Avast WEBforum
Other => Viruses and worms => Topic started by: polonus on December 02, 2017, 06:35:40 PM
-
Where: https://urlquery.net/report/6c510938-25f9-4f54-82d7-f2eb4313a744
Read on background: https://www.bluecoat.com/en-gb/security-blog/2010-02-04/how-suspicious-are-dynamic-dns-sites
and http://news.softpedia.com/news/DynDNS-Abused-by-Malware-Pushers-147269.shtml
and https://umbrella.cisco.com/blog/2013/04/15/on-the-trail-of-malicious-dynamic-dns-domains/
or https://www.alienvault.com/blogs/security-essentials/dynamic-dns-security-and-potential-threats
8 problems: https://mxtoolbox.com/domain/maxjung.ddns.net/
issues: https://privacyscore.org/site/35083/
Example on IP -> https://toolbar.netcraft.com/site_report?url=http://kuenstlerseele.net
and https://toolbar.netcraft.com/site_report?url=maxjung.ddns.net%2F
F-status grade and recommendations: https://observatory.mozilla.org/analyze.html?host=maxjung.ddns.net
last 10 reports: https://urlquery.net/report/ef9703d1-e0d5-440b-b39c-9b6ffcd9d844
polonus
-
Dyndns malware alert, is this blocked?
Does it need to be? it is down http://downforeveryoneorjustme.com/maxjung.ddns.net
-
Hi Pondus,
Well then that IP should be kept an eye on, as it is dynamic dns which is often abused to spread malware all sorts.
Good this abuse has been taken down.
But ass -http://kuenstlerseele.net is up (on that same IP), and whatever dynamic dns domain that gets hosted there,
we have to be cautious.
Remember that the avast team members kept on alerting free afraid dot org, where at once your free sub-domains could not be your domain any longer. A lot of dyndns domains are "above board", but the technology is also very attractive for cybercriminals.
polonus