Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=hlift.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://hlift.kr/ | 200 OK Content-Length: 12577 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/js/common.js | 200 OK Content-Length: 14689 Content-Type: application/x-javascript | clean |
http://hlift.kr/./gnuboard4/js/ajax.js | 200 OK Content-Length: 1292 Content-Type: application/x-javascript | clean |
http://hlift.kr/script.js | 200 OK Content-Length: 789 Content-Type: application/x-javascript | clean |
http://hlift.kr/./gnuboard4/bbs/board.php?bo_table=notice&wr_id=519 | 200 OK Content-Length: 14999 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/../js/common.js | 501 Method Not Implemented Content-Length: 305 Content-Type: text/html | clean |
http://hlift.kr/test404page.js | 404 Not Found Content-Length: 281 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/../js/ajax.js | 501 Method Not Implemented Content-Length: 303 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/../js/sideview.js | 501 Method Not Implemented Content-Length: 307 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/../js/filter.js | 501 Method Not Implemented Content-Length: 305 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/../js/md5.js | 501 Method Not Implemented Content-Length: 302 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/../js/wrest.js | 501 Method Not Implemented Content-Length: 304 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/board.php?bo_table=notice&wr_id=517 | 200 OK Content-Length: 14969 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hlift.mireene.com <!-- <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=euc-kr"> <title>::::Çö´ëÁö°ÔÂ÷ ¼¿ï¼ºÎÁöÁ¡¿¡ ¿À½Å°ÍÀ» ȯ¿µÇÕ´Ï´Ù::::</title> <link rel="stylesheet" href="../style.css" type="text/css"> </head> <script language="javascript"> // ÀÚ¹Ù½ºÅ©¸³Æ®¿¡¼ »ç¿ëÇÏ´Â Àü¿ªº¯¼ö ¼±¾ ...[4563 bytes skipped]... | ||
http://hlift.kr/index.html | 200 OK Content-Length: 12577 Content-Type: text/html | clean |
http://hlift.kr/./gnuboard4/bbs/board.php?bo_table=notice&wr_id=513 | 200 OK Content-Length: 14980 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: hlift.mireene.com <!-- <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=euc-kr"> <title>::::Çö´ëÁö°ÔÂ÷ ¼¿ï¼ºÎÁöÁ¡¿¡ ¿À½Å°ÍÀ» ȯ¿µÇÕ´Ï´Ù::::</title> <link rel="stylesheet" href="../style.css" type="text/css"> </head> <script language="javascript"> // ÀÚ¹Ù½ºÅ©¸³Æ®¿¡¼ »ç¿ëÇÏ´Â Àü¿ªº¯¼ö ¼±¾ ...[4563 bytes skipped]... | ||
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hlift.kr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 11:51:28 GMT
Server: Microsoft-IIS/9.0
Content-Type: text/html
X-Powered-By: PHP/5.1.6
GET / HTTP/1.1
Host: hlift.kr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Mon, 22 Dec 2014 11:51:28 GMT
Server: Microsoft-IIS/9.0
Content-Type: text/html
X-Powered-By: PHP/5.1.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: hlift.kr
Referer: http://www.google.com/search?q=hlift.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hlift.kr
Referer: http://www.google.com/search?q=hlift.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.