« previous next »
Pages: [1]   Go Down

Author Topic: ACCOUNTSERVERGROUP dot COM abuse ....  (Read 994 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33900
  • malware fighter
ACCOUNTSERVERGROUP dot COM abuse ....
« on: September 19, 2017, 03:20:32 PM »
See: https://urlquery.net/report/87d0f605-63a7-4f49-8894-993710e2b844
Re: https://urlscan.io/result/4418ff43-d470-4bd2-8f28-350355efaa79#summary
Fortinet's the only one to detect? -> https://www.virustotal.com/#/url/703d86352915e2872030b511e543f7b974ce198e6c709f30335cb3d86d273642/detection
But on the redirect we have better detection: https://www.virustotal.com/#/url/d0a50cd581327fc36b410f24a6f6e433d0ceb78c96d1501f3a1983a3edebee4d/detection
F-status with recommendation: https://observatory.mozilla.org/analyze.html?host=bancobif.net
Sign of compromittal: http://www.domxssscanner.com/scan?url=https%3A%2F%2Fbancobif.net%2F
What goes on there -https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=bancobif.net%2F&ref_sel=GSP2&ua_sel=ff&fs=1

OpenSSH 5.3 (protocol 2.0)  insecure flagged by Google Safe Browsing...

7 red out of 10 for the hosting default page: http://toolbar.netcraft.com/site_report?url=http://uscentral455.accountservergroup.com

Blocked for me is -http://usd.quebec-bin.com/zcvisitor/2b08eaa3-9d3d-11e7-97f0-1239ab7df902?campaignid=41a83290-93c2-11e7-b705-0e81439a55b2

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »