Hi whil,
Checking for cloakingThere is a difference of 1 bytes between the version of the page you serve to Chrome and the version you serve to GoogleBot.
This probably means some code is running on your site that's trying to hide from browsers
but make Google think there's something else on the page. show.
var tve_dash_front = {"ajaxurl":"-https:\/\/celebritypublishers.com\/wp-admin\/admin-ajax.php","force_ajax_send":"","is_crawler":""};
var tve_dash_front = {"ajaxurl":"-https:\/\/celebritypublishers.com\/wp-admin\/admin-ajax.php","force_ajax_send":"","is_crawler":"1"};
27 improvement suggestions, some security related:
https://webhint.io/scanner/787f748a-b7e8-414d-9e54-73292270cab61 vuln. jQuery library detected:
https://retire.insecurity.today/#!/scan/c2ac8916a761d187351573daca1c2b3c32273c7a59bef31962d47f758eafd297Quite some vuln. on the Houston hoster, where you share your address with 137 others:
https://www.shodan.io/host/192.185.163.130 a.o. Exim smtpdVersion: 4.91 vuln. version, recently in the news,
hopefully they patched that server with F-grade scan results:
https://observatory.mozilla.org/analyze/unifiedlayer.com15 immediate potential threats:
https://app.upguard.com/#/https://celebritypublishers.comprobably your detection is IP related (trojan finds):
https://www.virustotal.com/gui/ip-address/192.185.163.130/relationsReputation Check
PASSED
Google Safe Browse: OK
Spamhaus Check: OK
Abuse CC: OK
Dshield Blocklist: OK
Cisco Talos Blacklist: OK
Web Server:
nginx/1.15.10
X-Powered-By:
None
IP Address:
-192.185.163.130
Hosting Provider:
Unified Layer
Shared Hosting:
138 sites found on 192.185.163.130
Protection RecommendationsDirectory Listing is enabled on your site. This can lead to information leakage. We recommend disabling Directory Listing.
a.k.a. Directory Indexing
In the test an attempt was made to list the directory contents of the uploads and plugins folders to determine if Directory Indexing is enabled. This is a common information leakage vulnerability that can reveal sensitive information regarding your site configuration or content.
/wp-content/uploads/ enabled (should be set disabled)
/wp-content/plugins/ disabled
Directory indexing was tested on the /wp-content/uploads/ and /wp-content/plugins/ directores. Note that other directories may have this web server feature enabled, so ensure you check other folders in your installation. It is good practice to ensure directory indexing is disabled for your full WordPress installation either through the web server configuration or .htaccess.
Check for latest updates: The following plugins were detected by reading the HTML source of the WordPress sites front page.
thrive-visual-editor
google-analytics-for-wordpress latest release (7.6.0)
https://www.monsterinsights.com/the-grid
gtranslate latest release (2.8.47)
https://gtranslate.io/smart-slider-3 latest release (3.3.20)
https://smartslider3.com/Wait for an avast team member to give a final verdict, we are just volunteers with relevant expertise.
polonus (volunteer 3rd party cold reconnaissance website security analyst and website error-hunter)
