Avast WEBforum

Other => Viruses and worms => Topic started by: polonus on December 30, 2015, 07:04:05 PM

Title: Is Cloudflare & Dreamhost aware of this abuse from their racks?
Post by: polonus on December 30, 2015, 07:04:05 PM

See a site to facilitate defacement: https://mydeface.com/tools
Powered by BANGLADESH BLACK HAT HACKERS (BBHH)
See: http://toolbar.netcraft.com/site_report?url=http%3A%2F%2Fwheelbilly.com%2F
Does Cloudflare and Dreamhost know it is on their racks in USA. Is such abuse legit?
Registered and Active: http://whois.domaintools.com/mydeface.com

polonus

Title: Re: Is Cloudflare & Dreamhost aware of this abuse from their racks?
Post by: polonus on December 30, 2015, 07:14:09 PM

Site is generating errors, according to Sucuri's: https://sitecheck.sucuri.net/results/mydeface.com/tools
System Details:
Running on: cloudflare-nginx
Powered by: PHP/5.5.30
Cached from: Backend
Via proxy: 1.1
Scripts: -https://oss.maxcdn.com
Detected libraries:
No vulnerable libraries found

Scanner output:
Scanning -https://oss.maxcdn.com ...
Status: success
Script loaded: -http://www.jsdelivr.com/js/app.min.js
Script loaded: -https://www.google.com/jsapi
Load time: 1270ms

Methods and other info: https://mydeface.com/tool/zone-h.php
Normally status code; fail to load...

polonus (volunteer website security analyst and website error-hunter)

Title: Re: Is Cloudflare & Dreamhost aware of this abuse from their racks?
Post by: polonus on January 17, 2016, 01:43:38 PM

Update: Site apparently has been taken offline now: http://toolbar.netcraft.com/site_report?url=https://mydeface.com

polonus