Author Topic: infection (Read 2165 times)

mcmanus06 · « **on:** March 21, 2021, 04:53:33 PM »

over and over again all day i get from avast: "we have aborted the connection on zpreland.com because was infected with Script:SNH-gen[adw]." any advice?

r@vast · « **Reply #1 on:** March 22, 2021, 04:21:53 PM »

Quote from: mcmanus06 on March 21, 2021, 04:53:33 PM

over and over again all day i get from avast: "we have aborted the connection on zpreland.com because was infected with Script:SNH-gen[adw]." any advice?

Hi,

I could not reproduce it. Could you please provide a screenshot?

DavidR · « **Reply #2 on:** March 22, 2021, 06:46:30 PM »

I couldn't replicate it either, I get a redirect to zpreland.com/feed/
and get a "Sorry, the page you are looking for could not be found." error

polonus · « **Reply #3 on:** March 23, 2021, 02:10:50 PM »

Dutch hoster in Amsterdam does not repond for domains on IP 139.45.197.130
Re: https://www.shodan.io/host/139.45.197.130
See: https://www.virustotal.com/gui/domain/zpreland.com/details
Re another domain there: https://sitecheck.sucuri.net/results/sub.static.ptoahaistais.com
The code returned by -zpreland.com/feed

Quote

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)

Author Topic: infection (Read 2165 times)

mcmanus06

infection

r@vast

Re: infection

DavidR

Re: infection

polonus

Re: infection