Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=telmeyes.tk
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: telmeyes.tk
Result:
HTTP/1.1 203 Non-Authoritative Information
Cache-Control: no-cache
Connection: close
Date: Thu, 18 Dec 2014 12:32:27 GMT
Pragma: no-cache
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Length: 643
Content-Type: text/html;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=E1143025F81BDA66EA59F55D783A2E41; Path=/; HttpOnly
X-Server: 55ba8cb8e560
...643 bytes of data.
GET / HTTP/1.1
Host: telmeyes.tk
Result:
HTTP/1.1 203 Non-Authoritative Information
Cache-Control: no-cache
Connection: close
Date: Thu, 18 Dec 2014 12:32:27 GMT
Pragma: no-cache
Server: nginx/1.6.2
Vary: Accept-Encoding
Content-Length: 643
Content-Type: text/html;charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: JSESSIONID=E1143025F81BDA66EA59F55D783A2E41; Path=/; HttpOnly
X-Server: 55ba8cb8e560
...643 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: telmeyes.tk
Referer: http://www.google.com/search?q=telmeyes.tk
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: telmeyes.tk
Referer: http://www.google.com/search?q=telmeyes.tk
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://telmeyes.tk/ | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Thu, 18 Dec 2014 12:32:27 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 643 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=E1143025F81BDA66EA59F55D783A2E41; Path=/; HttpOnly X-Server: 55ba8cb8e560 | clean |
http://domain.dot.tk/p/?d=telmeyes.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1418905947081 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 12:32:27 GMT Location: http://fn.hgin.com/&_=1418905947 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1418905947 | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Dec 2014 12:32:27 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
http://a6shd.realshieldlinked.com/?kw=fn | HTTP/1.1 302 Moved Temporarily Connection: Close Date: Thu, 18 Dec 2014 12:32:28 GMT Location: http://fsZzz.reward-zone.partnerholiday.xyz/?sov=265069507&hid=gyukmkmsoqgyukw&redid=6201&id=XNSX.-r6201 Server: nginx/1.2.8 Content-Length: 0 Content-Type: text/html X-Powered-By: PHP/5.3.23 | clean |
http://fszzz.reward-zone.partnerholiday.xyz/?sov=265069507&hid=gyukmkmsoqgyukw&redid=6201&id=xnsx.-r6201 | 200 OK Content-Length: 12363 Content-Type: text/html | clean |
http://fszzz.reward-zone.partnerholiday.xyz/terms/privacy.html | 200 OK Content-Length: 24258 Content-Type: text/html | clean |
http://ajax.googleapis.com/ajax/libs/jquery/1.4/jquery.min.js | 200 OK Content-Length: 78601 Content-Type: text/javascript | clean |
http://fszzz.reward-zone.partnerholiday.xyz/templates/_common/footer_links/js/script.js | 200 OK Content-Length: 5674 Content-Type: application/javascript | clean |
http://fszzz.reward-zone.partnerholiday.xyz//translate.google.com/translate_a/element.js?cb=googleTranslateElementInit/ | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://fszzz.reward-zone.partnerholiday.xyz/test404page.js | 404 Not Found Content-Length: 570 Content-Type: text/html | clean |
http://telmeyes.tk/terms/terms.html | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Thu, 18 Dec 2014 12:32:32 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 643 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=1470D6C15ED2C240C3C06D2D645847E4; Path=/; HttpOnly X-Server: 07b82bdab66d | clean |
http://domain.dot.tk/p/?d=telmeyes.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1418905952893 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 12:32:32 GMT Location: http://freedomains4all.tk/?&_=1418905953 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://freedomains4all.tk/?&_=1418905953 | 200 OK Content-Length: 1019 Content-Type: text/html | clean |
http://telmeyes.tk/terms/aboutus.html | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Thu, 18 Dec 2014 12:32:34 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 643 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=A6BAC2489A80463F617B6C2B2F278D60; Path=/; HttpOnly X-Server: b8979afdc0e2 | clean |
http://domain.dot.tk/p/?d=telmeyes.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1418905954068 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 12:32:34 GMT Location: http://fn.hgin.com/&_=1418905954 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1418905954 | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Dec 2014 12:32:34 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
http://telmeyes.tk/terms/privacy.html | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Thu, 18 Dec 2014 12:32:35 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 643 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=E3FB16DFB2CEBEFB4345EB9B4C07E812; Path=/; HttpOnly X-Server: b8979afdc0e2 | clean |
http://domain.dot.tk/p/?d=telmeyes.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1418905955047 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 12:32:35 GMT Location: http://fn.hgin.com/&_=1418905955 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1418905955 | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Dec 2014 12:32:35 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |
http://telmeyes.tk//reward-zone.partnerholiday.xyz/admin_config/ | HTTP/1.1 203 Non-Authoritative Information Cache-Control: no-cache Connection: close Date: Thu, 18 Dec 2014 12:32:35 GMT Pragma: no-cache Server: nginx/1.6.2 Vary: Accept-Encoding Content-Length: 643 Content-Type: text/html;charset=UTF-8 Expires: Thu, 01 Jan 1970 00:00:00 GMT Set-Cookie: JSESSIONID=DD7FB4AD3FE73E2575812B9A6034F3D1; Path=/; HttpOnly X-Server: 6b65d25cc0d6 | clean |
http://domain.dot.tk/p/?d=telmeyes.tk&i=78.158.11.226&c=370&ro=0&ref=unknown&_=1418905955956 | HTTP/1.1 301 Moved Permanently Connection: close Date: Thu, 18 Dec 2014 12:32:36 GMT Location: http://fn.hgin.com/&_=1418905956 Server: Apache/1.3.41 (Unix) mod_perl/1.30 Content-Length: 0 Content-Type: text/html; charset=ISO-8859-1 | clean |
http://fn.hgin.com/&_=1418905956 | HTTP/1.1 302 Found Connection: close Date: Thu, 18 Dec 2014 12:32:36 GMT Location: http://a6shd.realshieldlinked.com/?kw=fn Server: Apache/2.2.15 (CentOS) Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Powered-By: PHP/5.3.3 | clean |