Author Topic: Background connections that should be blocked?  (Read 1933 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Background connections that should be blocked?
« on: February 12, 2017, 04:36:35 PM »
1. http://toolbar.netcraft.com/site_report?url=http://tlb.hwcdn.net
and been reported 19 times: https://www.abuseipdb.com/check/69.16.175.10
malicious host: https://otx.alienvault.com/indicator/ip/69.16.175.10/
on IP: https://www.herdprotect.com/ip-address-69.16.175.10.aspx
and https://www.threatminer.org/host.php?q=69.16.175.10
adware mainly and tracking: http://www.malwareurl.com/ns_listing.php?as=AS20446
-> https://www.threatcrowd.org/ip.php?ip=69.16.175.10

2. Not blacklisted? IP Address:   -94.31.29.55
[ IP Lookup ]
Hostname:   -94.31.29.55.IPYX-077437-ZYO.above.net
IP Location:   - United Kingdom (GB)
ISP:   Zayo Group EU Limited
Organization:   netDNA

but malware reported on that IP: https://cymon.io/94.31.29.168

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Background connections that should be blocked?
« Reply #1 on: May 27, 2017, 02:52:35 PM »
That malware tracker is still active: -94.31.29.55.IPYX-077437-ZYO dot above dot net
Re: https://www.abuseipdb.com/whois/94.31.29.55
and http://toolbar.netcraft.com/site_report?url=94.31.29.55.IPYX-077437-ZYO.above.net
https://cymon.io/94.31.29.55   Lu Lan Shanghai's disrupting ongoing spam abuse for ye all.
Read: https://groups.google.com/forum/#!topic/news.admin.net-abuse.email/N-5exO_i2fI

polonus (volunteer wbsite security analyst and website error-hunter)
« Last Edit: May 27, 2017, 02:57:56 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!