Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kelownaplus.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://kelownaplus.com/ | 200 OK Content-Length: 143255 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.kelowna.co.kr <!-- <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <title>:: ì¼ë¡ëíë¬ì¤ :: "Together for a better world"</title> <META name="Author" content="apachezone"> <META name="reply-to" content="jsbuilder@apachezone.com"> <!-- //*********************************** ...[4456 bytes skipped]... Malicious iFrame found. size: 540x20 src: http://www.kelowna.co.kr/time.php This URL is marked by Google as suspicious <iframe name='time' frameborder='0' framespacing='0' height='20' marginheight='2' marginwidth='0' scrolling='no' src='http://www.kelowna.co.kr/time.php' width='540' bgcolor=#ffffff> | ||
http://kelownaplus.com/./js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./js/js.js | 200 OK Content-Length: 736 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./js/common.js | 200 OK Content-Length: 15356 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./js/imgcbox.js | 200 OK Content-Length: 2182 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./js/capslock.js | 200 OK Content-Length: 2959 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./skin/latest/Sliderman_banner/js/sliderman.1.2.0.js | 200 OK Content-Length: 30627 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./js/wrest.js | 200 OK Content-Length: 15539 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/. | 200 OK Content-Length: 143255 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.kelowna.co.kr <!-- <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> --> <html> <head> <meta http-equiv="content-type" content="text/html; charset=utf-8"> <title>:: ì¼ë¡ëíë¬ì¤ :: "Together for a better world"</title> <META name="Author" content="apachezone"> <META name="reply-to" content="jsbuilder@apachezone.com"> <!-- //*********************************** ...[4456 bytes skipped]... Malicious iFrame found. size: 540x20 src: http://www.kelowna.co.kr/time.php This URL is marked by Google as suspicious <iframe name='time' frameborder='0' framespacing='0' height='20' marginheight='2' marginwidth='0' scrolling='no' src='http://www.kelowna.co.kr/time.php' width='540' bgcolor=#ffffff> | ||
http://kelownaplus.com/./bbs/login.php | 200 OK Content-Length: 38902 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.kelowna.co.kr ...[2714 bytes skipped]... <a href="javascript:;" onclick="win_password_lost();"><img src="../skin/member/basic/img/btn_password_forget.gif" width="108" height="20" border=0 align="absmiddle"></td> </tr> </table></td> </tr> </table></td><td width="20"></td><td width="420"><a href='http://www.kelowna.co.kr/pickup.php' target='_blank'><img src="../ban/loginban2.gif" width="420" height="220"></a></td> <td width="20"></td> </tr> <tr> <td width="20" height="1"></td> <td width="628" bgcolor="#F0F0F0"></td> <td width="20"></td> </tr> <tr> <td height="20" colspan="3"></td> </tr> </table> </form> & ...[1196 bytes skipped]... Malicious iFrame found. size: 540x20 src: http://www.kelowna.co.kr/time.php This URL is marked by Google as suspicious <iframe name='time' frameborder='0' framespacing='0' height='20' marginheight='2' marginwidth='0' scrolling='no' src='http://www.kelowna.co.kr/time.php' width='540' bgcolor=#ffffff> | ||
http://kelownaplus.com/./bbs/../js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./bbs/../js/js.js | 200 OK Content-Length: 736 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./bbs/../js/common.js | 200 OK Content-Length: 15356 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./bbs/../js/imgcbox.js | 200 OK Content-Length: 2182 Content-Type: application/x-javascript | clean |
http://kelownaplus.com/./bbs/../js/capslock.js | 200 OK Content-Length: 2959 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kelownaplus.com
Result:
HTTP/1.1 200 OK
Cache-Control: pre-check=0, post-check=0, max-age=0
Connection: close
Date: Fri, 06 Mar 2015 14:24:19 GMT
Pragma: no-cache
Server: Microsoft-IIS/5.0
Content-Type: text/html; charset=utf-8
Expires: 0
Last-Modified: Fri, 06 Mar 2015 14:24:19 GMT
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=8ccttr79ldhqp7piq4806atpl1; path=/
Set-Cookie: f33d2ed86bd82d4c22123c9da444d8ab=MTQyNTY1MTg1OQ%3D%3D; expires=Sat, 05-Mar-2016 14:24:19 GMT; path=/
Set-Cookie: 96b28b766b7e0699aa91c9ff3d890663=deleted; expires=Thu, 06-Mar-2014 14:24:18 GMT; path=/
Set-Cookie: 2a0d2363701f23f8a75028924a3af643=NzguMTU4LjExLjIyNg%3D%3D; expires=Sat, 07-Mar-2015 14:24:19 GMT; path=/
GET / HTTP/1.1
Host: kelownaplus.com
Result:
HTTP/1.1 200 OK
Cache-Control: pre-check=0, post-check=0, max-age=0
Connection: close
Date: Fri, 06 Mar 2015 14:24:19 GMT
Pragma: no-cache
Server: Microsoft-IIS/5.0
Content-Type: text/html; charset=utf-8
Expires: 0
Last-Modified: Fri, 06 Mar 2015 14:24:19 GMT
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=8ccttr79ldhqp7piq4806atpl1; path=/
Set-Cookie: f33d2ed86bd82d4c22123c9da444d8ab=MTQyNTY1MTg1OQ%3D%3D; expires=Sat, 05-Mar-2016 14:24:19 GMT; path=/
Set-Cookie: 96b28b766b7e0699aa91c9ff3d890663=deleted; expires=Thu, 06-Mar-2014 14:24:18 GMT; path=/
Set-Cookie: 2a0d2363701f23f8a75028924a3af643=NzguMTU4LjExLjIyNg%3D%3D; expires=Sat, 07-Mar-2015 14:24:19 GMT; path=/
Second query (visit from search engine):
GET / HTTP/1.1
Host: kelownaplus.com
Referer: http://www.google.com/search?q=kelownaplus.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kelownaplus.com
Referer: http://www.google.com/search?q=kelownaplus.com
Result:
The result is similar to the first query. There are no suspicious redirects found.