Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: winwave.co.kr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 23:42:31 GMT
Server: Apache/2.2.13 (Unix) PHP/5.2.17
Content-Type: text/html; charset=utf-8
Set-Cookie: PHPSESSID=bejcv93ern21biojole799iih1; path=/
X-Powered-By: PHP/5.2.17
GET / HTTP/1.1
Host: winwave.co.kr
Result:
HTTP/1.1 200 OK
Connection: close
Date: Sat, 04 Oct 2014 23:42:31 GMT
Server: Apache/2.2.13 (Unix) PHP/5.2.17
Content-Type: text/html; charset=utf-8
Set-Cookie: PHPSESSID=bejcv93ern21biojole799iih1; path=/
X-Powered-By: PHP/5.2.17
Second query (visit from search engine):
GET / HTTP/1.1
Host: winwave.co.kr
Referer: http://www.google.com/search?q=winwave.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: winwave.co.kr
Referer: http://www.google.com/search?q=winwave.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://winwave.co.kr/ | 200 OK Content-Length: 17024 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: text/javascript | clean |
http://winwave.co.kr/jquery.banner.js | 200 OK Content-Length: 14592 Content-Type: application/javascript | clean |
http://winwave.co.kr/index.html | 200 OK Content-Length: 17024 Content-Type: text/html | clean |
http://winwave.co.kr/sitemap.html | 200 OK Content-Length: 10955 Content-Type: text/html | clean |
http://winwave.co.kr/sub_04_02.html | 200 OK Content-Length: 7466 Content-Type: text/html | clean |
http://winwave.co.kr/sub_01_01.html | 200 OK Content-Length: 11061 Content-Type: text/html | clean |
http://winwave.co.kr/sub_02_01.html | 200 OK Content-Length: 10414 Content-Type: text/html | clean |
http://winwave.co.kr/sub_03_01.html | 200 OK Content-Length: 9528 Content-Type: text/html | clean |
http://winwave.co.kr/sub_04_01.html | 200 OK Content-Length: 18423 Content-Type: text/html | clean |
http://winwave.co.kr/sub_05_01.html | 200 OK Content-Length: 9301 Content-Type: text/html | clean |
http://winwave.co.kr/sub_06_01.html | 200 OK Content-Length: 9548 Content-Type: text/html | clean |
http://winwave.co.kr/sub_01_02.html | 200 OK Content-Length: 11037 Content-Type: text/html | clean |
http://winwave.co.kr/sub_01_03.html | 200 OK Content-Length: 11051 Content-Type: text/html | clean |
http://winwave.co.kr/sub_01_04.html | 200 OK Content-Length: 11473 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=winwave.co.kr
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://winwave.co.kr/
Result: winwave.co.kr is not infected or malware details are not published yet.
Result: winwave.co.kr is not infected or malware details are not published yet.