Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ilovecom.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ilovecom.kr/ | 200 OK Content-Length: 23702 Content-Type: text/html | clean |
http://ilovecom.kr/./script/admin.js | 200 OK Content-Length: 12880 Content-Type: application/x-javascript | clean |
http://ilovecom.kr/./script/noticeLayer.js | 200 OK Content-Length: 1593 Content-Type: application/x-javascript | clean |
http://ilovecom.kr/ask_list.php | HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Tue, 03 Mar 2015 18:50:16 GMT Pragma: no-cache Server: Apache/2.2.3 (CentOS) Content-Length: 5284 Content-Type: text/html; charset=euc-kr Expires: Thu, 19 Nov 1981 08:52:00 GMT Set-Cookie: PHPSESSID=ff7l085fbuidd0049sc5j5rsm4; path=/ X-Powered-By: PHP/5.1.6 | clean |
http://ilovecom.kr/index.php | 200 OK Content-Length: 191634 Content-Type: text/html | clean |
http://ilovecom.kr/mypage_order.php | 200 OK Content-Length: 147828 Content-Type: text/html | clean |
http://ilovecom.kr/cart.php | 200 OK Content-Length: 155410 Content-Type: text/html | malicious |
Malicious code - confirmed by antiviruses (see below) <!-- function cartEdit(Obj,bLimit,limitCnt,minbuyCnt,maxbuyCnt,bOptionStock,iOptionCnt) { var Cnt = Obj.cnt.value; if(Cnt=="" || Cnt=="0" ||Cnt==0 || !numCheck(Cnt)) { alert("±¸¸Å¼ö·®ÀÌ ¿Ã¹Ù¸£Áö ¾Ê½À´Ï´Ù."); Obj.cnt.focus(); } else if(bLimit && Cnt > limitCnt) { alert("Á˼ÛÇÕ´Ï´Ù. ÇØ´ç »óÇ°ÀÇ Àüü Àç°í¼ö·®ÀÌ ºÎÁ·ÇÕ´Ï´Ù.\n\nÃÑ Àç°í·® : "+limitCnt); Obj.cnt.value = limitCnt; Obj.cnt.focus(); } else if(bOpti Obj.cnt.value = maxbuyCnt; Obj.cnt.focus(); } else { Obj.action = "cart_ok.php?act=edit"; Obj.submit(); } } function cartDel(Obj) { Obj.action = "cart_ok.php?act=del"; Obj.submit(); } function cartok(url,flag) { if(flag=="y") { alert("»óÇ°Áß Ç°Àý, º¸·ù, ´ÜÁ¾µÈ Á¦Ç°Àº ±¸¸ÅÇÏ½Ç ¼ö ¾ø½À´Ï´Ù."); } else { location.href= url; } } Antivirus reports:
| ||
http://ilovecom.kr/member_article.php | 200 OK Content-Length: 153799 Content-Type: text/html | clean |
http://ilovecom.kr/order_refer.php | 500 timeout Content-Length: 30 Content-Type: text/plain | clean |
http://ilovecom.kr/test404page.js | 404 Not Found Content-Length: 288 Content-Type: text/html | clean |
http://ilovecom.kr/new_page.php?code=event | 200 OK Content-Length: 773 Content-Type: text/html | clean |
http://ilovecom.kr/new_main.php | 200 OK Content-Length: 83508 Content-Type: text/html | clean |
http://ilovecom.kr/community.php | 200 OK Content-Length: 159617 Content-Type: text/html | clean |
http://ilovecom.kr/speed_list.php | 200 OK Content-Length: 83511 Content-Type: text/html | clean |
http://ilovecom.kr/ink_search.php | 200 OK Content-Length: 88627 Content-Type: text/html | clean |
http://ilovecom.kr/dealer_login.php | 200 OK Content-Length: 85523 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ilovecom.kr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 03 Mar 2015 18:50:11 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=euc-kr
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1qra0e5l1ps0gm3tsdco2ttfr4; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/5.1.6
GET / HTTP/1.1
Host: ilovecom.kr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Tue, 03 Mar 2015 18:50:11 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=euc-kr
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=1qra0e5l1ps0gm3tsdco2ttfr4; path=/
X-Died: timeout at scan.pm line 1566.
X-Powered-By: PHP/5.1.6
Second query (visit from search engine):
GET / HTTP/1.1
Host: ilovecom.kr
Referer: http://www.google.com/search?q=ilovecom.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ilovecom.kr
Referer: http://www.google.com/search?q=ilovecom.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.