Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
New bid subdomain PHISHING campaign from IP 52.28.13.83 brought down already?
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: New bid subdomain PHISHING campaign from IP 52.28.13.83 brought down already? (Read 969 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 33891
malware fighter
New bid subdomain PHISHING campaign from IP 52.28.13.83 brought down already?
«
on:
September 17, 2018, 10:23:42 PM »
See:
https://urlquery.net/report/aaa0c665-83b1-4d39-9731-5c52746d51fe
This sub-domain could not be resolved:
https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=d3d3LmZ8c3R8biNebHt8bnt9LmJbIw%3D%3D~enc
Threat events for IP:
https://cymon.io/52.28.13.47
Amazon-02 abuse:
https://urlscan.io/result/88163079-e9f9-46d4-b1ab-fd7e5a109f63
For me Trace Blocked this URL
Blocked due to Top Level Domain
-http://easiersites.bid/holeful/removeto?websiteid=quebec-abo-cb1NDiht Trace extension blocked this tracker/phisher!
polonus (volunteer website security analyst and website error-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
New bid subdomain PHISHING campaign from IP 52.28.13.83 brought down already?