Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=yozi.cc
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://yozi.cc/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: yozi.cc
Result:
GET / HTTP/1.1
Host: yozi.cc
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: yozi.cc
Referer: http://www.google.com/search?q=yozi.cc
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: yozi.cc
Referer: http://www.google.com/search?q=yozi.cc
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://www.yozi.cc/ | 200 OK Content-Length: 18500 Content-Type: text/html | clean |
http://www.haofbi.com/js/w.js | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 08:18:05 GMT Location: http://sameid.net/limit.html Server: Apache/2.4.6 (Ubuntu) Content-Length: 212 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: uri=%2Fjs%2Fw%2Ejs;Path=/;Max-Age=31536000 Set-Cookie: ref=direct;Path=/;Max-Age=31536000 | clean |
http://sameid.net/limit.html | 200 OK Content-Length: 5359 Content-Type: text/html | clean |
http://s7.addthis.com/js/250/addthis_widget.js | 200 OK Content-Length: 6875 Content-Type: text/javascript | clean |
http://www.haofbi.com/ | 200 OK Content-Length: 3889 Content-Type: text/html | clean |
http://www.haofbi.com/terms.html | 200 OK Content-Length: 12796 Content-Type: text/html | clean |
http://www.haofbi.com/privacy.html | 200 OK Content-Length: 13346 Content-Type: text/html | clean |
http://www.haofbi.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 08:18:07 GMT Location: http://sameid.net/limit.html Server: Apache/2.4.6 (Ubuntu) Content-Length: 212 Content-Type: text/html; charset=iso-8859-1 Set-Cookie: uri=%2Ftest404page%2Ejs;Path=/;Max-Age=31536000 Set-Cookie: ref=direct;Path=/;Max-Age=31536000 | clean |
http://sameid.net/test404page.js | 404 Not Found Content-Length: 3296 Content-Type: text/html | clean |
http://sameid.net/ | 200 OK Content-Length: 3889 Content-Type: text/html | clean |
http://sameid.net/terms.html | 200 OK Content-Length: 12796 Content-Type: text/html | clean |
http://sameid.net/privacy.html | 200 OK Content-Length: 13346 Content-Type: text/html | clean |
http://www.haofbi.com/order?plan=pp-premium | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 08:18:10 GMT Location: https://www.paypal.com/cgi-bin/webscr?cmd=_xclick-subscriptions&business=iiveras.lt%40gmail.com&a3=29.99&p3=1&t3=M&src=1&no_note=1&custom=-300-yes-32-e3ac152c&no_shipping=1&return=http%3A%2F%2Fsameid.net%2Fthankyou&rm=2&item_name=SameID%20Premium%20-%20300%20requests%2Fday Server: Apache/2.4.6 (Ubuntu) Content-Length: 501 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.paypal.com/cgi-bin/webscr?cmd=_xclick-subscriptions&business=iiveras.lt%40gmail.com&a3=29.99&p3=1&t3=m&src=1&no_note=1&custom=-300-yes-32-e3ac152c&no_shipping=1&return=http%3a%2f%2fsameid.net%2fthankyou&rm=2&item_name=sameid%20premium%20-%20300%20requests%2fday | HTTP/1.1 302 Moved Temporarily Connection: close Connection: Transfer-Encoding Date: Sun, 05 Oct 2014 08:18:35 GMT Location: https://www.paypal.com/lt/cgi-bin/webscr?cmd=_flow&SESSION=_il3pOaFaSl5WcGrM3DYKk15T6g2zTFlL90zjm2Y5oC_g0zbFM-7pzcsUc8&dispatch=5885d80a13c0db1f8e263663d3faee8dbd0a2170b502f343d92a90377a9956d7 