« previous next »
Pages: [1]   Go Down

Author Topic: Malicious website....also parked.  (Read 1836 times)

0 Members and 2 Guests are viewing this topic.

Online polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34054
  • malware fighter
Malicious website....also parked.
« on: September 02, 2015, 09:16:13 PM »
See: https://urlquery.net/report.php?id=1441217938705
Re: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fak2.imgaft.com%2Fscript%2Fjquery-1.3.1.min.js
Nothing here: https://www.virustotal.com/nl/url/a2d77055f6a857b515132f65450670911346a9f15fbe1931463d04d14c689a99/analysis/
nor here: http://killmalware.com/ad-tw.com/  nor here: http://quttera.com/detailed_report/ad-tw.com
Custom errors: Fail, Warnings: https://asafaweb.com/Scan?Url=ad-tw.com
See: http://toolbar.netcraft.com/site_report?url=http://ad-tw.com
and -http://llse.net/www.ad-tw.com
Code: [Select]
<!DOCTYPE·html><body·style="padding:0;·margin:0;"><html><body><iframe·src="-http://mcc.godaddy.com/park/oaRgM2bhpTW6/fe/nzcdYaEvLaE5pv5jLab="·style="visibility:·visible;height:·100%;·position:absolute"·allowtransparency="true"·marginheight="0"·marginwidth="0"·frameborder="0"·width="100%"></iframe></body></html>

polonus
« Last Edit: September 02, 2015, 09:22:18 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Para-Noid

  • Avast Evangelist
  • Starting Graphoman
  • ***
  • Posts: 6699
  • Trust only what you test yourself!
Re: Malicious website....also parked.
« Reply #1 on: September 02, 2015, 09:57:10 PM »
Want more?

Okay here http://dnscheck.pingdom.com/?domain=ad-tw.com&timestamp=1441223189&view=1
Questionable here http://www.dnsinspect.com/ad-tw.com/1441223208

Not good here http://www.nabber.org/projects/dnscheck/?domain=ad-tw.com
Or here http://multirbl.valli.org/lookup/ad-tw.com.html
Bad IP here http://multirbl.valli.org/lookup/50.63.202.49.html

It could be the website needs more maintenance and/or the IP needs a good flushing (cleaning) or both.
But since it's parked...
Logged
Dell Inspiron, Win10x64--HP Envy Win10x64--Both systems Avast Free v17.9.2322, Comodo Firewall v8.2 w/D+, MalwareBytes v3.0, OpenDNS, Super Anti-Spyware, Spyware Blaster, MCShield, Unchecky, Vivaldi Browser and, various browser security tools.

"Look before you leap!" Use online scanners before you click on any link.

Online polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34054
  • malware fighter
Re: Malicious website....also parked.
« Reply #2 on: September 02, 2015, 11:07:51 PM »
On a daily basis I work through a lot of suspicious/malicious/vulnerable/exploitable websites and lately I found a lot are sloppily hosted and that GoDaddy is a common nominator. What is going on there?
With already 10402 URLs blacklistred the historical badness has not going down - http://sitevet.com/db/asn/AS26496
Abuse All-sorts really:
Hosts...
...malicious URLs? Yes 
...badware? Yes 
...botnet C&C servers? No 
...exploit servers? Yes 
...Zeus botnet servers? Yes 
...Current Events? Yes 
...phishing servers? Yes 
...spam servers? Yes 
...spam bots? No 
...spam activity? Yes 

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »