Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Be aware of abuse on glitch dot me.
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: Be aware of abuse on glitch dot me. (Read 1463 times)
0 Members and 1 Guest are viewing this topic.
polonus
Avast Überevangelist
Probably Bot
Posts: 33904
malware fighter
Be aware of abuse on glitch dot me.
«
on:
May 18, 2020, 12:45:32 AM »
See:
https://urlscan.io/result/cd0c0a10-b5d2-44ae-830e-7fb8fa654dca/
Glitch dot me is a development platform (Amazon/CloudFlare) for application developers.
In this case a netcraft site report showed a score of 7 red out of 10 for this address:
https://sitereport.netcraft.com/?url=https://equinox-clear-soda.glitch.me
.
Going to the IP it resided at we found malware:
https://www.virustotal.com/gui/ip-address/34.228.120.225/relations
Various Android malcode flagged.
Hosted at see: ->
https://www.shodan.io/host/34.228.120.225
See: -https://urlscan.io/api/v1/result/cd0c0a10-b5d2-44ae-830e-7fb8fa654dca/ (api scan)
Residing here with a Netcraft risk status of 10 red out of 10:
https://sitereport.netcraft.com/?url=https%3A%2F%2Fec2-34-192-147-26.compute-1.amazonaws.com
CloudFlare CDN tracking detected.
Blocked for me by ZenMate in the code: -http://equinox-clear-soda.glitch.me/ as adware:
In -https://cdn.adligature.com/lbx/prod/rules.js (advally code).
Possibilities of abuse as given by Fortinet's:
https://fortiguard.com/search?q=equinox-clear-soda.glitch.me&engine=1
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
«
Last Edit: May 18, 2020, 01:47:51 AM by polonus
»
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
Be aware of abuse on glitch dot me.