Server: Apache Content-Encoding: gzip Content-Type: text/html DC: slc-b-origin-www-2.paypal.com Set-Cookie: cwrClyrK4LoCV1fydGbAxiNL6iG=RHUa7dLMYbA5rG_qZHccaOoqtaKV0VTSya01y5KRsXyWG-BqXKa7P_14jFFUPAb1QAZ7oyHWZVx1eDdxUYrQ99Q-QD718nsl-GoNe9bkLGBUJ5IYpK5DAYYcopEOhzBs1v5OqX4GElGAz9M9CZe2QTWlgpELKA0_LAGgdKjMxoj8X21YrcM6zeaTPtGael55SG9W9zFV9_VV9CMCSwT7jkn5aHbsnYnYb5XR8YkSqFv0g1qBC-oaDb_NEnTBTqdEI1E_SszE0zLFd1ELMv7IKsqLrkRWwqrHOfWZQTx9beUCWDr40Nd0IsNfmG8xdgB2t4Ty_Z9Q8dZmIKHPhhfBsHT-YIpfhZfZKUybrxfti-w3GxgU5r_xm49rldQbTRN8NeVWmPpS0N7QNjAwEDzQczTqsxdr-pESZEApdG; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: KHcl0EuY7AKSMgfvHl7J5E7hPtK=o9_8SIy8zRf1-GBd2dg04vVdeUTa6FhXNPXxEW6DhhXARNV9qofs_54vPAklFBTZIB8r1nKkTQXSWoSf; expires=Sat, 30-Sep-2034 08:18:35 GMT; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: cookie_check=yes; expires=Wed, 02-Oct-2024 08:18:35 GMT; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: navcmd=_xclick-subscriptions; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: pNTcMTtQfrJuaJiwEnWXQ6yNxfq=EII_TV9gsBC5SwvxBP0vdsHmVVl22evxz77FmYHAhEwiIeAwPvng9-NF2zjGnxN9GyXCr0dYjgkRS69dxhkju48mMhkrX5shaPhCI14MwJYEBelU3WIP-aqPzMqGF_UZ3XoY3EcqkQ4pq4OSeRIUoX_FdHXLQS7vr-mrktIq387U692Mssmn4jIaGJg907C0eM-PgeyJAJNBCqZaGVm94C_vnYBRA2izv4ECSgLkOhmgW4J5r9o6JVNDzPPmYP-V9856E_vnOhWjMQsWO4N2jDW72TmcPJ2-1iZkN8iFtze9isCpCp3wu2fGWitus89B0PDDawkGcouNWagJ1D9iGCs9wQKsAjoCR40IaW; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: navlns=0.0; expires=Tue, 04-Oct-2016 08:18:35 GMT; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: Apache=10.74.8.137.1412497115270160; path=/; expires=Tue, 27-Sep-44 08:18:35 GMT Set-Cookie: X-PP-SILOVER=name%3DLIVE6.WEB.1%26silo_version%3D880%26app%3Dslingshot%26TIME%3D3690868820; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: X-PP-SILOVER=; Expires=Thu, 01 Jan 1970 00:00:01 GMT Set-Cookie: Apache=10.74.8.70.1412497115260953; path=/; expires=Tue, 27-Sep-44 08:18:35 GMT Set-Cookie: AKDC=slc-b-origin-www-2.paypal.com; expires=Sun, 05-Oct-2014 08:48:35 GMT; path=/; secure Strict-Transport-Security: max-age=63072000 X-Frame-Options: SAMEORIGIN | clean |
https://www.paypal.com/lt/cgi-bin/webscr?cmd=_flow&session=_il3poafasl5wcgrm3dykk15t6g2ztfll90zjm2y5oc_g0zbfm-7pzcsuc8&dispatch=5885d80a13c0db1f8e263663d3faee8dbd0a2170b502f343d92a90377a9956d7 | 200 OK Content-Length: 54 Content-Type: text/html | clean |
http://www.haofbi.com/order?plan=pp-business | HTTP/1.1 302 Found Connection: close Date: Sun, 05 Oct 2014 08:18:12 GMT Location: https://www.paypal.com/cgi-bin/webscr?cmd=_xclick-subscriptions&business=iiveras.lt%40gmail.com&a3=59.99&p3=1&t3=M&src=1&no_note=1&custom=-3000-yes-32-31faf08b&no_shipping=1&return=http%3A%2F%2Fsameid.net%2Fthankyou&rm=2&item_name=SameID%20Business%20-%203000%20requests%2Fday Server: Apache/2.4.6 (Ubuntu) Content-Length: 504 Content-Type: text/html; charset=iso-8859-1 | clean |
