Analysis Results
https://traildogtreats.com/
Analyzed on September 12, 2025, 7:43 p.m. Click "Rescan Website" to get the latest data
Analysis SuccessfulMALWARE DETECTED!
Severity Level: MEDIUM
- Found 2 suspicious pattern(s)
DNS Records
A Records (IPv4 Addresses)
| Domain | IP Address |
|---|---|
traildogtreats.com |
151.106.124.144 |
MX Records (Mail Servers)
| Priority | Mail Server |
|---|---|
| 5 | mx1.hostinger.com. |
| 10 | mx2.hostinger.com. |
TXT Records
| Domain | Text Record |
|---|---|
traildogtreats.com |
"v=spf1 include:_spf.mail.hostinger.com ~all" |
WWW Subdomain Records
| Subdomain | Type | Value |
|---|---|---|
www.traildogtreats.com |
A | 151.106.124.144 |
Services Detected (0 found)
Blocklisting Status
No threats detected by any security scanner
No threats detected
Hosting Information
platform: hostinger
SSL/TLS Security
- Certificate Type: DV (Domain Validated - Basic Security)
- Subject: traildogtreats.com
-
Certificate Authority (CA):
ZeroSSL RSA Domain Secure Site CA
ZeroSSL
AT - Valid From: Aug 19 00:00:00 2025 GMT
- Valid Until: Nov 17 23:59:59 2025 GMT
- Serial Number:
622D9F7131A2DF88E464E81EACF68FDB
Your SSL certificate expires in 65 days.
Please renew your certificate before Nov 17 23:59:59 2025 GMT to avoid service interruption.
Content Management System
Themes
1
Plugins
9
WordPress Security Analysis
FAILEDXMLRPC.php Security Test FAILED
XMLRPC.php is accessible and vulnerable
HTTP Status: 200
WP-Login.php Security Test FAILED
WP-Login page is accessible without CAPTCHA protection
HTTP Status: 200
User Enumeration Test FAILED
User enumeration is possible via WordPress REST API
Endpoint: https://traildogtreats.com/wp-json/wp/v2/users
Status: UNKNOWN
Message: Endpoint accessible but response is not valid JSON
HTTP Status: 200
Endpoint: https://traildogtreats.com/?rest_route=/wp/v2/users
Status: FAILED
Message: User enumeration possible - 1 users found
HTTP Status: 200
| ID | Name | Slug | Link |
|---|---|---|---|
| 1 | admin_site | admin_site |
https://traildogtreats.com/author/admin_site/ |
Failed Security Tests:
- XMLRPC
- WP-Login
- User Enumeration
Security Headers Analysis
Malware Analysis Details
Suspicious Patterns Detected
Hidden text with suspicious keywords
Hidden text containing spam keywords
Severity: MEDIUM
Matches Found: 1
Sample Matches:
<div class="display:none" style="display:none">
<a href="https://www.xxxlesbianmassage.com" title="에그슬롯"><strong>에그슬롯</strong></a>
<a href="https://www.hivtestvideo.com" title="슬롯"><strong>슬롯</strong></a>
<a href="https://www.hunkymalestars.com" title="온라인슬롯"><strong>온라인슬롯</strong></a>
<a href="https://www.beyoglueskort.com" title="온라인카지노"><strong>온라인카지노</strong></a>
<a href="https://3chathk.com/" title="슬롯1번가"><strong>슬롯1번가</strong></a>
<a href="https://www.fromjpn.com/" title="온라인카지노"><strong>온라인카지노</strong></a>
<a href="https://www.bahishane1.com/" title="홈카지노"><strong>홈카지노</strong></a>
<a href="https://beyazitescort.com/" title="카지노사이트"><strong>카지노사이트</strong></a>
<a href="https://balmumcuescort.com/" title="온라인카지노사이트"><strong>온라인카지노사이트</strong></a>
<a href="https://genviagra
Suspicious document.write
Dynamic content injection that could be used maliciously
Severity: LOW
Matches Found: 5
Sample Matches:
document.write( '<script src="https://traildogtreats.com/wp-content/themes/jinx/assets/js/lib/polyfill-object-assign.min.js?ver=1.0.1"></scr' + 'ipt>' )
document.write( '<script src="https://traildogtreats.com/wp-content/themes/jinx/assets/js/lib/polyfill-css-vars.min.js?ver=1.0.1"></scr' + 'ipt>' )
document.write( '<script src="https://traildogtreats.com/wp-content/themes/jinx/assets/js/lib/polyfill-promise.min.js?ver=1.0.1"></scr' + 'ipt>' )
Recommendations
- Review and clean suspicious HTML patterns
- Consider using a Web Application Firewall (WAF)
HTTP Headers
HTTP Response Code
200 OK - Request successfulHTTP Protocol Version
Your website is using a modern HTTP protocol version, which provides better performance and security features.
Information Disclosure: Server Version
Header: x-powered-by
Value: PHP/8.2.29
Server Type: PHP
The X-Powered-By header reveals server version information, which can be used by attackers to identify vulnerabilities.Information Disclosure: Server Version
Header: server
Value: LiteSpeed
Server Type: LiteSpeed
The Server header reveals server version information, which can be used by attackers to identify vulnerabilities.Gzip Compression Enabled 👍
Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.
| Header | Value |
|---|---|
date |
Fri, 12 Sep 2025 19:43:26 GMT |
link |
<https://traildogtreats.com/wp-json/>; rel="https://api.w.org/", <https://traildogtreats.com/wp-json/wp/v2/pages/4896>; rel="alternate"; title="JSON"; type="application/json", <https://traildogtreats.com/>; rel=shortlink |
vary |
Accept-Encoding |
panel |
hpanel |
server |
LiteSpeed |
alt-svc |
h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" |
platform |
hostinger |
content-type |
text/html; charset=UTF-8 |
http_version |
HTTP/2 |
x-powered-by |
PHP/8.2.29 |
x-ua-compatible |
IE=edge |
content-encoding |
gzip |
content-security-policy |
upgrade-insecure-requests |
Service Disclaimer
Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.
Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.
Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.
Support Our Service
Help us keep this tool free and improve it further