Insecure configuration on LiteSpeed Web Server for this dot xyz domain?

Avast this request should be blocked → htXp://infodroga24tv.pl/redirphp/

Re: https://urlscan.io/result/cc1797d1-b56e-4aca-8ce9-a9116f12fc0f/
Re: https://webcookies.org/cookies/infodroga24tv.pl/29880039?676006
This website is insecure.
66% of the trackers on this site could be protecting you from NSA snooping. Tell -infodroga24tv.pl to fix it.

All trackers
At least 3 third parties know you are on this webpage.

  • -Google
  • -Google

-infodroga24tv.pl -infodroga24tv

  • Tracker could be tracking safely if this site was secure.

Tracker does not support secure transmission.

See: https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=W25mXSN9XWd8MjR0di5wbA%3D%3D~enc main.js

See: https://www.shodan.io/host/103.136.41.114

Insecure DOM-XSS-scan results from scanning URL: -http://infodroga24tv.pl/redirphp/ (host not found by DNS)
Number of sources found: 4 ; name = ; window.location.protocol ;
Number of sinks found: 34 src ; ref ; value
MBAM browser guard will block this uri immediately
as it tries to open up to a suspicious top level domain -track.whiskysour.xyz.

IP related detections, see: https://www.virustotal.com/gui/ip-address/103.136.41.114/relations

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)

L.S.

For those among us who wanna research this redir.php malcode further:
https://github.com/m0n0ph1/malware-1/blob/master/Zeus/source/other/redir.php

Also this produces an insecure connection, giving in -http://infodroga24tv.pl/s.php
which is immediately recognized and blocked inside Avast Secure Browser
as being malware/ e.g. malicious programming insecurity!

Well done, Sander & the Avast Browser Team, that is why polonus is betatesting the beta-version of the
Avast Secure Browser :wink:

polonus