Author Topic: Domain still blacklisted (PHISHing)?  (Read 926 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Domain still blacklisted (PHISHing)?
« on: October 07, 2019, 11:11:07 AM »
Re: https://urlquery.net/report/d7dbe69d-ae57-45c0-ac9d-2441390ca273
Re: https://urlscan.io/result/1017bbd5-30b1-4c14-813a-bdb81f6ad60b
Site issues detected: https://sitecheck.sucuri.net/results/jaworski-komornik.pl
95 improvement recommendations found up through linting:
https://webhint.io/scanner/eb281b19-a004-417f-85e5-ddd127859112
Blacklisted and cookie report: https://webcookies.org/cookies/jaworski-komornik.pl/28515427?202441
X-Powered-By: PHP/7.2.21
The header exposes web server version details. These server no purpose apart from making life of security auditors and hackers easier, leading them straight to exploits for this particular version of product -> https://toolbar.netcraft.com/site_report?url=s33.linuxpl.com
- IP -> https://www.virustotal.com/gui/ip-address/88.198.46.46/relations  (various detections)

2 vulnerable libraries detected:
https://retire.insecurity.today/#!/scan/04011eba4d0c32a56674522cb8b594654169edeae0c40000e9cfd1abc43ebc0c

2 to flag the site: https://www.virustotal.com/gui/url/b17797f7233febf6f774666f1ebcd70a9d4b8cba523876307c8058cf5653bd56/detection
recent scan, old scan had same results, but was 26 days old  :D

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
« Last Edit: October 07, 2019, 11:20:16 AM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!