SaferChrome: Insecure login: Password will be transmited in clear to http://www.ninefornews.nl/sponsors/login detected (see report: ) Insecure login (1)
Password will be transmited in clear to http://www.ninefornews.nl/sponsors/login
Infos (1)
Encryption (HTTPS) (1)
Communication is NOT encrypted
Time to do a cold reconnaissance scan on WP Security. Optimized with Yoast WordPress SEO plugin v2.1
Google safe browse check
PASSED
Google finds the site to be free of malware
WordPress Plugins
The following plugins were detected from the HTML source of the WordPress front page.
Yoast SEO Plugin
wonderplugin-audio
wplinktrade
mailchimp-for-wp-pro
wp-comment-rating
hat-widget-plugin
simple-responsive-slider
news-ticker-benaceur
captcha
popup-maker
simple-social-icons
contact-form-7
socialfans-counter (always update to the latest version as plug-ins are a source of many a vulnerability)
WP Theme: The theme has been found by examining the path /wp-content/themes/ theme name /
Theme : news-pro
User Enumeration is not available
Linked Javascript
http://www.ninefornews.nl/wp-includes/js/jquery/jquery.js?ver=1.11.1
http://www.ninefornews.nl/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
http://www.ninefornews.nl/wp-content/plugins/news-ticker-benaceur/js/jquery.anim-ntb.js?ver=4.1.2
http://www.ninefornews.nl/wp-content/plugins/news-ticker-benaceur/js/jquery.ntb-l.js?ver=4.1.2
http://www.ninefornews.nl/wp-content/plugins/simple-responsive-slider/assets/js/responsiveslides.min.js?ver=4.1.2
http://www.ninefornews.nl/wp-content/plugins/socialfans-counter/assets/js/socialfans-script.js?ver=2.0.2
http://www.ninefornews.nl/wp-content/plugins/wonderplugin-audio/engine/wonderpluginaudioskins.js?ver=2.4
http://www.ninefornews.nl/wp-content/plugins/wonderplugin-audio/engine/wonderpluginaudio.js?ver=2.4
http://www.ninefornews.nl/wp-content/plugins/hat-widget-plugin/js/hat.2.2.min.js?ver=4.1.2
http://www.ninefornews.nl/wp-content/plugins/wp-comment-rating/assets/js/wpb-cr-frontend.js?ver=4.1.2
htxp://nl.ads.justpremium.com/adserve/js.php?zone=7579 *
http://www.ninefornews.nl/wp-content/plugins/contact-form-7/includes/js/jquery.form.min.js?ver=3.51.0-2014.06.20
http://www.ninefornews.nl/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=4.1.2
http://www.ninefornews.nl/wp-content/themes/news-pro/js/responsive-menu.js?ver=1.0.0
http://www.ninefornews.nl/wp-content/plugins/wplinktrade/assets/js/wplinktrade.js?ver=4.1.2
http://www.ninefornews.nl/wp-includes/js/jquery/ui/core.min.js?ver=1.11.2
http://www.ninefornews.nl/wp-includes/js/jquery/ui/position.min.js?ver=1.11.2
http://www.ninefornews.nl/wp-content/plugins/popup-maker/assets/scripts//TweenMax.min.js?ver=1.15.1
http://www.ninefornews.nl/wp-content/plugins/popup-maker/assets/scripts/popup-maker-site.min.js?defer&ver=1.2
http://www.ninefornews.nl/?ai1ec_render_js=common_frontend&is_backend=false&ver=2.2.1
http://www.ninefornews.nl/wp-content/plugins/mailchimp-for-wp-pro/assets/js/ajax-forms.min.js?ver=2.5.6
htxp://stats.wordpress.com/e-201517.js +
-
- link normally blocked by a script or ad-blocker extension, I broke link so unaware could not click it.
Compromised sites will often be linked to malicious javascript in an attempt to attack users of your WordPress installation. Look over the listed javascript, you should be familiar with all scripts and investigate ones you are not sure. In addition removal of unneeded javascript will speed up your website.
Linked iframes
http://www.weeronline.nl/Go/ExternalWidgetsNew/ThreeDaysCity?gid=4058458&sizeType=2&temperatureScale=Celsius&defaultSettings=False
Compromised sites will often contain embedded iframes that can also deliver malicious code to visitors of the web site. Check any discovered iframes and ensure they are legitimate.
Web application version:
WordPress version: WordPress
Wordpress Version 4.1 based on: http://www.ninefornews.nl//wp-includes/js/autosave.js
WordPress theme: http://www.ninefornews.nl/wp-content/themes/news-pro/
WordPress version outdated: Upgrade required.
Outdated WordPress Found: WordPress Under 4.2
https://sitecheck.sucuri.net/results/www.ninefornews.nl/#sitecheck-details
IP badness history: https://www.virustotal.com/nl/ip-address/198.58.125.130/information/
polonus (volunteer website security analyst and website error-hunter)