Author Topic: Website won't open in browser. Is it insecure in some way?  (Read 178 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 32539
  • malware fighter
Is there abuse via sedoparking? - in code we find:
Quote
//sedoparking dot com/frmpark/kevinherglotz.com/skenzor17/park.js"

Re issue and missing security headers: https://sitecheck.sucuri.net/results/kevinherglotz.com/px.js?q=ch%3D1
Re: CRI inspection
Quote
HTML
-kevinherglotz.com/
4,202 bytes, 46 nodes

Javascript 8   (external 3, inline 5)
INLINE: (function() { let alreadyInsertedMetaTag = false function __insertDappDete
1,238 bytes

INLINE: var abp;
8 bytes

-kevinherglotz.com/​px.js?ch=1
-kevinherglotz.com/​px.js?ch=2
INLINE: function handleABPDetect(){try{if(!abp) return;var imglog = document.createEleme
401 bytes

INLINE: var cname = "212189"; var skrghlp = "Wxm0uHSvQocklQ8Qlopaxmx6Qm%2F%2Fk%2FStj5zfG
132 bytes

-i.cdnpark.com/registrar/v3/​loader.js
INLINE: try{if(typeof handleABPDetect=="function"){handleABPDetect();}}catch(err){}
77 bytes

CSS 3   (external 2, inline 1)
-fonts.googleapis.com/​css?family=Poppins:300
INJECTED

-i.cdnpark.com/themes/registrar/​212189.css
INJECTED

INLINE: @media print {#ghostery-purple-box {display:none !important}}
61 bytes INJECTED


Confluence ad-driven website ABP detection code, see
: https://urlscan.io/result/d3bd055f-8523-4f2a-8ad9-fcbed26912e5/dom/

55 improvement Hints: https://webhint.io/scanner/ebd005c5-1bba-44b9-a638-cfd149cc1516

external link to -https://createhealthylife.ru/-/banner.js created/driven by ads.js via sedoparking...
How come?->
Quote
var google_afd_request = {"client":"ca-dp-sedo89_3ph","drid":"as-drid-2303180379374783","domain_name":"kevinherglotz dot com","session_token":"create"};
var setup = {
domain : '-kevinherglotz.com',
registrar : '-skenzor17',
}; function google_afd_ad_request_done( google_afd_response ) {

if( typeof(google_afd_response.session_token) == 'undefined' ){
google_afd_response.session_token = '';
}

loadContentFrame( google_afd_response.session_token );
}

document.write(
'<script type="text/javascript" ' +
'src="//pagead2.googlesyndication dot com/apps/domainpark/show_afd_ads.js"><\/script>' );

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 32539
  • malware fighter
Re: Website won't open in browser. Is it insecure in some way?
« Reply #1 on: June 23, 2020, 12:37:04 AM »
L.S.

Similar problem with ABP exclusion ad here: results from scanning URL: -http://fanliberators.net/
Domain name is not valid for http & https... -https://site-stats.org/fanliberators.net/ (qualified as untrustworthy by avast's)
Number of sources found: 2
Number of sinks found: 23
Possibly Datafoundry abuse (Austin, USA).
Quote
data-adblockkey="MFwwDQYJKoZIhvcNAQXXXXXXXXXXXXXXXKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_evsuijyjonaztFwXdiCrGh2d0XVZXXXXXXXXXIMu3J8YSx9KAaiobJa177NTCFcFqIJtForafs3UNS1QkIlg==">
  XXXXetc. added because of privacy reasons by me (pol)
Next: Results from scanning URL: -http://i4.cdn-image.com/__media__/js/min.js?v2.2
Number of sources found: 10
Number of sinks found: 12
&
Results from scanning URL: -http://i4.cdn-image.com/__media__/js/min.js?v2.2
Number of sources found: 0
Number of sinks found: 0
On nginx server here: https://www.shodan.io/host/23.219.92.139 ETag; "58edd0d1-5f" main frame cache.

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!