Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=psychicdestinycoach.com
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: hotelplazadelta.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sat, 24 Jan 2015 02:58:34 GMT
Location: http://bidr.trellian.com/r2.php?e=YPEC5m4ENXkTeshL2U8CDTWUxfyma5tf4840Aj3p0mnhK27t2DtoQHattwX8Zk7cWV8Kr0jvEmi3cNtHGhaCtUvlI%2B5cA2sDpAHJKY%2FoEveRgEEmSI3L9LR6HwaK%2Byb%2BzZRLpM3XskO%2BzTufyACj0B8gtXhASQ%2Fv3WsY1YyGtjGwVRVwMdJXX2TMaQ5y3OkoIINsAWLJ1abgllx3LXWRyeWgTc0rE15X17xQAxvyWbsGS7Z2s61Bcdp12njFJz1gC0CGj9VkrSe2o3uaQa61B2JLMLcvopNgLt0lXHd2QWSdtkJkWroM4pm5mpvLzPaHgeUFoYKgkP4%2FTJU7j62eHJ1RSk6iSBp6WuDeIgWnmQuXEYyuGupljYAhos4vHfbDpgvAu%2BAYF6lnu3fQC9MVbVu8kZ9yEeIKNDEyoLj0m2n%2F5Zfr1jCLKlU0B9ayuG1CN3pQtnSNh%2BjtGXP%2FbCSN88FCVBUOX0Gn20A4cYc68o0yvhgIZpnWjpzQmWJ6mSgSS3vkv5nKLBUjCV9lH3%2FM35bogXTGVk%2FkJO%2BDBoehfJhR%2FFMFBLd3G1N9CIkpLCm2KJ6n%2FxcPlwx%2BqQQNrzlkQrGZlTBycm67
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3-7+squeeze23
...0 bytes of data.
GET / HTTP/1.1
Host: hotelplazadelta.com
Result:
HTTP/1.1 302 Found
Connection: close
Date: Sat, 24 Jan 2015 02:58:34 GMT
Location: http://bidr.trellian.com/r2.php?e=YPEC5m4ENXkTeshL2U8CDTWUxfyma5tf4840Aj3p0mnhK27t2DtoQHattwX8Zk7cWV8Kr0jvEmi3cNtHGhaCtUvlI%2B5cA2sDpAHJKY%2FoEveRgEEmSI3L9LR6HwaK%2Byb%2BzZRLpM3XskO%2BzTufyACj0B8gtXhASQ%2Fv3WsY1YyGtjGwVRVwMdJXX2TMaQ5y3OkoIINsAWLJ1abgllx3LXWRyeWgTc0rE15X17xQAxvyWbsGS7Z2s61Bcdp12njFJz1gC0CGj9VkrSe2o3uaQa61B2JLMLcvopNgLt0lXHd2QWSdtkJkWroM4pm5mpvLzPaHgeUFoYKgkP4%2FTJU7j62eHJ1RSk6iSBp6WuDeIgWnmQuXEYyuGupljYAhos4vHfbDpgvAu%2BAYF6lnu3fQC9MVbVu8kZ9yEeIKNDEyoLj0m2n%2F5Zfr1jCLKlU0B9ayuG1CN3pQtnSNh%2BjtGXP%2FbCSN88FCVBUOX0Gn20A4cYc68o0yvhgIZpnWjpzQmWJ6mSgSS3vkv5nKLBUjCV9lH3%2FM35bogXTGVk%2FkJO%2BDBoehfJhR%2FFMFBLd3G1N9CIkpLCm2KJ6n%2FxcPlwx%2BqQQNrzlkQrGZlTBycm67
Server: Apache
Content-Length: 0
Content-Type: text/html; charset=UTF-8
X-Powered-By: PHP/5.3.3-7+squeeze23
...0 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: hotelplazadelta.com
Referer: http://www.google.com/search?q=hotelplazadelta.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: hotelplazadelta.com
Referer: http://www.google.com/search?q=hotelplazadelta.com
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://psychicdestinycoach.com/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Sun, 11 Jan 2015 11:27:37 GMT Location: http://internalwilderness.com/ Server: Apache/2.4.10 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Content-Length: 238 Content-Type: text/html; charset=iso-8859-1 | malicious |
http://internalwilderness.com/ | 200 OK Content-Length: 21995 Content-Type: text/html | clean |
http://internalwilderness.com/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://internalwilderness.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://internalwilderness.com/wp-content/plugins/audio-player/assets/audio-player.js?ver=2.0.4.6 | 200 OK Content-Length: 29366 Content-Type: application/x-javascript | clean |
http://s25.sitemeter.com/js/counter.js?site=s25wilderness | HTTP/1.1 302 Redirect Date: Sun, 11 Jan 2015 11:27:44 GMT Location: http://s25.sitemeter.com/js/counter.asp?site=s25wilderness Server: Microsoft-IIS/6.0 Content-Length: 181 Content-Type: text/html X-Powered-By: ASP.NET | clean |
http://s25.sitemeter.com/js/counter.asp?site=s25wilderness | 200 OK Content-Length: 7564 Content-Type: application/x-javascript | clean |
http://internalwilderness.com/wp-includes/js/thickbox/thickbox.js?ver=3.1-20121105 | 200 OK Content-Length: 12113 Content-Type: application/x-javascript | clean |
http://internalwilderness.com/wp-content/plugins/floating-social-media-links/fsml-hideshow.js?ver=4.0.1 | 200 OK Content-Length: 1811 Content-Type: application/x-javascript | clean |
https://apis.google.com/js/plusone.js | 200 OK Content-Length: 12798 Content-Type: application/javascript | clean |
http://psychicdestinycoach.com/ http://internalwilderness.com/contact-info-deborah-frueh-internal-wilderness/aboutcontact/ | 404 Not Found Content-Length: 408 Content-Type: text/html | suspicious |
Page code contains blacklisted domain: internalwilderness.com <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>404 Not Found</title> </head><body> <h1>Not Found</h1> <p>The requested URL / http://internalwilderness.com/contact-info-deborah-frueh-internal-wilderness/aboutcontact/ was not found on this server.</p> <p>Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.</p> </body></html> | ||
http://psychicdestinycoach.com/test404page.js | 404 Not Found Content-Length: 331 Content-Type: text/html | clean |
http://psychicdestinycoach.com//www.youtube.com/subscription_center?add_user_id=DebFrueh/ | 404 Not Found Content-Length: 352 Content-Type: text/html | clean |