Report
*Date : 2016.09.09 15:44
*Site : http://global21.co.kr/js/main.js
*Title :
*Info : 211.234.116.6, KR(, Korea, Republic of)
*Check url : 202 counts
*Loading time : 12.713554sec
*Google SafeBrowsing(GSB) :
global21.co.kr is Not found*Result (1)
user information check - 33count
(2)
user cookie check - 25count
(3)
Suspicious url(NULL) - 12count
(4)
user tracking code (acecounter.com) - 6count
(5)
Suspicious script has been detected (JS/Redirector) - 1count
(6)
http://www.kiznmom.co.kr/h/index.html - 1count
(7)
user cookie check - 1count
(8)
Suspicious script has been detected (http://) - 1count
(9)
Suspicious script has been detected (eval/fromCharCode) - 1count
(10)
Suspicious script has been detected (Obfuscation:script) - 1count
(11)
CAB File Signatures - 1count
Public Link :
http://zerocert.org/?code=a40487692ffbdd5183987c9317d113e78f953361dc346b493a9dbaf5f872ca9f*Latest detected Domain- 이 사이트는 최근 90일 동안 악성URL 삽입된 적이 없습니다.
- 이 사이트는 최근 90일 동안 악성코드 중개 역할한 적이 없습니다.
- 이 사이트는 최근 90일 동안 악성코드를 유포한 적이 없습니다.
- Relation domain not found
- same Domain not found
http://global21.co.kr/js/main.js
-> Suspicious script has been detected (http://)
-> user cookie check
-> Suspicious script has been detected (JS/Redirector)
[unescape] http://www.kiznmom.co.kr/h/index.html -> Malware url
[Location] http://www.kiznmom.co.kr
-> user information check
-> user cookie check
-> user tracking code (acecounter.com)
[swf] http://www.kiznmom.co.kr/img/menu.swf -> Offline?
[swf] http://www.kiznmom.co.kr/img/main_roll.swf -> Offline?
[swf] http://www.kiznmom.co.kr/img/main_video.swf -> Offline?
[swf] http://www.kiznmom.co.kr/img/main_ban.swf -> Offline?
[script(*)] http://fs.bizspring.net/fs4/bstrk.js
[script] http://weblog2.josuk.co.kr/stat_js.jsp?sitenum=2
-> user information check
-> user cookie check
[script] http://www. -> Offline?
[script] http://weblog2.josuk.co.kr/stat.jsp?sitenum= -> Offline
[script] http://www.kiznmom.co.kr/include/vizenweblog.js
-> user information check
-> user cookie check
[script] http://nweblog.vizensoft.com/main.vs?cururl=
-> Suspicious url(NULL)
[script] http://wcs.naver.net/wcslog.js
-> user cookie check
[script] http://www.kiznmom.co.kr/include/Function.js
-> user cookie check
[script] http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,0,0
-> Suspicious url(NULL)
[Location] http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
-> (-) 1bc41c31c386ab0f6da51e7498e8e1da
-> CAB File Signatures
[script] http://www.macromedia.com/go/getflashplayer
-> Suspicious url(NULL)
[Location] http://get.adobe.com/flashplayer
[Location] http://get.adobe.com/flashplayer/
[script] http://www.googleadservices.com/pagead/conversion.js
-> user information check
[script] http://astg.widerplanet.com/js/wp_astg_4.0.js
[script] http://data.neoebiz.co.kr/cdata.php?reData=53566
-> user cookie check
[script] http://www.kiznmom.co.kr/include/menu.js
[script] http://josuk.co.kr/obesity/index.jsp
[script] http://josuk.co.kr/precocious/index.jsp
[script] http://josuk.co.kr/growth/index.jsp
[script] http://josuk.co.kr/
-> user information check
-> user cookie check
-> user tracking code (acecounter.com)
[swf] http://josuk.co.kr/img/main_video_flash.swf -> Offline?
[swf] http://josuk.co.kr/img/main_center_flash.swf
[swf] http://josuk.co.kr/img/menu.swf -> Offline?
