Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=towns.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://towns.kr/ | 200 OK Content-Length: 82065 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://search.naver.com/search.naver?where=nexearch&query=%ed%99%88%ed%8e%98%ec%9d%b4%ec%a7%80%ec%a0%9c%ec%9e%91+%ec%84%b8%ec%9b%80%ec%86%8c%ed%94%84%ed%8a%b8&sm=top_hty&fbm=1&ie=utf8 <iframe src="http://search.naver.com/search.naver?where=nexearch&query=%ed%99%88%ed%8e%98%ec%9d%b4%ec%a7%80%ec%a0%9c%ec%9e%91+%ec%84%b8%ec%9b%80%ec%86%8c%ed%94%84%ed%8a%b8&sm=top_hty&fbm=1&ie=utf8" width="1" height="1" frameborder="0" scrolling="no"> | ||
http://towns.kr/./js/JscriptCod.js | HTTP/1.1 302 Found Connection: close Date: Thu, 26 Jun 2014 10:28:58 GMT Location: http://www.jjangdrip.com/bbs/board.php?bo_table=bbo1 Server: Apache/2.2.3 (CentOS) Content-Length: 309 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.jjangdrip.com/bbs/board.php?bo_table=bbo1 | 200 OK Content-Length: 41439 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 1x1 src: http://search.naver.com/search.naver?where=nexearch&query=%ed%99%88%ed%8e%98%ec%9d%b4%ec%a7%80%ec%a0%9c%ec%9e%91+%ec%84%b8%ec%9b%80%ec%86%8c%ed%94%84%ed%8a%b8&sm=top_hty&fbm=1&ie=utf8 <iframe src="http://search.naver.com/search.naver?where=nexearch&query=%ed%99%88%ed%8e%98%ec%9d%b4%ec%a7%80%ec%a0%9c%ec%9e%91+%ec%84%b8%ec%9b%80%ec%86%8c%ed%94%84%ed%8a%b8&sm=top_hty&fbm=1&ie=utf8" width="1" height="1" frameborder="0" scrolling="no"> | ||
http://www.jjangdrip.com/bbs/../js/JscriptCod.js | HTTP/1.1 302 Found Connection: close Date: Thu, 26 Jun 2014 10:29:00 GMT Location: http://www.jjangdrip.com/bbs/board.php?bo_table=bbo1 Server: Apache/2.2.3 (CentOS) Content-Length: 318 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.jjangdrip.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 26 Jun 2014 10:29:01 GMT Location: http://www.jjangdrip.com/bbs/board.php?bo_table=bbo1 Server: Apache/2.2.3 (CentOS) Content-Length: 318 Content-Type: text/html; charset=iso-8859-1 | clean |
http://towns.kr/./js/../js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://towns.kr/./js/../js/common.js | 200 OK Content-Length: 15354 Content-Type: application/x-javascript | clean |
http://adexview.adnew.co.kr/adimage_script.php?data=520|531|160|600 | 200 OK Content-Length: 5194 Content-Type: text/javascript | clean |
http://towns.kr/./js/../js/sideview.js | 200 OK Content-Length: 11274 Content-Type: application/x-javascript | clean |
http://towns.kr/./js/../skin/board/partner/mw.js/jquery-ui-1.8.19.custom.min.js | 200 OK Content-Length: 206663 Content-Type: application/x-javascript | clean |
http://towns.kr/./js/../skin/board/partner/mw.js/tooltip.js | 200 OK Content-Length: 3516 Content-Type: application/x-javascript | clean |
http://wcs.naver.net/wcslog.js | 200 OK Content-Length: 16651 Content-Type: application/javascript | clean |
http://towns.kr/./js/../js/wrest.js | 200 OK Content-Length: 15539 Content-Type: application/x-javascript | clean |
http://towns.kr/./js/jquery-1.4.2.min.js | 200 OK Content-Length: 72328 Content-Type: application/x-javascript | clean |
http://towns.kr/./js/common.js | 200 OK Content-Length: 15354 Content-Type: application/x-javascript | clean |
http://towns.kr/./js/wrest.js | 200 OK Content-Length: 15539 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: towns.kr
Result:
HTTP/1.1 200 OK
Cache-Control: pre-check=0, post-check=0, max-age=0
Connection: close
Date: Thu, 26 Jun 2014 10:28:55 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=utf-8
Expires: 0
Last-Modified: Thu, 26 Jun 2014 10:28:55 GMT
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=rkbgcq538gj3jvh6bojfh94uh4; path=/
Set-Cookie: f33d2ed86bd82d4c22123c9da444d8ab=MTQwMzc3ODUzNQ%3D%3D; expires=Fri, 26-Jun-2015 10:28:55 GMT; path=/
Set-Cookie: 96b28b766b7e0699aa91c9ff3d890663=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Set-Cookie: 2a0d2363701f23f8a75028924a3af643=NzguMTU4LjExLjIyNg%3D%3D; expires=Fri, 27-Jun-2014 10:28:55 GMT; path=/
X-Powered-By: PHP/5.4.19
GET / HTTP/1.1
Host: towns.kr
Result:
HTTP/1.1 200 OK
Cache-Control: pre-check=0, post-check=0, max-age=0
Connection: close
Date: Thu, 26 Jun 2014 10:28:55 GMT
Pragma: no-cache
Server: Apache/2.2.3 (CentOS)
Content-Type: text/html; charset=utf-8
Expires: 0
Last-Modified: Thu, 26 Jun 2014 10:28:55 GMT
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=rkbgcq538gj3jvh6bojfh94uh4; path=/
Set-Cookie: f33d2ed86bd82d4c22123c9da444d8ab=MTQwMzc3ODUzNQ%3D%3D; expires=Fri, 26-Jun-2015 10:28:55 GMT; path=/
Set-Cookie: 96b28b766b7e0699aa91c9ff3d890663=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Set-Cookie: 2a0d2363701f23f8a75028924a3af643=NzguMTU4LjExLjIyNg%3D%3D; expires=Fri, 27-Jun-2014 10:28:55 GMT; path=/
X-Powered-By: PHP/5.4.19
Second query (visit from search engine):
GET / HTTP/1.1
Host: towns.kr
Referer: http://www.google.com/search?q=towns.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: towns.kr
Referer: http://www.google.com/search?q=towns.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.