New scan:

Malware Scanner report for golcr.com

Malicious/Suspicious/Total urls checked
1/1/17
2 pages have malicious or suspicious code. See details below
Blacklists
Found
The website is marked by Google as suspicious.

The website "golcr.com" is probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues.
Malicious Redirects
Found
The website redirects visitors to the 3rd-party URL:
->http://lcrrtw.com/
lcrrtw.com is marked by Google as malicious.

The website "golcr.com" is most probably hacked and losing its visitors. You need to take action as soon as possible to fix security issues. Here is our redirects fixing guide.
Malicious/Hidden/Total iFrames
0/0/0
Deface / Content modification
OK

Free periodic scanning and alerting: setup
(requires eVuln badge or a link to eVuln.com)

Malware & Hack Repair

  • Malware Removal
  • Blacklists Removal
  • Reason Eliminating
  • 1 Month Hack Insurance

More details

Website Hack Insurance

  • Files & DB Monitoring
  • Daily Backups
  • Malware & Hack Detection
  • Unlimited Hack Repairs

More details

Safe Browsing / Blacklists

Query: http://www.google.com/safebrowsing/diagnostic?site=golcr.com

Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.

Malicious Redirects

First query (normal visit):
GET / HTTP/1.1
Host: vbabe.mobi

Result:
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Sun, 14 Dec 2014 03:17:10 GMT
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: vbabe=qpdvldr4466apn0clab17adma4; expires=Mon, 15-Dec-2014 03:17:10 GMT; path=/
Set-Cookie: wssid=c71d79fb04417dd65946483e5edcf018c7385ea9; expires=Fri, 12-Jun-2015 03:17:10 GMT
Set-Cookie: agg_needless=1; expires=Mon, 15-Dec-2014 03:17:10 GMT
X-Powered-By: PHP/5.3.3-7+squeeze15
Second query (visit from search engine):
GET / HTTP/1.1
Host: vbabe.mobi
Referer: http://www.google.com/search?q=vbabe.mobi

Result:
The result is similar to the first query. There are no suspicious redirects found.

Scanned pages/files

RequestServer responseStatus
http://golcr.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Date: Fri, 19 Dec 2014 16:17:26 GMT
Location: http://lcrrtw.com/
Server: nginx/1.6.2
Content-Length: 285
Content-Type: text/html; charset=iso-8859-1
malicious
http://lcrrtw.com/
HTTP/1.1 301 Moved Permanently
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: close
Date: Fri, 19 Dec 2014 16:17:28 GMT
Pragma: no-cache
Location: http://www.lcrrtw.com/
Server: nginx/1.6.2
Vary: Cookie
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Set-Cookie: PHPSESSID=7d4b8525d16cc31d4f1694a68f85fe7a; path=/
X-Pingback: http://www.lcrrtw.com/xmlrpc.php
clean
http://www.lcrrtw.com/
200 OK
Content-Length: 18030
Content-Type: text/html
suspicious
Page code contains blacklisted domain: www.rehabtherapyworks.com


<!DOCTYPE html>
<html lang="en-US">
<head>

<meta charset="UTF-8" />
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
<title>
</title>
<link rel="profile" href="http://gmpg.org/xfn/11" />
<link rel="pingback" href="http://www.lcrrtw.com/xmlrpc.php" />
<link rel="alternate" type="application/rss+xml"
...[4156 bytes skipped]...

http://www.lcrrtw.com/wp-includes/js/jquery/jquery.js?ver=1.11.0
200 OK
Content-Length: 95807
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
200 OK
Content-Length: 7200
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=3.9.3
200 OK
Content-Length: 17331
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=3.9.3
200 OK
Content-Length: 56235
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/themes/attitude-pro/library/js/tinynav.js?ver=3.9.3
200 OK
Content-Length: 2370
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/themes/attitude-pro/library/js/backtotop.js?ver=3.9.3
200 OK
Content-Length: 605
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/themes/attitude-pro/library/js/jquery.quicksand.js?ver=3.9.3
200 OK
Content-Length: 18705
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/themes/attitude-pro/library/js/jquery.easing.1.3.js?ver=3.9.3
200 OK
Content-Length: 8301
Content-Type: application/javascript
clean
http://www.clickevents.com.my/scripts/collect.js
200 OK
Content-Length: 2872
Content-Type: application/x-javascript
clean
http://www.lcrrtw.com/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.50.0-2014.02.05
200 OK
Content-Length: 16305
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=3.8.1
200 OK
Content-Length: 9630
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/plugins/wp-retina-2x/js/retina.js?ver=1.3.0
200 OK
Content-Length: 5682
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/themes/attitude-pro/library/js/jquery.cycle.all.min.js?ver=2.9999.5
200 OK
Content-Length: 33942
Content-Type: application/javascript
clean
http://www.lcrrtw.com/wp-content/themes/attitude-pro/library/js/attitude-slider-setting.js?ver=3.9.3
200 OK
Content-Length: 1322
Content-Type: application/javascript
clean