[swf] http://josuk.co.kr/img/main_visual.swf -> Offline?
[swf] http://josuk.co.kr/img/self_test.swf -> Offline?
[swf] http://josuk.co.kr/img/quick.swf -> Offline?
[script] http://weblog2.josuk.co.kr/stat_js.jsp?sitenum=1
-> user information check
-> user cookie check
[script] http://josuk.co.kr/include/vizenweblog.js
-> user information check
-> user cookie check
[script] http://josuk.co.kr/include/Function.js
-> user cookie check
[applet] http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=9,0,28,0
[script] http://josuk.co.kr/include/menu.js
[script] http://josuk.co.kr/include/jquery-1.8.3.min.js
[script] http://josuk.co.kr/include/skdslider.js
[script] http://www.kiznmom.co.kr/include/jquery-1.8.3.min.js
[script] http://www.kiznmom.co.kr/include/skdslider.js
[script] http://dandywebsolution.com/skdslider
[Location] http://dandywebsolution.com/skdslider/
[script] http://code.jquery.com/jquery.js
[script] http://dandywebsolution.com/skdslider/src/skdslider.min.js
[script] http://pagead2.googlesyndication.com/pagead/show_ads.js
[script] http://gtp9.acecounter.com:8080/?uid=AH6A40889067968&je=n&
[script] http://gtp13.acecounter.com:8080/?uid=AB4A36641447672&je=n&
[script] http://ssl.logger.co.kr/tracker.tsp?u=33829&js=N
-> Suspicious url(NULL)
[script] http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd -> Offline?
[script] http://www.w3.org/1999/xhtml
[Location] http://www.w3.org/1999/xhtml/
[script] http://goto.kakao.com/@키즈평촌
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%C5%B0%EF%BF%BD%EF%BF%BD%EF%BF%BD%EF%BF%BD -> Offline
[script] http://goto.kakao.com/@키즈수원
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%C5%B0%EF%BF%BD%EF%BF%BD%EF%BF%BD -> Offline
[script] http://goto.kakao.com/@키즈강남
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%C5%B0%EF%BF%BD%EE%B0%AD%EF%BF%BD%EF%BF%BD -> Offline
[script] http://fs.bizspring.net -> Offline
[script] http://blog.naver.com/kiznmom3636
[Location] http://blog.naver.com/PostList.nhn?blogId=kiznmom3636&widgetTypeCall=true&topReferer=http%3A%2F%2Fwww.kiznmom.co.kr
[script] http://t.static.blog.naver.net/mylog/versioning//common/js/global/RemoveSubDomain-dea9950.js
[script] http://t.static.blog.naver.net/mylog/versioning/Jindo152-363950062.js
-> user information check
-> user cookie check
[script] http://t.static.blog.naver.net/mylog/versioning/LayoutTopCommon-730083628.js
-> user information check
[swf] http://blog.naver.com/post/editor/slide_photo/swf/motionPhoto.swf
[swf] http://t.static.blog.naver.net/post/editor/slide_photo/swf/motionPhoto.swf
[frame] http://blog.naver.com/post/editor/slide_photo/swf/motionPhoto.swf?c=0&m=
[frame] http://t.static.blog.naver.net/post/editor/slide_photo/swf/motionPhoto.swf?c=0&m=
[applet] http://t.static.blog.naver.net/mylog/versioning/+t+
[script] http://t.static.blog.naver.net/mylog/versioning/JindoComponent-318925938.js
-> user information check
[applet] http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=9,0,0,0
[script] http://static.gn.naver.net/template/gnb_quirks_euckr.nhn?20160909
-> user information check
[script] http://t.static.blog.naver.net/mylog/versioning/PostTopCommon-154469358.js
-> user information check
[applet] http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=8,0,0,0
[script] http://spi.naver.net/js/release/ko_EUC-KR/splugin.js?20160909
-> user information check
[script] http://me.naver.com/tab/bookmark.nhn
[script] http://gn.naver.com
[script] http://bookmark.naver.com/getRichMailTmpl.ajax?sourceUrl=
[script] http://me2do.naver.com
[script] http://relation.commcast.naver.com
[script] http://bookmark.naver.com
[script] http://mail.naver.com/write/tmpl
[script] http://cafe.naver.com/CafeScrapView.nhn
[script] http://blog.naver.com/ScrapForm.nhn
[script] http://plugin.me2day.net/v1/me2post/create_post_form.nhn
[script] http://yozm.daum.net/api/popup/prePost
