MalwareTips
Security Review

Is goojara.to legit or a scam?

Our verdict:Suspicious· 55/100

Unauthorized streaming portal with mixed reputation signals, no business registration, and reports of malicious activity in sandbox analysis.

Top reasons
Sandbox analysis detected malicious activity in 2024, indicating potential malware or exploit delivery.No legitimate business registration, company records, or official licensing found in any jurisdiction.Independent review aggregators flagged subdomains with low trust scores and scam warnings.
goojara.toScanned 2h ago
Post Facebook
0
Trust score
SUSPICIOUS
Heuristics 91·MT 40
Category tags
streamingpiracyunauthorized content#Fake Shop72% MT confidence

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
1/92
Engines flagged this URL
Domain Age
Registration date unknown
MT Intelligence
Suspicious
High likelihood · 72% confidence
SUSPICIOUS

Shop shows non-delivery red flags

Unauthorized streaming portal with mixed reputation signals, no business registration, and reports of malicious activity in sandbox analysis. Several red flags typical of non-delivery shops are present. Don't pay by crypto or wire, and keep the chargeback window in mind.

Website Preview

Screenshot of goojara.to
LIVE RENDER
goojara.to

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
High scam likelihoodengineMT · Guardiantrust40/100
MT AgentLive web researchVisual inspection
0%
Confidence
Goojara.to functions as an unauthorized streaming index site, not a legitimate licensed service. The domain is over 3 years old and hosted on Cloudflare, but lacks any official business registration or licensing. Our sandbox analysis flagged malicious activity in 2024, and independent review aggregators reported low trust scores and potential scam warnings on subdomains like ww1.goojara.to. However, other scanners returned clean results with high trust scores, and user reviews on consumer sites average 4–5 stars with reports of the service working but being unreliable. The site is widely discussed on Reddit as a popular piracy alternative, commonly associated with pop-ups, ad-blocker requirements, and frequent downtime. This mixed signal pattern—legitimate-looking user engagement alongside malware flags and zero business legitimacy—is typical of unauthorized streaming portals that operate in legal gray zones.
Full dossier
Analysis complete

Page Content

The page displays a movie and TV series browsing interface with titles like Mortal Kombat II, Project Hail Mary, and Avatar. The page title references 'Goojara.ch' despite the domain being goojara.to, and subdomains like ww1.goojara.to are used as mirrors. No contact email, phone, postal address, or social media links are present on the page. A request form directs users to an external domain (supernova.to) for content suggestions.

Infrastructure

Domain registered March 30, 2023 via Ascio Technologies Inc. (Denmark) and hosted on Cloudflare (IP 104.21.33.208). SSL certificate is valid and issued by Google Trust Services with 84 days to expiry. The hosting IP has zero abuse reports and a clean reputation score. One redirect hop crosses to an external domain.

Domain History

Over 3 years old as of 2026, placing it outside the typical ephemeral scam window. However, no legitimate business registration, company records, or official licensing was found in any jurisdiction. A LinkedIn profile claims a founder in Jamaica but remains unverified. The site is frequently referenced on Reddit (r/Piracy, r/Kenya, r/nairobitechies) as a popular but unreliable free streaming alternative.

Web Reputation

Conflicting signals: independent review aggregators reported low trust scores and flagged subdomains as potential scams; sandbox analysis detected malicious activity in 2024; one scanner (alphaMountain.ai) flagged the domain as suspicious. Conversely, other scanners returned 90/100 trust scores with zero detections, and consumer review sites show 4–5 star averages from multiple users. Users commonly report pop-ups, the need for ad blockers, and frequent downtime or shutdown cycles. The site is treated as a piracy streaming alternative rather than a legitimate licensed service.