https://www.paypal.com/cgi-bin/webscr?cmd=_xclick-subscriptions&business=iiveras.lt%40gmail.com&a3=59.99&p3=1&t3=m&src=1&no_note=1&custom=-3000-yes-32-31faf08b&no_shipping=1&return=http%3a%2f%2fsameid.net%2fthankyou&rm=2&item_name=sameid%20business%20-%203000%20requests%2fday | HTTP/1.1 302 Moved Temporarily Connection: close Connection: Transfer-Encoding Date: Sun, 05 Oct 2014 08:18:38 GMT Location: https://www.paypal.com/lt/cgi-bin/webscr?cmd=_flow&SESSION=Ru0L9cnfMcd0b7KzTgnzy6DMfL526v5wKzQu-kSIJWenxBsI_J7TAzBzFW8&dispatch=5885d80a13c0db1f8e263663d3faee8dbd0a2170b502f343d92a90377a9956d7 Server: Apache Content-Encoding: gzip Content-Type: text/html DC: slc-b-origin-www-2.paypal.com Set-Cookie: cwrClyrK4LoCV1fydGbAxiNL6iG=_894b7viyQ8Kntr2XRAtXLQZyLZDEEujkJVyAuK8sGPPVGgoxBZqijgga4n4-iegN7YUeg_64UDFOtjBKfTm_XdDoCTcM9cYuJQe1MNAyAwh2Vf08b67OzpExtt53AGqzqwioox2dNWqdvoJLUtgSyZlIYM_Q_y_L8NdADcG8REh_W2OaQsqIju6Vg2bV8FNd5BrWf5cFeDHfyzywEkPUa2wszSvM7RoCL6XgAXtjVF59hPFahts-Vq2xYKNSJQQPcW_7EO1PLPmbECMHGAbRMsYuFoMo-VTFsdN-bWDhYspm6lhkTNbF6cvDu02yaYMPEJmiCrVWcfaaWEKIbRSD6JcSx8lImvNZ0Kdx-JuDM0DIlo1gvZE9Hq5UvWPm2g1aBmNW3u0iEHZtr6Setumq5Uwwl3K0lmBCp__NRSlDRmk7bE8-Fx3o5cLYJi; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: KHcl0EuY7AKSMgfvHl7J5E7hPtK=mFshv2lQ2g3XKu-2zjTSgOYmjinE3ayse79HkPNWV78Xc74kqJLXbBrkc5BFSyK3MW3OAutV21tLa3J8; expires=Sat, 30-Sep-2034 08:18:37 GMT; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: cookie_check=yes; expires=Wed, 02-Oct-2024 08:18:37 GMT; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: navcmd=_xclick-subscriptions; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: pNTcMTtQfrJuaJiwEnWXQ6yNxfq=6PukCiVlKZK_gpT8dmFg4tRmAwrHhHYzs4GtppEOG63jqX-d3i1h9P_EooP2tPXTCBco24i53O5OXrQI6KLFS50Bctgfk0IT2CfSA81v5h0LmPAMybQlTM4xz4p_KJii_4BkuZkZ3Q-ZzGz25gJhJ_Zn3pC3g-DZEIeep8fMaePvHz1VUZgc-1erymbhOg1pnpDnQnV6SIqq5zdmbDTkZguGS8eFYBGc2excT7XBhtVWkGXem95sZmWJGggPasQcXcrk3KfcFm4yuWjxHZhq5gxLzJ7X5SGvqXMgd-PvqVwrInInoWQRWlrKEmA3nKByYCB5oboHwrnHZGd83B8awHRY5AY6VAZsu1tB7m; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: navlns=0.0; expires=Tue, 04-Oct-2016 08:18:37 GMT; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: Apache=10.74.8.137.1412497117486809; path=/; expires=Tue, 27-Sep-44 08:18:37 GMT Set-Cookie: X-PP-SILOVER=name%3DLIVE6.WEB.1%26silo_version%3D880%26app%3Dslingshot%26TIME%3D3724423252; domain=.paypal.com; path=/; Secure; HttpOnly Set-Cookie: X-PP-SILOVER=; Expires=Thu, 01 Jan 1970 00:00:01 GMT Set-Cookie: Apache=10.74.8.58.1412497117476746; path=/; expires=Tue, 27-Sep-44 08:18:37 GMT Set-Cookie: AKDC=slc-b-origin-www-2.paypal.com; expires=Sun, 05-Oct-2014 08:48:38 GMT; path=/; secure Strict-Transport-Security: max-age=63072000 X-Frame-Options: SAMEORIGIN | clean |
https://www.paypal.com/lt/cgi-bin/webscr?cmd=_flow&session=ru0l9cnfmcd0b7kztgnzy6dmfl526v5wkzqu-ksijwenxbsi_j7tazbzfw8&dispatch=5885d80a13c0db1f8e263663d3faee8dbd0a2170b502f343d92a90377a9956d7 | 200 OK Content-Length: 54 Content-Type: text/html | clean |
http://www.haofbi.com/contacts.html | 200 OK Content-Length: 4349 Content-Type: text/html | clean |
http://www.yozi.cc/script/jquery-1.6.2.min.js | 200 OK Content-Length: 91573 Content-Type: application/x-javascript | clean |
http://icp.aizhan.com/geticp/?host=www.yozi.cc&style=1 | 200 OK Content-Length: 41 Content-Type: text/html | clean |