[script] http://memo.naver.com/plugin/view.nhn
[script] http://webmsg.naver.com/api/send_url.php
[script] http://www.band.us/plugin/share
[script] http://post.naver.com/post/share.nhn
[script] http://dev.pholar.co/spi/rephol
[script] http://www.pholar.co/spi/rephol
[script] http://social.naver.com/v/click
[script] http://social.naver.com/v/finish
[script] http://spi.naver.net/css/20160817/spi_standard_20160817.css
[script] http://spi.naver.net/css/20160817/spi_standard_euckr_20160817.css
[script] http://dev.spi.naver.net
[script] http://dev.spi.naver.com
[script] http://spi.naver.net
[script] http://spi.naver.com
[script] http://me.naver.com/
[script] http://t.static.blog.naver.net/mylog/versioning/PostBottomCommon-680764359.js
-> user information check
-> user cookie check
[script] http://blogimgs.naver.com/blog20/blog/layout_photo/viewer2/
[script] http://music.naver.com/lyric/index.nhn?trackId=
[script] http://t.static.blog.naver.net/mylog/versioning/PostBottomCommon_utf8-169531666.js
[script] http://openapi.map.naver.com/openapi/openapi_v23.js
-> Suspicious script has been detected (Obfuscation:script)
-> Suspicious script has been detected (eval/fromCharCode)
-> user information check
-> user cookie check
[script] http://static.naver.net
[script] http://www.w3.org/TR/SVG11/feature#BasicStructure
[script] http://www.w3.org/2000/svg
[script] http://www.w3.org/2000/xmlns/
[script] http://www.w3.org/1999/xlink
[script] http://mashup.map.naver.net/mashupmap/tile
[script] http://onetile.map.naver.net/get
[script] http://onetile
[script] http://nc.onetile
[script] http://rts1.map.naver.net/rts/wmts?request=GetLastVersion
[script] http://mapview.naver.com/view
[script] http://api2.map.naver.com/traffic/trafficUpdateTime.nhn
[script] http://www.openstreetmap.org/copyright
[script] http://map.naver.com
[script] http://onetile.map.naver.net
[script] http://map.naver.com/?menu=location&mapMode=0&fsky=on&fpoi=off&enc=b64
[write] http://openapi.map.naver.com/openapi/http:///,
[script] http://blog.like.naver.com/static/js/likeIt.list.js?v=20160909
-> user information check
-> user cookie check
[script] http://t.static.blog.naver.net/mylog/versioning//common/js/flash/allowSwfForChrome-7dd9772.js
-> user information check
[script] http://t.static.blog.naver.net/mylog/versioning/LayoutBottomCommon-477160015.js
-> user information check
[script(*)] http://blogimgs.naver.net/nblog/mylog/library/w_noimg_{=material.postLiClass}.gif
[script] http://creativecommons.org/licenses/
[script] http://itemimgs.naver.com/outlinefont/53/82/3028253_12.eot
[script] http://itemimgs.naver.com/outlinefont/39/10/2821039_12.eot
[script] http://itemimgs.naver.com/outlinefont/73/37/1003773_10.eot
[script] http://itemimgs.naver.com/outlinefont/65/42/994265_10.eot
[script] http://blog.naver.com/PostView.nhn?blogId=kiznmom3636&logNo=220033197543
[script] http://t.static.blog.naver.net/mylog/versioning/PostViewBottom-372118386.js
[Location] http://blog.naver.com/NBlogHidden.nhn?blogId=kiznmom3636&musicYN=false
[frame] http://blog.naver.com/blogMusicOwnList.nhn?blogId=kiznmom3636
[script] http://t.static.blog.naver.net/mylog/versioning/Hidden-597428542.js
-> user information check
-> user cookie check
[script] http://t.static.blog.naver.net/mylog/versioning/MusicPlayer-531911633.js
-> user information check
[applet] http://t.static.blog.naver.net/mylog/versioning/+y+
[script] http://t.static.blog.naver.net/mylog/versioning/Frameset-981964519.js
-> user information check
-> user cookie check
[script] http://blog.rss.naver.com/kiznmom3636.xml
[script] http://blog.naver.com/NBlogWlwLayout.nhn?blogId=kiznmom3636
[script] http://blog.naver.com
[script] http://www.josuk.co.kr/
-> user information check
-> user cookie check
-> user tracking code (acecounter.com)
[swf] http://www.josuk.co.kr/img/main_video_flash.swf -> Offline?