Risk Factors
7
  • Sandbox analysis detected malicious activity in 2024, indicating potential malware or exploit delivery.
  • No legitimate business registration, company records, or official licensing found in any jurisdiction.
  • Independent review aggregators flagged subdomains with low trust scores and scam warnings.
  • Operates as an unauthorized streaming portal without licensing agreements with content creators or distributors.
  • Frequently associated with pop-ups, ad-blocker requirements, and reports of downtime or service shutdowns.
  • One antivirus engine (alphaMountain.ai) flagged the domain as suspicious.
  • Page lacks standard business contact information (email, phone, address) and social verification.
Positive Signals
5
  • Domain is over 3 years old, reducing likelihood of a short-lived scam operation.
  • Hosted on Cloudflare with valid SSL certificate and clean hosting-IP reputation (zero abuse reports).
  • Consumer review sites (an independent review aggregator, PissedConsumer) show 4–5 star average ratings from multiple users.
  • Some independent scanners returned high trust scores (90/100) with zero malware detections.
  • Widely discussed on Reddit and other forums as a functional (if unreliable) streaming service.
AI Recommendation
Do not enter payment information or personal credentials on this site. If you choose to use it for streaming, use a VPN, ad blocker, and antivirus software, and be aware that the service is unauthorized, frequently unreliable, and has been flagged for malicious activity. Consider using legitimate licensed streaming services instead.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for goojara.to, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Business registration
No public record found
Could not match the site to a registered company — common for small sites.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
3 scam reports · 4 complaints · 3 positive
Key findings
7 headline facts from open-web research
  • Domain goojara.to registered March 30, 2023 (over 3 years old as of 2026), hosted on Cloudflare, registrar Ascio Technologies Inc. (Denmark).
  • Site functions as a free unauthorized streaming portal for movies, TV series, and anime (often referenced alongside Soap2day); page title uses "Goojara.ch" and subdomains like ww1.goojara.to are common mirrors.
  • Frequently discussed on Reddit (r/Piracy, r/Kenya, r/nairobitechies) as a popular but unreliable free movie site with loading issues, pop-ups, and frequent downtime/shutdown reports.
  • Mixed scanner results: PCRisk gave 90/100 with 0/91 detections; Scamadviser gave 0 trust score and flagged as potential scam; ANY.RUN sandbox reported malicious activity in 2024.
  • Trustpilot shows 4-star average from 5 reviews; PissedConsumer 5.0 from 7 reviews with some complaints that "site hasn't worked for months."
  • No mainstream business registration or licensing found; associated with unofficial apps on Google Play and Apple Store that disclaim affiliation with the original site.
  • Users commonly report pop-ups and the need for ad blockers; site is treated as a piracy streaming alternative rather than a legitimate licensed service.
Scam reports (3)
Direct quotes from public scam databases, forums, and news.
  • Scamadviseropen

    "ww1.goojara.to has a very low trust score... we think the website may be a scam. Exercise extreme caution when using this website."

  • ANY.RUNopen

    "Malware analysis goojara.to... Verdict: Malicious activity."

  • Scamdocopen

    "Ww1.goojara.to reviews | Poor Trust Score: 25%"

Positive reviews (3)
Quotes indicating the site is legitimate.
  • Trustpilotopen

    "goojara.to's 4-star rating? Check out what 5 people have written so far"

  • PissedConsumeropen

    "Goojara to has 7 reviews (average rating 5.0). Consumers say: Good service"

  • PCRisk Scanneropen

    "90 / 100 Trust Score... No Threats Found... 0 of 91 engines flagged this website"

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Our research found conflicting signals. Independent review aggregators reported low trust scores and flagged subdomains like ww1.goojara.to as potential scams. Sandbox analysis detected malicious activity in 2024. However, consumer review sites (an independent review aggregator, PissedConsumer) show 4–5 star averages from multiple users, and some scanners returned high trust scores with zero detections. Reddit discussions (r/Piracy, r/Kenya, r/nairobitechies) confirm the site functions as a popular but unreliable free streaming portal, commonly associated with pop-ups, ad-blocker requirements, and frequent downtime. No legitimate business registration or licensing was found.

Antivirus Engines

Detection matrix · live
1 engine flagged this URL

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. Each detection is listed below by engine name — even a single hit is a meaningful signal.

