Analysis Results

Export PDF Report Rescan Website Analyze Another Website

https://marlene438.wpchef.site/

Analyzed on March 1, 2026, 7:57 a.m. Click "Rescan Website" to get the latest data

Analysis Successful

MALWARE DETECTED!

Severity Level: LOW

Found 1 suspicious pattern(s)

View Detailed Analysis Request Assistance

Network Information

IP Address: 109.234.165.150

IP WHOIS Information:

ASN: 50474
ASN Description: O2SWITCH, FR
Country: FR
Description: o2switch Datacenter Ip-Range-4 -- Location Datacenter 2 - O2S-PA02 -- ------ o2switch Datacenters ------ Abuse : [email protected] Support : [email protected] ------ www.o2switch.net ------
CIDR: 109.234.164.0/22

Ping Test Check AbuseIPDB Other Websites on Same IP

Domain Information

Registrar: NAMECHEAP INC
Created: April 06, 2019
Expires: April 06, 2026
Last Updated: April 01, 2025
Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Name Servers:
- NS1.O2SWITCH.NET
- NS2.O2SWITCH.NET

DNS Records

Learn about DNS Records

A Records (IPv4 Addresses)

Domain	IP Address
`marlene438.wpchef.site`	109.234.165.150

MX Records (Mail Servers)

Priority	Mail Server
0	`mail.marlene438.wpchef.site.`

TXT Records

Domain	Text Record
`marlene438.wpchef.site`	`"v=spf1 +a +mx +ip4:109.234.165.150 +include:spf.jabatus.fr ~all"`

WWW Subdomain Records

Subdomain	Type	Value
`www.marlene438.wpchef.site`	A	`109.234.165.150`

Services Detected (0 found)

View DNS History on DNS Archive

Check GeoIP Blocking

Blocklisting Status

Learn about Blocklisting Status

Overall Status: CLEAN No blocklisting detected

Services Checked: 2

VirusTotal: CLEAN

Domain is clean according to 0 scanners
No threats detected by any security scanner

Google Safe Browsing: CLEAN

Domain is not blocklisted by Google Safe Browsing
No threats detected

Hosting Information

Provider: Unknown (none confidence)

Detection Method: No match found

SSL/TLS Security

Learn about SSL/TLS Security

TLS Version: TLSv1.3

SSL Certificate:

Certificate Type: DV (Domain Validated - Basic Security)
Subject: marlene438.wpchef.site
Certificate Authority (CA): R13
Let's Encrypt
US
Valid From: Jan 3 19:29:40 2026 GMT
Valid Until: Apr 3 19:29:39 2026 GMT
Serial Number: 068C09D9D6BEE6D559D51B4D8FFBE638DD0F

SSL Certificate Expiring Soon!
Your SSL certificate expires in 33 days.
Please renew your certificate before Apr 3 19:29:39 2026 GMT to avoid service interruption.

Content Management System

CMS Detected: WordPress

Themes

Plugins

WordPress Security Analysis

PASSED

Learn about WordPress Security Analysis

XMLRPC.php Security Test UNKNOWN

XMLRPC.php returned unexpected status code: 502

HTTP Status: 502

Recommendation: Investigate the response and ensure XMLRPC.php is properly secured.

WP-Login.php Security Test PASSED

WP-Login page is not accessible (HTTP 403)

HTTP Status: 403

Recommendation: WP-Login page is properly protected.

User Enumeration Test PASSED

User enumeration is properly protected

Test Results:

Endpoint: https://marlene438.wpchef.site/wp-json/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 401)

HTTP Status: 401

Endpoint: https://marlene438.wpchef.site/?rest_route=/wp/v2/users

Status: PASSED

Message: Endpoint properly protected (HTTP 401)

HTTP Status: 401

Recommendation: WordPress REST API user enumeration is properly secured.

Security Headers Analysis

Need help understanding security headers? View our comprehensive documentation to learn about each header and how to implement them.

Present Security Headers

Referrer-Policy

Content-Security-Policy

Cross-Origin-Opener-Policy

Cross-Origin-Embedder-Policy

Cross-Origin-Resource-Policy

Missing Security Headers

Strict-Transport-Security

X-Content-Type-Options

X-Frame-Options

X-XSS-Protection

Permissions-Policy

Request Assistance

Malware Analysis Details

Suspicious Patterns Detected

Suspicious innerHTML manipulation

Dynamic HTML content that could be used maliciously

Severity: LOW

Matches Found: 2

Sample Matches:

.innerHTML='<span class="

Recommendations

Review and clean suspicious HTML patterns
Consider using a Web Application Firewall (WAF)

Request Assistance

HTTP Headers

Learn about HTTP Headers

HTTP Response Code

200 OK - Request successful

HTTP Protocol Version

Excellent! Your website is using HTTP/2

Your website is using a modern HTTP protocol version, which provides better performance and security features.

Gzip Compression Enabled 👍

Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.

Header	Value
`date`	`Sun, 01 Mar 2026 07:56:56 GMT`
`vary`	`Accept-Encoding`
`server`	`o2switch-PowerBoost-v3`
`expires`	`Wed, 11 Jan 1984 05:00:00 GMT`
`set-cookie`	`wordpress_test_cookie=WP%20Cookie%20check; path=/`
`content-type`	`text/html; charset=UTF-8`
`http_version`	`HTTP/2`
`cache-control`	`no-cache, must-revalidate, max-age=0, no-store, private`
`referrer-policy`	`strict-origin-when-cross-origin, strict-origin-when-cross-origin`
`content-encoding`	`gzip`
`content-security-policy`	`upgrade-insecure-requests;, upgrade-insecure-requests;`
`x-content-security-policy`	`default-src 'self'; img-src ; media-src data:;, default-src 'self'; img-src ; media-src data:;`
`cross-origin-opener-policy`	`unsafe-none, unsafe-none`
`access-control-allow-headers`	`Content-Type, Authorization, Content-Type, Authorization`
`access-control-allow-methods`	`GET,POST, GET,POST`
`cross-origin-embedder-policy`	`unsafe-none; report-to='default', unsafe-none; report-to='default'`
`cross-origin-resource-policy`	`cross-origin, cross-origin`
`x-permitted-cross-domain-policies`	`none, none`
`cross-origin-opener-policy-report-only`	`unsafe-none; report-to='default', unsafe-none; report-to='default'`
`cross-origin-embedder-policy-report-only`	`unsafe-none; report-to='default', unsafe-none; report-to='default'`

Service Disclaimer

Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.

Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.

Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.

Support Our Service

Help us keep this tool free and improve it further

Buy us a Coffee Make a Donation via PayPal