[swf] http://www.josuk.co.kr/img/main_center_flash.swf
[swf] http://www.josuk.co.kr/img/menu.swf -> Offline?
[swf] http://www.josuk.co.kr/img/main_visual.swf -> Offline?
[swf] http://www.josuk.co.kr/img/self_test.swf -> Offline?
[swf] http://www.josuk.co.kr/img/quick.swf -> Offline?
[script] http://www.josuk.co.kr/include/vizenweblog.js
-> user information check
-> user cookie check
[script] http://www.josuk.co.kr/include/Function.js
-> user cookie check
[script] http://www.josuk.co.kr/include/menu.js
[script] http://www.josuk.co.kr/include/jquery-1.8.3.min.js
[script] http://www.josuk.co.kr/include/skdslider.js
[script] http://gtp14.acecounter.com:8080/?uid=AH1A40889567973&je=n&
[script] http://gtp12.acecounter.com:8080/?uid=AB3A36641447671&je=n&
[script] http://ssl.logger.co.kr/tracker.tsp?u=33828&js=N
-> Suspicious url(NULL)
[script] http://kiznmom.vizensoft.com/cure/after/read.jsp?reqPageNo=3&no=23&searchHospitalFK=0&searchClinicFK=0&stype=&sval= -> Offline
[script] http://www.kiznmom.co.kr/
-> user information check
-> user cookie check
-> user tracking code (acecounter.com)
[script] http://www.eyekiz.co.kr/
-> user cookie check
-> user tracking code (acecounter.com)
[swf] http://www.eyekiz.co.kr/img/m_care.swf -> Offline?
[script] http://www.eyekiz.co.kr/include/Function.js
-> user cookie check
[script] https://ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
-> user information check
[script] http://www.eyekiz.co.kr/script/jquery.localscroll-1.2.7-min.js
[script] http://www.eyekiz.co.kr/script/jquery.scrollTo-1.4.2-min.js
[script] http://www.eyekiz.co.kr/script/jquery.inview.js
[script] http://www.eyekiz.co.kr/include/menu.js
[script] http://www.kiz-mom.co.kr
[Location] http://kiz-mom.aoe.kr
[script] http://www.eyekiz.co.kr/include/common.js
[script] http://weblog2.eyekiz.co.kr/stat_js.jsp?sitenum=1
-> user information check
-> user cookie check
[script] http://www.eyekiz.co.kr/include/vizenweblog.js
-> user information check
-> user cookie check
[script] http://www.eyekiz.co.kr/include/prototype.js
-> user information check
[script] http://www.eyekiz.co.kr/include/skdslider.js
[script] http://gtp5.acecounter.com:8080/?uid=AB1A39043559424&je=n&
[script] http://gtp15.acecounter.com:8080/?uid=AH2A40889567974&je=n&
[script] http://goto.kakao.com/@키즈강남
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%ED%82%A4%EC%A6%88%EA%B0%95%EB%82%A8
-> user information check
[script] https://spi.maps.daum.net/imap/map_js_init/v3.js
[script] http://pf.kakaocdn.net/public/javascripts/zepto-1.1.1.min.js
[script] http://pf.kakaocdn.net/public/javascripts/jquery.fastbutton.js
[script] https://developers.kakao.com/sdk/js/kakao.min.js
