« previous next »
Pages: [1]   Go Down

Author Topic: Good certain PHISH-sites are blocked by Google Safebrowsing!  (Read 947 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33904
  • malware fighter
Good certain PHISH-sites are blocked by Google Safebrowsing!
« on: August 30, 2015, 09:32:17 PM »
An example here with suspicious content: https://www.virustotal.com/nl/url/955a47b337272d6d3e0367aa2947c3215c1e41a441ec67bcfadcc889e0d775a8/analysis/1440961505/
and
http://quttera.com/detailed_report/www.flog.ie
and https://sitecheck.sucuri.net/results/www.flog.ie#sitecheck-details
Blacklisted by Google Safebrowsing. Also has extensive server heafder info proliferation as you can see here:
Code: [Select]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN"> <html> <head> <title>Index of /.workwork</title> </head> <body> <h1>Index of /.workwork</h1> <ul><li><a href="/"> Parent Directory</a></li> <li><a href=".press/"> .press/</a></li> </ul> <address>Apache/2.2.29 (Unix) mod_ssl/2.2.29 OpenSSL/1.0.1e-fips mod_bwlimited/1.4 Server at flog.ie Port 80</address> </body></html>
Suspicious code detected:
Object: htxp://www.flog.ie/.workwork/.press/docgg/
SHA1: 31f82bf2a159cf6665070f01983fadf139a7c959
Name: Suspicious-WI.

polonus (volunteer website security analyst and website error-hunter)
« Last Edit: August 30, 2015, 09:34:23 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »