: N_aa=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com Set-Cookie: cookie_check=0; path=/; domain=.jpmpusa.com Set-Cookie: shop_authenticate=Y; path=/ Set-Cookie: Xtime=1399823706; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://jpmpusa.com/shop/index.php | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sun, 11 May 2014 15:55:07 GMT Pragma: no-cache Location: main/index.php Server: Apache Content-Length: 0 Content-Type: text/html; charset=euc-kr Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Sun, 11 May 2014 15:55:07 GMT P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC" Set-Cookie: PHPSESSID=f478dea1c4a1069e0678d704b7100173; path=/ X-Powered-By: PHP/5.2.17 | clean |
http://jpmpusa.com/shop/main/index.php | 200 OK Content-Length: 125849 Content-Type: text/html | clean |
http://jpmpusa.com/shop/data/skin/y_softblack/common.js | 200 OK Content-Length: 32335 Content-Type: application/javascript | clean |
http://jpmpusa.com/shop/data/skin/y_softblack/img/iebanner.js | 200 OK Content-Length: 2422 Content-Type: application/javascript | clean |
http://sm14.sitemonitor.co.kr:8692/display?sc=348 | 200 OK Content-Length: 233 | suspicious |
Page code contains blacklisted domain: jpmpusa.com _smAllow = "y";
_smCPort = "8693"; _smSite = "jpmpusa.com"; _smTop = 70; _smPost = "right"; _smOffset = 50; _smScroll = "y"; _smAlpha = "92"; _smKind = "o"; _smSize = "n"; _smType = "2"; _smMMessage = ""; _smArrange = ""; | ||
http://sm14.sitemonitor.co.kr:8692/test404page.js | 500 Server closed connection without sending any data back Content-Length: 105 Content-Type: text/plain | clean |
http://code.sitemonitor.co.kr/code.js?su=sm14.sitemonitor.co.kr&pt=8692&sc=348 | 200 OK Content-Length: 41891 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: jpmpusa.com
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 11 May 2014 15:55:06 GMT
Pragma: no-cache
Location: shop/index.php
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=euc-kr
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Sun, 11 May 2014 15:55:06 GMT
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=f0336c8603de629d11e71805c8eeeff7; path=/
Set-Cookie: cookie_check=1; path=/; domain=.jpmpusa.com
Set-Cookie: Ncisy=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_t=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_e=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_ba=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_aa=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: cookie_check=0; path=/; domain=.jpmpusa.com
Set-Cookie: shop_authenticate=Y; path=/
Set-Cookie: Xtime=1399823706; path=/
X-Powered-By: PHP/5.2.17
...0 bytes of data.
GET / HTTP/1.1
Host: jpmpusa.com
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 11 May 2014 15:55:06 GMT
Pragma: no-cache
Location: shop/index.php
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=euc-kr
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Last-Modified: Sun, 11 May 2014 15:55:06 GMT
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=f0336c8603de629d11e71805c8eeeff7; path=/
Set-Cookie: cookie_check=1; path=/; domain=.jpmpusa.com
Set-Cookie: Ncisy=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_t=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_e=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_ba=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: N_aa=deleted; expires=Sat, 11-May-2013 15:55:05 GMT; path=/; domain=.jpmpusa.com
Set-Cookie: cookie_check=0; path=/; domain=.jpmpusa.com
Set-Cookie: shop_authenticate=Y; path=/
Set-Cookie: Xtime=1399823706; path=/
X-Powered-By: PHP/5.2.17
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: jpmpusa.com
Referer: http://www.google.com/search?q=jpmpusa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: jpmpusa.com
Referer: http://www.google.com/search?q=jpmpusa.com
Result:
The result is similar to the first query. There are no suspicious redirects found.