[script] http://pf.kakaocdn.net/public/javascripts/kakao.link.js
[script] http://plus.kakao.com/home/@키즈강남
[script] http://itunes.apple.com/app/id486244601
[script] http://map.daum.net/link/map/키즈앤맘한의원
[script] http://map.daum.net/link/to/키즈앤맘한의원
[script] http://goto.kakao.com/@키즈수원
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%ED%82%A4%EC%A6%88%EC%88%98%EC%9B%90
-> user information check
[script] http://plus.kakao.com/home/@키즈수원
[script] http://goto.kakao.com/@키즈안양
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%ED%82%A4%EC%A6%88%EC%95%88%EC%96%91
-> user information check
[script] http://plus.kakao.com/home/@키즈안양
[script] http://map.daum.net/link/map/키즈앤맘
[script] http://map.daum.net/link/to/키즈앤맘
[script] http://goto.kakao.com/@키즈평촌
-> Suspicious url(NULL)
[Location] http://plus.kakao.com/home/%40%ED%82%A4%EC%A6%88%ED%8F%89%EC%B4%8C
-> user information check
[script] http://plus.kakao.com/home/@키즈평촌
[script] http://www.josuk.co.kr
-> user information check
-> user cookie check
-> user tracking code (acecounter.com)
*Country
unknown
*Whois
query : global21.co.kr
# KOREAN(UTF8)
도메인이름 : global21.co.kr
등록인 : (주)글로벌21
등록인 주소 : 서울특별시 강남구 논현로76길 24 신한빌딩 3층
등록인 우편번호 : 06224
책임자 : (주)글로벌21
책임자 전자우편 : kslee@global21.co.kr
책임자 전화번호 : 02-6365-5187
등록일 : 1999. 10. 18.
최근 정보 변경일 : 2025. 01. 22.
사용 종료일 : 2025. 10. 18.
정보공개여부 : Y
등록대행자 : (주)아이네임즈(http://www.inames.co.kr)
DNSSEC : 미서명
1차 네임서버 정보
호스트이름 : ns1.uhost.co.kr
IP 주소 : 202.31.187.220
2차 네임서버 정보
호스트이름 : ns2.uhost.co.kr
IP 주소 : 219.251.156.14
네임서버 이름이 .kr이 아닌 경우는 IP주소가 보이지 않습니다.
# ENGLISH
Domain Name : global21.co.kr
Registrant : global21
Registrant Address : , 24 Nonhyeon-ro 76-gil Gangnam-gu, Seoul, KR
Registrant Zip Code : 06224
Administrative Contact(AC) : global21
AC E-Mail : kslee@global21.co.kr
AC Phone Number : 02-6365-5187
Registered Date : 1999. 10. 18.
Last Updated Date : 2025. 01. 22.
Expiration Date : 2025. 10. 18.
Publishes : Y
Authorized Agency : Inames Co., Ltd.(http://www.inames.co.kr)
DNSSEC : unsigned
Primary Name Server
Host Name : ns1.uhost.co.kr
IP Address : 202.31.187.220
Secondary Name Server
Host Name : ns2.uhost.co.kr
IP Address : 219.251.156.14
- KISA/KRNIC WHOIS Service -
*Reference
VIRUSTOTAL :
domain | ip | hash url | hash file
Google SafeBrowsing(GSB) :
URLVoid :
domain Malware Domain List :
domain SCUMWARE :
domain | ip
Project Honey Pot : ip
Ransomware Tracker :
domain Threat Crowd :
domain | ip | hash file
ZeroCERT Safeguard :
domain | ip
*etc
Stopbadware |
Norton Safe |
McAfee siteadvisor |
Phish tank |
Tcpiputils
[Info] Changing api service domain address (center.zerocert.org -> cert.zero.camp),
