San oversight:
HOSTING DETAIL
Web Server:
Pepyaka
IP Address:
34.149.87.45
Hosting Provider:
GOOGLE-CLOUD-PLATFORM
Shared Hosting:
317 sites found (use Reverse IP to download list)
Title:
Inicio | Baron Atelier
0 issues
Issues found during a high level analysis of the target site. It is recommended that further active scanning be undertaken for a more accurate assessment.
Blacklists and Threat Intel
A check of threat intelligence sources and blacklists was performed against the hostname and IP address of the target. The findings will identify reputation issues or even the presence of malicious code.
DShield CLEAN
AlienVault OTX
CLEAN
Cisco Talos CLEAN
abuse.ch (Feodo) CLEAN
URLhaus CLEAN
Spamhaus (Drop / eDrop) CLEAN
Google Safe Browsing is maintained by Google and used to by Chrome to warn users that they are about to visit a malicious site. Use the link to perform a live check of the target site.
Virus Total is a powerful analysis engine that uses threat intelligence and antivirus to help researchers track malware. References found on Virus Total may contain live malware. Use with caution.
If the IP address of a shared hosting server is listed in a blacklist, it may simply indicate one of the hosted websites has been compromised. It does not neccessarily indicate an immediate threat to another site on the same host, but should be investigated. Multiple listings from a shared hosting server may indicate a hosting service with poor reputation or poor security practices.
Take care visiting the listed threat intelligence resources. Links, hosts and references may contain live malware and should be treated with caution.
Plugins are a source of many security vulnerabilities within WordPress installations, always keep them updated to the latest version available and check the developers plugin page for information about security related updates and fixes.
There are likely more plugins installed than those listed here as the detection method used here is passive. While these results give an indication of the status of plugin updates, a more comprehensive assessment should be undertaken by brute forcing the plugin paths using a dedicated tool.
Reputation checks have been performed on the IP address for each of the linked sites. Hosts found on blacklists with poor reputation may be a threat to users of the site. Hosting and locations are also included in the results.
Externally Linked Host Hosting / Company Country
pinterest.com FASTLY
instagram.com FACEBOOK
Javascript Resources
IP address blacklists have been checked for each of the linked hosts. Addresses with poor reputation could be a threat to users of the site or may point to the presence of malicious javascript. Hosting and location are also included in the results.
JS Link Hosting / Company Country
-https://static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.f5f1fc96.bundle.min.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/services/wix-perf-measure/1.1095.0/wix-perf-measure.umd.min.js GOOGLE-CLOUD-PLATFORM
-https://polyfill-fastly.io/v3/polyfill.min.js?features=fetch FASTLY
-https://static.parastorage.com/services/tag-manager-client/1.859.0/siteTags.bundle.min.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/services/wix-thunderbolt/dist/main.renderer.1d21f023.bundle.min.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/unpkg/focus-within-polyfill@5.0.9/dist/focus-within-polyfill.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/unpkg/react-dom@18.3.1/umd/react-dom.production.min.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/unpkg/core-js-bundle@3.2.1/minified.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/services/wix-thunderbolt/dist/main.90b29617.bundle.min.js GOOGLE-CLOUD-PLATFORM
-https://static.parastorage.com/unpkg/react@18.3.1/umd/react.production.min.js
Consider also ->
https://www.abuseipdb.com/check/34.149.87.45Known bad hash:
https://zulu.zscaler.com/submission/6d666582-993f-4a42-90ba-e88c14c7e445 but given as BENIGN.
Wait for a final verdict from avast team,
polonus