Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=lowshop.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://lowshop.net/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Sat, 24 Jan 2015 15:55:36 GMT Pragma: no-cache Location: ./front/ Server: Apache/2.2.3 (CentOS) Content-Length: 0 Content-Type: text/html; charset=utf-8 Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=8hkfacqa9fasese4leq8mnbcj5; path=/ X-Powered-By: PHP/5.3.8 | clean |
http://lowshop.net/./front/ | 200 OK Content-Length: 88585 Content-Type: text/html | clean |
http://lowshop.net/front/js/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/js/common.js | 200 OK Content-Length: 6584 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/js/jquery.sb.js | 200 OK Content-Length: 34817 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/js/category.js | 200 OK Content-Length: 2213 Content-Type: application/x-javascript | clean |
http://lowshop.net/admin/js/jquery.date_input.min.js | 200 OK Content-Length: 9184 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/js/slide.js | 200 OK Content-Length: 15025 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/js/jquery.cookie.js | 200 OK Content-Length: 3937 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/js/rolling.js | 200 OK Content-Length: 9466 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/Member/join_step1.php | 200 OK Content-Length: 75085 Content-Type: text/html | clean |
http://lowshop.net/front/Cart/cart_list.php | 200 OK Content-Length: 46933 Content-Type: text/html | clean |
http://lowshop.net/front/js/cart.js | 200 OK Content-Length: 4323 Content-Type: application/x-javascript | clean |
http://lowshop.net/front/Customer/customer_center.php | 200 OK Content-Length: 50078 Content-Type: text/html | clean |
http://lowshop.net/front/Goods/goods_best.php | 200 OK Content-Length: 168184 Content-Type: text/html | clean |
http://lowshop.net/front/js/goods_list.js | 200 OK Content-Length: 8582 Content-Type: application/x-javascript | malicious |
Malicious code - confirmed by antiviruses (see below) $(function() { var max_stock = null; var min_stock = null; var focus_prd = null; var stock_cnt = null; var prd_seq = null; var cart_zzim = null; $('.no_cart').click(function() { alert('ì¬ê³ ê° ììµëë¤.'); return false; }); $('.cart').click(function() { var seq = this.id.split('_').pop(); prd_seq = this.id.split('_').shift(); focus_prd_stock(seq); cart_zzim = 'cart'; if (!stock_cnt) { var windowWidth = document.documentElement.clientWidth; var windowHeight = document.documentElement.clientHeight; var popupHeight = 500; var popupWidth = 784; window.name = "myParent"; window.open('/front/Goods/goods_view_pop.php?no='+seq, 'goods_view_pop', 'width='+popupWidth+'px, height='+popupHeight+'px, left='+(windowWidth/2-popupWidth/2)+', top='+((windowHeight/2)-popupHeight/2)+'px, scrollbars=1'); }); }); Antivirus reports:
| ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: lowshop.net
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 24 Jan 2015 15:55:36 GMT
Pragma: no-cache
Location: ./front/
Server: Apache/2.2.3 (CentOS)
Content-Length: 0
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=8hkfacqa9fasese4leq8mnbcj5; path=/
X-Powered-By: PHP/5.3.8
...0 bytes of data.
GET / HTTP/1.1
Host: lowshop.net
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sat, 24 Jan 2015 15:55:36 GMT
Pragma: no-cache
Location: ./front/
Server: Apache/2.2.3 (CentOS)
Content-Length: 0
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=8hkfacqa9fasese4leq8mnbcj5; path=/
X-Powered-By: PHP/5.3.8
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: lowshop.net
Referer: http://www.google.com/search?q=lowshop.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: lowshop.net
Referer: http://www.google.com/search?q=lowshop.net
Result:
The result is similar to the first query. There are no suspicious redirects found.