0Malicious1Suspicious59Harmless92Engines
0
of 92
alphaMountain.ai
Suspicious· suspicious

1 antivirus engine flagged this URL. Even a single detection is a meaningful signal — treat this site with extra caution and avoid entering credentials, payment info, or downloading any files.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.

Domain & Encryption

Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerGoogle Trust Services · WE1
ExpiresSep 7, 2026 (84d)
Self-signedNo
Hosting & Technology
HostingCloudflare, Inc.
Server locationUS
Web servercloudflare
PopularityTop 100k worldwide

Redirect Chain

Hops
1
Cross-domain
Yes
Lookalike
No
Punycode
No
  • 1301http://goojara.to/
  • 2200https://ww1.goojara.to/cross-domain

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPCloudflare, Inc.
Usage typeContent Delivery Network

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Fake Shop
Fake Shop
Moderate likelihood
33/100
  • AI analyst tagged this as a fake shop.
  • No phone number or postal address anywhere on the page.
  • Multiple contact / trust-signal red flags on the page.

Fake-shop warning signs

Signals common to non-delivery scam shops were detected on this site.

  • Treat goojara.to as unverified

    Do not enter credentials or send money until you have independently verified the business.

  • If you already paid by card or PayPal — start a chargeback

    Contact your bank or card issuer and dispute the charge as "goods not received" or "merchant fraud." PayPal users can open a case in the Resolution Centre. Act within 120 days for card chargebacks in most jurisdictions.

  • Save every piece of evidence

    Screenshots of the checkout, order confirmation emails, any chat transcripts, and the product listing page. Chargeback and fraud reports go faster when you have receipts.

  • Report the shop

    Report to the FTC (reportfraud.ftc.gov), Action Fraud UK, or your local consumer-protection body. Post the URL on the MalwareTips scam forum so other buyers can find it.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
ListedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

supernova.tostatic.cloudflareinsights.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review marked goojara.to as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
  • goojara.to currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
  • Yes. goojara.to presents a valid TLSv1.3 certificate issued by Google Trust Services · WE1, expiring in 84 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • 1 out of 92 antivirus engines in our malware network flagged goojara.to as malicious or suspicious. Even one detection is a meaningful signal.
  • No. goojara.to is not currently listed on the major browser blocklist feeds that modern browsers use.
  • goojara.to resolves to an IP operated by Cloudflare, Inc. in US (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Yes. goojara.to sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.
  • This is a permanent record of the scan run on June 14, 2026. The verdict and evidence above reflect that scan and do not change on their own. If circumstances around goojara.to have changed, MalwareTips staff can run a fresh scan, which re-runs every check from scratch and publishes an updated report.

Final Verdict

0
Trust / 100
Final Verdict·goojara.to
SUSPICIOUS

Goojara.to is an unauthorized free streaming portal for movies, TV series, and anime with conflicting reputation signals—some scanners report malicious activity and low trust scores, while others show clean results and positive user reviews. The site operates without legitimate business registration and is frequently associated with pop-ups, downtime, and piracy.

Do not enter payment information or personal credentials on this site. If you choose to use it for streaming, use a VPN, ad blocker, and antivirus software, and be aware that the service is unauthorized, frequently unreliable, and has been flagged for malicious activity. Consider using legitimate licensed streaming services instead.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Suspicious reports

Browse all reports
Suspicioustrust62
primemediadxb.com
12m ago
Read the review
Suspicioustrust57
moviedom.live
14m ago
Read the review
Suspicioustrust48
yubit-vbgj.com
14m ago
Read the review
Suspicioustrust54
animixplay.to
1h ago
Read the review
Suspicioustrust64
skibbel.com
1h ago
Read the review
Suspicioustrust66
azlivedoctor.com
2h ago
Read the review
Suspicioustrust61
adescarger.net
2h ago
Read the review
Suspicioustrust70
addresx.com
2h ago
Read the review
Suspicioustrust51
fmoviess.org
2h ago
Read the review
Suspicioustrust48
dumpsterrentaltylertx.com
3h ago
Read the review
Suspicioustrust49
hindilinks4u.net
3h ago
Read the review
Suspicioustrust65
auntmia.com
3h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.