Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=getyourownjob.tk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://getyourownjob.tk/ | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Sun, 18 Jan 2015 11:05:13 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 658 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=EFE0E22D774CC27A23790B24A1522C3F; Path=/; HttpOnly X-Server: 9a65da567311 | clean |
http://domain.dot.tk/p/?d=getyourownjob.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1421579113701 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 18 Jan 2015 11:05:13 GMT Location: http://sp3.yousee.com/?dm=GETYOUROWNJOB.TK&acc=c769628d-4248-4e14-d7d6-d4e06559f7f3&_=1421579114 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://sp3.yousee.com/?dm=getyourownjob.tk&acc=c769628d-4248-4e14-d7d6-d4e06559f7f3&_=1421579114 | 200 OK Content-Length: 13143 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: getyourownjob.tk ...[867 bytes skipped]... r{ text-decoration:underline;} .boxbg { background-color: #000; border: 1px solid #303030; } </style> <script type="text/javascript">var gl={trackingurl:'http://sp3.yousee.com/tracking.php',searchurl:'http://sp3.yousee.com/index.php',relatedsearch:'Related Search',searchbutton:'Search',ckurl:'',cdn:'http://a1.dnbizcdn.com/'};var req={ps:["afd","bd3"],adtest:'off',dm:'getyourownjob.tk',fdm:'getyourownjob.tk',landerid:323,buy:true,adultallowed:true,cusbuy:'<span class="buy"> </span>',contactinfo:'',partner:'afd',dks:['注åä¸æµ·å ¬å¸','ä¸å½é建 ','ä¸å½ç¦å©å½©ç¥¨åè²çé¢æµ ','æ²»çååè ºçè¦å å¤é±','æ²»çä¾¿ç§ ','å¾å© ','è²è¥ç','çä¼½åè¥ ','ä¹è ','å»é¢ ','é³ç¿æ©æ³ ','ä¼é²å ','æ 纺å¸ææè¢','æ 纺å¸èå¿è¢','æèµ','åè²çé¢æµç½','åè²çéå·æå·§ ','è¾åµç®¡ä¸é ','ç¦ ...[2746 bytes skipped]... | ||
http://www.google.com/adsense/domains/caf.js | 200 OK Content-Length: 288 Content-Type: text/javascript | clean |
http://getyourownjob.tk/js/parking_caf_281_1409192.js | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Sun, 18 Jan 2015 11:05:15 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 658 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=6FDA7BC612360D959E7F313B39BEB706; Path=/; HttpOnly X-Server: 2ba43aed9191 | clean |
http://domain.dot.tk/p/?d=getyourownjob.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1421579115350 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 18 Jan 2015 11:05:15 GMT Location: http://fn.hgin.com/&_=1421579115 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1421579115 | HTTP/1.1 302 Found Connection: close Date: Sun, 18 Jan 2015 11:05:16 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
http://a6shd.realshieldlinked.com/?kw=fn | HTTP/1.1 302 Moved Temporarily Connection: Close Date: Sun, 18 Jan 2015 11:05:16 GMT Location: http://mWfzz.reward-zone.classkitten.country/?sov=265069507&hid=dnjdpfvpjjnnh&redid=6201&id=XNSX.-r6201 Server: nginx/1.2.8 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.23 | clean |
http://mwfzz.reward-zone.classkitten.country/?sov=265069507&hid=dnjdpfvpjjnnh&redid=6201&id=xnsx.-r6201 | 200 OK Content-Length: 12365 Content-Type: text/html | clean |
http://mwfzz.reward-zone.classkitten.country/terms/privacy.html | 200 OK Content-Length: 24260 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: text/javascript | clean |
http://mwfzz.reward-zone.classkitten.country/templates/_common/footer_links/js/script.js | 200 OK Content-Length: 5674 Content-Type: application/javascript | clean |
http://mwfzz.reward-zone.classkitten.country//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://mwfzz.reward-zone.classkitten.country/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://getyourownjob.tk/js/terms/terms.html | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Sun, 18 Jan 2015 11:05:21 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 658 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=B58B24DC8D385C4B1D098A654E11B769; Path=/; HttpOnly X-Server: 9a65da567311 | clean |
http://domain.dot.tk/p/?d=getyourownjob.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1421579121199 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 18 Jan 2015 11:05:21 GMT Location: http://fn.hgin.com/&_=1421579122 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1421579122 | HTTP/1.1 302 Found Connection: close Date: Sun, 18 Jan 2015 11:05:22 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
http://getyourownjob.tk/js/terms/aboutus.html | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Sun, 18 Jan 2015 11:05:22 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 658 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=600A904FD8E33567A0F38A69C16D42CF; Path=/; HttpOnly X-Server: 9a65da567311 | clean |
