Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=staythecourseradio.org
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Google as suspicious. - visiting this web site may harm your computer.
Details are available here.
Scanned pages/files
Request | Server response | Status |
http://staythecourseradio.org/ | 200 OK Content-Length: 38452 Content-Type: text/html | malicious |
Page code contains blacklisted domain: phoenix-credit.com </div><!--content-page--> </div><!--content-area--> <aside class="sidebar"> <div id="sidebar"> <div class="widget sidebar-widget widget_search"><form method="get" class="searchform search-form" action="http://staythecourseradio.org"> <fieldset> <input type="text" name="s" class="s" value="" placeholder="Search Now"> <button class="fa fa-se ...[4324 bytes skipped]... Malicious iFrame found. size: 0x0 src: http://phoenix-credit.com/wp-content/cache.php This URL is marked by Google as suspicious <iframe src="http://phoenix-credit.com/wp-content/cache.php" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> Hidden iFrame found. size: 0x0 src: http://google.com <iframe src="http://google.com" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> | ||
http://staythecourseradio.org/wp-content/themes/goblog/js/modernizr.custom.js?ver=2.6.2 | 200 OK Content-Length: 10617 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-content/themes/goblog/js/stickymenu.js?ver=1.0 | 200 OK Content-Length: 420 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-content/themes/goblog/js/jquery.flexslider-min.js?ver=2.1 | 200 OK Content-Length: 43496 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-content/themes/goblog/js/theme-scripts.js?ver=1.0 | 200 OK Content-Length: 7429 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-content/plugins/social-sharing-toolkit/script_2.1.2.js?ver=4.0.1 | 200 OK Content-Length: 482 Content-Type: application/x-javascript | clean |
https://platform.twitter.com/widgets.js?ver=4.0.1 | 200 OK Content-Length: 110239 Content-Type: application/javascript | clean |
http://staythecourseradio.org/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.googleplus.js?ver=4.0.1 | 200 OK Content-Length: 244 Content-Type: application/x-javascript | clean |
http://assets.pinterest.com/js/pinit.js?ver=4.0.1 | 200 OK Content-Length: 319 Content-Type: application/javascript | clean |
http://staythecourseradio.org/wp-content/plugins/social-sharing-toolkit/includes/buttons/button.facebook.js?ver=4.0.1 | 200 OK Content-Length: 90 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org//connect.facebook.net/en_US/all.js?ver=4.0.1/ | 404 Not Found Content-Length: 22292 Content-Type: text/html | malicious |
Page code contains blacklisted domain: phoenix-credit.com <!DOCTYPE html>
<html class="no-js" itemscope="itemscope" itemtype="http://schema.org/WebPage" lang="en-US"> <head> <meta charset="UTF-8"> <title itemprop="name">Page not found | Stay The Course</title> <link rel="pingback" href="http://staythecourseradio.org/xmlrpc.php" /> <meta name="viewport" content="width=device-width" /> <!--[if lt IE 9]> <script src="h ...[4123 bytes skipped]... Hidden iFrame found. size: 0x0 src: http://google.com <iframe src="http://google.com" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> Malicious iFrame found. size: 0x0 src: http://phoenix-credit.com/wp-content/cache.php This URL is marked by Google as suspicious <iframe src="http://phoenix-credit.com/wp-content/cache.php" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no> | ||
http://staythecourseradio.org/wp-includes/js/jquery/jquery.js?ver=1.11.1 | 200 OK Content-Length: 95807 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 | 200 OK Content-Length: 7200 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.plugins.min.js?ver=4.0.1 | 200 OK Content-Length: 17331 Content-Type: application/x-javascript | clean |
http://staythecourseradio.org/wp-content/plugins/revslider/rs-plugin/js/jquery.themepunch.revolution.min.js?ver=4.0.1 | 200 OK Content-Length: 56235 Content-Type: application/x-javascript | clean |
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: staythecourseradio.org
Result:
HTTP/1.1 200 OK
Date: Fri, 26 Dec 2014 19:07:32 GMT
Server: Microsoft-IIS/7.5
Content-Length: 38452
Content-Type: text/html; charset=UTF-8
X-Pingback: http://staythecourseradio.org/xmlrpc.php
X-Powered-By: PHP/5.3.19
X-Powered-By: ASP.NET
...38452 bytes of data.
GET / HTTP/1.1
Host: staythecourseradio.org
Result:
HTTP/1.1 200 OK
Date: Fri, 26 Dec 2014 19:07:32 GMT
Server: Microsoft-IIS/7.5
Content-Length: 38452
Content-Type: text/html; charset=UTF-8
X-Pingback: http://staythecourseradio.org/xmlrpc.php
X-Powered-By: PHP/5.3.19
X-Powered-By: ASP.NET
...38452 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: staythecourseradio.org
Referer: http://www.google.com/search?q=staythecourseradio.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: staythecourseradio.org
Referer: http://www.google.com/search?q=staythecourseradio.org
Result:
The result is similar to the first query. There are no suspicious redirects found.