Analysis Results

Export PDF Report Rescan Website Analyze Another Website

http://datawords.com

Analyzed on July 29, 2025, 10:07 p.m. Click "Rescan Website" to get the latest data

Analysis Successful

MALWARE DETECTED!

Severity Level: MEDIUM

Found 1 suspicious pattern(s)

View Detailed Analysis Request Assistance

Network Information

IP Address: 162.159.135.42

IP WHOIS Information:

ASN: 13335
ASN Description: CLOUDFLARENET, US
Country: US
Description: Cloudflare, Inc.
CIDR: 162.158.0.0/15

Ping Test Check AbuseIPDB Other Websites on Same IP

Domain Information

Registrar: Amazon Registrar, Inc.
Created: December 02, 2003
Last Updated: October 28, 2024
Name Servers:
- NS-136.AWSDNS-17.COM
- NS-1494.AWSDNS-58.ORG
- NS-1561.AWSDNS-03.CO.UK
- NS-994.AWSDNS-60.NET

DNS Records

Learn about DNS Records

A Records (IPv4 Addresses)

Domain	IP Address
`datawords.com`	162.159.135.42

MX Records (Mail Servers)

Priority	Mail Server
1	`datawords-com.mail.protection.outlook.com.`

TXT Records

Domain	Text Record
`datawords.com`	`"v=spf1 include:amazonses.com include:spf.protection.outlook.com include:_spf.atlassian.net include:_spf.google.com include:spf.mandrillapp.com include:144958027.spf01.hubspotemail.net -all"`
`datawords.com`	`"docusign=501589c5-767a-4343-a98a-54c9346e1191"`
`datawords.com`	`"google-site-verification=hMiF_rDpmg6sonRJq0yOSCYSYMN5fsgjeA3Awmnqvrg"`
`datawords.com`	`"atlassian-domain-verification=ac3Sdi2PBm0vWigOed6AGKs8Oxy7aRcU4XBFgCDop0fFZmjKWPlna6HKj1iu5UyU"`
`datawords.com`	`"airtable-verification=b0be7f0a727a487d6557367e3dc24df8"`
`datawords.com`	`"google-site-verification=shIRrsIirF1MPdGg5j0qAnMkbSbdaVVF2l5NZYquBbw"`
`datawords.com`	`"fe5+izxInLihhNxBKpcpYe6MpAnFSM0pjwZVsW/J5mI="`
`datawords.com`	`"atlassian-domain-verification=uNtCudL0JKOGV9vD1FuB2maLfkmbbKKtfphS7EwYNhVnLZNIv3ON8nngMe9sQV/A"`
`datawords.com`	`"Notion_verify_JHtGCU1w10K0JC6YuLFaaC94zbnJ2Qxdey2jD09kXx7W0Bz3WbDrsL0DGdh0cBJg41kKL8"`
`datawords.com`	`"MS=ms73417323"`
`datawords.com`	`"google-site-verification=otfnn1BEWfWmXZ1YvCMCo_A_VOYjPAhidX-58ywa5TY"`
`datawords.com`	`"apple-domain-verification=2Asuwg6pCvo7B253"`
`datawords.com`	`"atlassian-domain-verification=bAy/WUgwKV1appFmk2PHRkYTVyokg8/mp/iXsbaQgmLzMuuhA3RR3vFfnFWaXjz6"`
`datawords.com`	`"atlassian-domain-verification=oRcJ3Dhgf7E7OW68DWdTlAivTq/2bftIUQuySNiav/Q1a9wk0ZT1jzzOc1aYLB4k"`

WWW Subdomain Records

Subdomain	Type	Value
`www.datawords.com`	A	`162.159.135.42`

Services Detected (9 found)

Office 365

Email hosted on Office 365

Learn More

Atlassian

Atlassian services detected

Learn More

Airtable

Airtable services detected

Learn More

Apple

Apple services detected

Learn More

DocuSign

DocuSign services detected

Learn More

Notion

Notion services detected

Learn More

Amazon SES

Amazon SES services detected

Learn More

HubSpot

HubSpot services detected

Learn More

Google Search Console

Google Search Console services detected

Learn More

View DNS History on DNS Archive

Check GeoIP Blocking

Blocklisting Status

Learn about Blocklisting Status

Overall Status: CLEAN No blocklisting detected

Services Checked: 2

Google Safe Browsing: CLEAN

Domain is not blocklisted by Google Safe Browsing
No threats detected

VirusTotal: CLEAN

Domain is clean according to 0 scanners
No threats detected by any security scanner

Hosting Information

Provider: Kinsta (high confidence)

Detection Method: HTTP Headers

Matched Headers:

x-kinsta-cache: hit
ki-cache-type: edge
ki-cf-cache-status: hit
ki-edge: v=21.1.1;mv=5.0.10

Company Information:

Premium managed WordPress hosting with Google Cloud Platform infrastructure, offering high performance, security, and developer-friendly features.

Website

Portal

Contact:

Social Media:

Content Management System

CMS Detected: WordPress

Detected Plugins (10):

sitepress-multilingual-cms sassy-social-share fancy-elementor-flipbox elementskit-lite jet-tricks wpforms wp-slick-slider-and-image-carousel elementor-pro essential-addons-for-elementor-lite elementor

Themes

Plugins

WordPress Security Analysis

PASSED

Learn about WordPress Security Analysis

XMLRPC.php Security Test UNKNOWN

XMLRPC.php returned unexpected status code: 301

HTTP Status: 301

Recommendation: Investigate the response and ensure XMLRPC.php is properly secured.