http://domain.dot.tk/p/?d=getyourownjob.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1421579122518 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 18 Jan 2015 11:05:22 GMT Location: http://sp3.yousee.com/?dm=GETYOUROWNJOB.TK&acc=c769628d-4248-4e14-d7d6-d4e06559f7f3&_=1421579122 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://sp3.yousee.com/?dm=getyourownjob.tk&acc=c769628d-4248-4e14-d7d6-d4e06559f7f3&_=1421579122 | 200 OK Content-Length: 13103 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: getyourownjob.tk ...[867 bytes skipped]... r{ text-decoration:underline;} .boxbg { background-color: #000; border: 1px solid #303030; } </style> <script type="text/javascript">var gl={trackingurl:'http://sp3.yousee.com/tracking.php',searchurl:'http://sp3.yousee.com/index.php',relatedsearch:'Related Search',searchbutton:'Search',ckurl:'',cdn:'http://a1.dnbizcdn.com/'};var req={ps:["afd","bd3"],adtest:'off',dm:'getyourownjob.tk',fdm:'getyourownjob.tk',landerid:323,buy:true,adultallowed:true,cusbuy:'<span class="buy"> </span>',contactinfo:'',partner:'afd',dks:['ç§ç¾','ä¸å½è¡å¸è¡æ ','ä¸å½ç¦å©å½©ç¥¨','æ´å½¢ç¾å®¹ ','éç»å¸½å','ææ ·æ³¨åå ¬å¸','æ©æé©å½ ','æ©æ','æç»éå° ','è±è¯å¹è® ','é¶æ','é´é紧缩ææ¯ ','é³è','ç¼ç§ ','å°æ·åè£ é¥°','ç½ç«å»ºè®¾ ','ç«ä¼¤ç¤ç ','åsåè¥ ','湿ç¹çç¶å¾ç ','ä¸åå¨ ','æ±½åç ','åç ...[2746 bytes skipped]... | ||
http://sp3.yousee.com/js/parking_caf_281_1409192.js | 200 OK Content-Length: 37952 Content-Type: application/x-javascript | clean |
http://getyourownjob.tk/js/terms/privacy.html | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Sun, 18 Jan 2015 11:05:26 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 658 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=037B085C7E83ED07D82829BD86084C61; Path=/; HttpOnly X-Server: 9a65da567311 | clean |
http://domain.dot.tk/p/?d=getyourownjob.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1421579126990 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 18 Jan 2015 11:05:27 GMT Location: http://sp3.yousee.com/?dm=GETYOUROWNJOB.TK&acc=c769628d-4248-4e14-d7d6-d4e06559f7f3&_=1421579127 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://sp3.yousee.com/?dm=getyourownjob.tk&acc=c769628d-4248-4e14-d7d6-d4e06559f7f3&_=1421579127 | 200 OK Content-Length: 13099 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: getyourownjob.tk ...[867 bytes skipped]... r{ text-decoration:underline;} .boxbg { background-color: #000; border: 1px solid #303030; } </style> <script type="text/javascript">var gl={trackingurl:'http://sp3.yousee.com/tracking.php',searchurl:'http://sp3.yousee.com/index.php',relatedsearch:'Related Search',searchbutton:'Search',ckurl:'',cdn:'http://a1.dnbizcdn.com/'};var req={ps:["afd","bd3"],adtest:'off',dm:'getyourownjob.tk',fdm:'getyourownjob.tk',landerid:323,buy:true,adultallowed:true,cusbuy:'<span class="buy"> </span>',contactinfo:'',partner:'afd',dks:['è´å¯ä¿¡æ¯ ','æ´å½¢ç¾å®¹ ','ææ ·å»é¤éæ ','çä¼½åè¥ ','è±è¯ ','é³è','æ 纺å¸ä»·æ ¼','æ 纺å¸å','æèµåä¸ ','æ¾ä¸ç©ºè° ','åè²çéå· ','è¾åµç®¡é å½± ','ææºå®ä½ç³»ç» ','æ½æ°´æ³µ ','ç®è¤ç ','æ¯å移æ¤å»é¢','æä¸æº ','ç¤ç·ç ','æ¢çå¨','ç¯ä¿è¢å°å·','çèæä¹ ...[2746 bytes skipped]... | ||
http://getyourownjob.tk//reward-zone.classkitten.country/admin_config/ | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Sun, 18 Jan 2015 11:05:27 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 658 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=6E3712801DA588CED520F47A7CB96B9E; Path=/; HttpOnly X-Server: 2ba43aed9191 | clean |
http://domain.dot.tk/p/?d=getyourownjob.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1421579127736 | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 18 Jan 2015 11:05:27 GMT Location: http://fn.hgin.com/&_=1421579127 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1421579127 | HTTP/1.1 302 Found Connection: close Date: Sun, 18 Jan 2015 11:05:28 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: getyourownjob.tk
Result:
HTTP/1.1 203 Non-Authoritative Information
Cache-Control: no-cache
Connection: close
Date: Sun, 18 Jan 2015 11:05:13 GMT
Pragma: no-cache
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Length: 658
Content-Type: text/html;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=EFE0E22D774CC27A23790B24A1522C3F; Path=/; HttpOnly
X-Server: 9a65da567311
...658 bytes of data.
GET / HTTP/1.1
Host: getyourownjob.tk
Result:
HTTP/1.1 203 Non-Authoritative Information
Cache-Control: no-cache
Connection: close
Date: Sun, 18 Jan 2015 11:05:13 GMT
Pragma: no-cache
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Length: 658
Content-Type: text/html;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=EFE0E22D774CC27A23790B24A1522C3F; Path=/; HttpOnly
X-Server: 9a65da567311
...658 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: getyourownjob.tk
Referer: http://www.google.com/search?q=getyourownjob.tk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: getyourownjob.tk
Referer: http://www.google.com/search?q=getyourownjob.tk
Result:
The result is similar to the first query. There are no suspicious redirects found.