« previous next »
Pages: [1]   Go Down

Author Topic: Fortinet's flags domain with IP of Forum spam proxy!  (Read 948 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33900
  • malware fighter
Fortinet's flags domain with IP of Forum spam proxy!
« on: September 17, 2018, 03:18:42 PM »
See: https://urlquery.net/report/113a67e7-6150-40a6-9fd8-58ef5cbe59ef
WP Version does not appear to be latest - update now. Reputation Check gives WARNING.
See: https://www.virustotal.com/#/url/1480a596354e9d5501ebdbf20418624e5a82a0bfa2b361b3e761f5a8af027158/details
Only Fortinet's flags: see observed IP changes and subdomains involved denotes spamming:
https://www.virustotal.com/#/domain/oloditika.gr
https://www.abuseipdb.com/check/5.189.155.66  various abusive actions reported.
See redirects in the website code: https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=XWxdI1t0W2t8Lmd9~enc
error interoperability: Response should include 'content-type' header. -http://oloditika.gr/
http-cache: 1 error - the directive "must-revalidate" is not recommended -http://oloditika.gr/
Missed by Snyk on webhint scan 1 viulnerable jQuery library used: https://retire.insecurity.today/#!/scan/24832cf6e339b8c4563159d14b7f4a126e0add41af3404bcadfbee5055cb2380
uMatrix will block -https://securepubads.g.doubleclick.net/gampad/ads? etc.  for me
And this results in a error message from facebook: -https://static.xx.fbcdn.net/rsrc.php

Certainly a website to shun,

polonus (volunteer website security analyst and website error-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!
Pages: [1]   Go Up
« previous next »