WP-Login.php Security Test PASSED

WP-Login page is not accessible (HTTP 301)

HTTP Status: 301

Recommendation: WP-Login page is properly protected.

User Enumeration Test UNKNOWN

Unable to determine user enumeration status

Test Results:

Endpoint: http://datawords.com/wp-json/wp/v2/users

Status: UNKNOWN

Message: Unexpected status code: 301

HTTP Status: 301

Endpoint: http://datawords.com/?rest_route=/wp/v2/users

Status: UNKNOWN

Message: Unexpected status code: 301

HTTP Status: 301

Recommendation: Investigate the WordPress REST API configuration and ensure proper security measures are in place.

Security Headers Analysis

Need help understanding security headers? View our comprehensive documentation to learn about each header and how to implement them.

Present Security Headers

X-Content-Type-Options

Missing Security Headers

Strict-Transport-Security

X-Frame-Options

X-XSS-Protection

Referrer-Policy

Content-Security-Policy

Permissions-Policy

Cross-Origin-Embedder-Policy

Cross-Origin-Opener-Policy

Cross-Origin-Resource-Policy

Request Assistance

External JavaScripts Detected

Only scripts from different domains are shown

Domain	Script URL	Type
cdnjs.cloudflare.com	`https://cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js`	External
js-eu1.hs-scripts.com	`https://js-eu1.hs-scripts.com/144958027.js?integration=WordPress&ver=11.3.6`	External
js-eu1.hsforms.net	`https://js-eu1.hsforms.net/forms/embed/v2.js?ver=11.3.6`	External
www.google.com	`https://www.google.com/recaptcha/api.js?render=6LdK1XcqAAAAAJAOG6MM0wirbIuTARusJtlUdqFP`	External
www.googletagmanager.com	`https://www.googletagmanager.com/gtm.js`	Inline Reference

Malware Analysis Details

Suspicious Patterns Detected

Suspicious window.open

Window opening that could be used for popup spam

Severity: MEDIUM

Matches Found: 1

Sample Matches:

window.open(e,"popUpWindow","height=400,width=600,left=400,top=100,resizable,scrollbars,toolbar=0,personalbar=0,menubar=no,location=no,directories=no,status")

Recommendations

Review and clean suspicious HTML patterns
Consider using a Web Application Firewall (WAF)

Request Assistance

HTTP Headers

Learn about HTTP Headers

HTTP Response Code

200 OK - Request successful

Security Protection Detected

The site is using Cloudflare CDN & WAF 👍

Gzip Compression Enabled 👍

Great! This site is using Gzip compression to improve performance and reduce bandwidth usage.

Header	Value
`Date`	`Tue, 29 Jul 2025 22:07:01 GMT`
`Content-Type`	`text/html; charset=UTF-8`
`Transfer-Encoding`	`chunked`
`Connection`	`keep-alive`
`CF-Ray`	`966fed426e216bb9-DFW`
`CF-Cache-Status`	`HIT`
`Cache-Control`	`public, max-age=0, s-maxage=3600`
`Last-Modified`	`Tue, 29 Jul 2025 22:01:53 GMT`
`Link`	`<https://datawords.com/wp-json/>; rel="https://api.w.org/", <https://datawords.com/wp-json/wp/v2/pages/29477>; rel="alternate"; title="JSON"; type="application/json", <https://datawords.com/>; rel=shortlink`
`Vary`	`Accept-Encoding`
`Cache-Tag`	`370b6f8f-edb6-40d8-a1d4-57f7770a9a23,f3b6449a435e2c667489881b29d919f22b2956c756220c08538cef4237ad55ca`
`ki-Cache-Tag`	`370b6f8f-edb6-40d8-a1d4-57f7770a9a23,f3b6449a435e2c667489881b29d919f22b2956c756220c08538cef4237ad55ca`
`ki-cache-type`	`Edge`
`Ki-CF-Cache-Status`	`HIT`
`ki-edge`	`v=21.1.1;mv=5.0.10`
`X-Content-Type-Options`	`nosniff`
`X-Edge-Location-Klb`	`1`
`x-kinsta-cache`	`HIT`
`Report-To`	`{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dNlZk7GQL706Lnju%2Bv3t68c4R1%2F4dJk3GzJqHI8yFl8z38KVv%2FxL6gVKFcKL%2BcE8Sf%2Boc8J5TomG6DZb2%2B5rA%2FlPbZaby1g%2Bkb5UvObaAGnbhKdK2HMFGIt7DaWSNsk%3D"}],"group":"cf-nel","max_age":604800}`
`NEL`	`{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}`
`Server`	`cloudflare`
`Content-Encoding`	`gzip`
`alt-svc`	`h3=":443"; ma=86400`

Service Disclaimer

Free Service: This website security analyzer is provided as a free service to help website owners and administrators identify potential security issues and improve their website's security posture.

Donations: We welcome and appreciate donations to help us maintain and improve this service. Your support helps us keep this tool free and continuously enhance its capabilities.

Affiliate Links: We may use affiliate links for various security services, hosting providers, and security tools mentioned throughout this analysis. If you choose to purchase any of these services through our links, we may receive a small commission at no additional cost to you. This helps support the development and maintenance of this free service.

Support Our Service

Help us keep this tool free and improve it further

Buy us a Coffee Make a Donation via PayPal