Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=mizwork.miz.co.kr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://mizwork.miz.co.kr/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://mizwork.miz.co.kr/ | 200 OK Content-Length: 87518 Content-Type: text/html | malicious |
Page code contains blacklisted domain: www.miz.co.kr ...[1419 bytes skipped]... lt;body> <center> <div style="width:952px"> <table width="952" border="0" cellpadding="0" cellspacing="1"> <tr> <td width="168"><img src="/img/work_logo.gif" width="168" height="55" border="0" usemap="#LogoMap"></td> <td align="center"><iframe border="0" frameborder="no" height="60" hspace="0" marginheight="0" marginwidth="0" scrolling="no" src="http://www.miz.co.kr/inc/top_banner.inc" vspace="0" width="250"></iframe></td> <td width="182" align="center" valign="top" style="padding : 1 0 0 0 ;"> <table width="98%" border="0" cellpadding="0" cellspacing="0"> <tr> <td><img src="/img/ico_dot.gif" align="absmiddle" width="7" height="16"><a href="http://www.miz.co.kr/student/agreement.php" target="_blank" class="small">ȸ¿ø°¡ÀÔ</a></td> <td> ...[2581 bytes skipped]... Malicious iFrame found. size: 250x60 src: http://www.miz.co.kr/inc/top_banner.inc This URL is marked by Yandex as suspicious <iframe border="0" frameborder="no" height="60" hspace="0" marginheight="0" marginwidth="0" scrolling="no" src="http://www.miz.co.kr/inc/top_banner.inc" vspace="0" width="250"> | ||
http://mizwork.miz.co.kr/common/script.js | 200 OK Content-Length: 27600 Content-Type: text/html | clean |
http://mizwork.miz.co.kr/test404page.js | 404 Not Found Content-Length: 212 Content-Type: text/html | clean |
http://mizwork.miz.co.kr/common/layer.js | 200 OK Content-Length: 979 Content-Type: text/html | clean |
http://mizwork.miz.co.kr/common/menu_pop.js | 200 OK Content-Length: 1662 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: pr.miz.co.kr ...[585 bytes skipped]... ><tr>"); document.write(" <tr><td align=right><span onclick=contextmenu()>´Ý±â</span></td><tr>"); document.write(" </table>"); document.write("</div>"); var objID=''; //À̺¥Æ®°¡ ¹ß»ýÇÑ °´Ã¼ÀÇ id¸¦ ´ã´Â´Ù. var openType=''; //°¢Á¾ ÄÜÅؽºÆ® ¸Þ´º Ŭ¸¯½Ã ó¸® function menugo(v){ switch(v){ case 1: //¹Ì´Ï·ëÀ̵¿ // top.location.replace('http://pr.miz.co.kr/'+objID); test=window.open('http://pr.miz.co.kr/'+objID,'pr'); break; case 2: //ÂÊÁö test=window.open('/message/send.php?receive_id='+objID,'memo','width=450,height=400'); break; case 3: //»ç¿ëÀÚÁ¤º¸º¸±â test=window.open('http://www.miz.co.kr/student/userinfo.php?group_code=dreammiz&id='+objID,'userinfo','width=450,height=400'); //objID´ÔÀÌ Ä£±¸·Î µî·ÏµÇ¾ú½À´Ï´Ù. âÀ» ¶ç¿ò break; } } function context ...[466 bytes skipped]... | ||
http://mizwork.miz.co.kr/common/flash.js | 200 OK Content-Length: 806 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: mizwork.miz.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 21 Dec 2014 02:38:46 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=EUC-KR
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=p8vco0403e7ufuagkuggmdsv70; path=/
Set-Cookie: burl=deleted; expires=Sat, 21-Dec-2013 02:38:45 GMT; path=/; domain=.miz.co.kr
GET / HTTP/1.1
Host: mizwork.miz.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 21 Dec 2014 02:38:46 GMT
Pragma: no-cache
Server: Apache
Content-Type: text/html; charset=EUC-KR
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=p8vco0403e7ufuagkuggmdsv70; path=/
Set-Cookie: burl=deleted; expires=Sat, 21-Dec-2013 02:38:45 GMT; path=/; domain=.miz.co.kr
Second query (visit from search engine):
GET / HTTP/1.1
Host: mizwork.miz.co.kr
Referer: http://www.google.com/search?q=mizwork.miz.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: mizwork.miz.co.kr
Referer: http://www.google.com/search?q=mizwork.miz.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.