Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=ohmyearth.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://ohmyearth.com/ | HTTP/1.1 302 Found Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Connection: close Date: Wed, 20 May 2015 01:44:05 GMT Pragma: no-cache Location: /main/index.html Server: nginx Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT P3P: CP='NOI CURa ADMa DEVa TAIa OUR DELa BUS IND PHY ONL UNI COM NAV INT DEM PRE' Set-Cookie: PHPSESSID=5e3972a1f20ab53f1e9a28d663707f5d; path=/ Set-Cookie: rbUser=MTQzMjA4NjI0NTc3OTk%3D; expires=Thu, 21-May-2015 01:44:05 GMT; path=/ Set-Cookie: rankup_log_start=true; expires=Wed, 20-May-2015 02:14:05 GMT; path=/ X-Powered-By: PHP/5.2.9p2 | clean |
http://ohmyearth.com/main/index.html | 200 OK Content-Length: 47678 Content-Type: text/html | suspicious |
Hidden iFrame found. size: 0x0 src: http://www.2putting.co.kr/upload/pyp/index.html <iframe src=http://www.2putting.co.kr/upload/pyp/index.html width=0 height=0> Hidden iFrame found. size: 0x0 src: http://www.nnovita.co.kr/nshop/upload/x/m.html <iframe src=http://www.nnovita.co.kr/nshop/upload/x/m.html width=0 height=0> Hidden iFrame found. size: 100x0 src: http://intra.cyts.co.kr/board/m.html <iframe src=http://intra.cyts.co.kr/board/m.html width=100 height=0> | ||
http://ohmyearth.com/rankup_module/rankup_board/rankup_board.js | 200 OK Content-Length: 26335 Content-Type: application/javascript | clean |
http://ohmyearth.com/Libs/_js/rankup_tab.js | 200 OK Content-Length: 2141 Content-Type: application/javascript | clean |
http://goo.gl/AyGFr | HTTP/1.1 301 Moved Permanently Cache-Control: no-cache, no-store, max-age=0, must-revalidate Connection: close Date: Wed, 20 May 2015 01:44:11 GMT Pragma: no-cache Accept-Ranges: none Location: http://google.syjang.com:11000/jquery.min.js Server: GSE Vary: Accept-Encoding Content-Type: text/html; charset=UTF-8 Expires: Fri, 01 Jan 1990 00:00:00 GMT Alternate-Protocol: 80:quic,p=1 X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block | clean |
http://google.syjang.com:11000/jquery.min.js | 500 Can't connect to google.syjang.com:11000 (ÐÐµÑ Ð¼Ð°ÑÑÑÑÑа до Ñзла) Content-Length: 220 Content-Type: text/plain | clean |
http://google.syjang.com:11000/test404page.js | 500 Can't connect to google.syjang.com:11000 (ÐÐµÑ Ð¼Ð°ÑÑÑÑÑа до Ñзла) Content-Length: 220 Content-Type: text/plain | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: ohmyearth.com
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 20 May 2015 01:44:05 GMT
Pragma: no-cache
Location: /main/index.html
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: CP='NOI CURa ADMa DEVa TAIa OUR DELa BUS IND PHY ONL UNI COM NAV INT DEM PRE'
Set-Cookie: PHPSESSID=5e3972a1f20ab53f1e9a28d663707f5d; path=/
Set-Cookie: rbUser=MTQzMjA4NjI0NTc3OTk%3D; expires=Thu, 21-May-2015 01:44:05 GMT; path=/
Set-Cookie: rankup_log_start=true; expires=Wed, 20-May-2015 02:14:05 GMT; path=/
X-Powered-By: PHP/5.2.9p2
GET / HTTP/1.1
Host: ohmyearth.com
Result:
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Wed, 20 May 2015 01:44:05 GMT
Pragma: no-cache
Location: /main/index.html
Server: nginx
Content-Type: text/html
Expires: Thu, 19 Nov 1981 08:52:00 GMT
P3P: CP='NOI CURa ADMa DEVa TAIa OUR DELa BUS IND PHY ONL UNI COM NAV INT DEM PRE'
Set-Cookie: PHPSESSID=5e3972a1f20ab53f1e9a28d663707f5d; path=/
Set-Cookie: rbUser=MTQzMjA4NjI0NTc3OTk%3D; expires=Thu, 21-May-2015 01:44:05 GMT; path=/
Set-Cookie: rankup_log_start=true; expires=Wed, 20-May-2015 02:14:05 GMT; path=/
X-Powered-By: PHP/5.2.9p2
Second query (visit from search engine):
GET / HTTP/1.1
Host: ohmyearth.com
Referer: http://www.google.com/search?q=ohmyearth.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: ohmyearth.com
Referer: http://www.google.com/search?q=ohmyearth.com
Result:
The result is similar to the first query. There are no suspicious redirects found.