suspicious website

system · 2015-05-07T12:33:10.000Z

Hello,
Where can I submit a false message about the virus on the website.

blocked website by avast:
http://motobrothers.com.pl/
and
http://shindo.pl/

Please help, because all avast users cannot enter the site.

Pondus · 2015-05-07T13:00:17.000Z

IP history https://www.virustotal.com/en/ip-address/85.10.197.136/information/
multiple domains on same IP and many are blacklisted

IP void http://www.urlvoid.com/ip/85.10.197.136

[b]IP ADDRESS: 85.10.197.136[/b]
We have found in our database of already analyzed websites that there are 80 websites hosted in the same web server with IP address 85.10.197.136 and IP hostname server.vdl.pl. Remember that it is not good to have too many websites located in the same web server because if a website gets infected by malware, it can easily affect the online reputation of the IP address and also of all the other websites.

if you think the block is wrong, report it here https://support.avast.com > avast virus lab

polonus · 2015-05-07T14:10:53.000Z

On htxp://motobrothers.com.pl/
The following plugins were detected by reading the HTML source of the WordPress sites front page.

qtranslate 2.5.34 latest release (2.5.39) Update required
http://www.qianqin.de/qtranslate/
contact-form-7 3.3.3 latest release (4.1.2) Update required
http://contactform7.com/
image-gallery-reloaded 2.1.5 latest release (2.1.6) Update required
http://18elements.com/tools/wordpress-image-gallery-reloaded

Netcraft Website Risk Status 1 red out of 10: http://toolbar.netcraft.com/site_report?url=http://motobrothers.com.pl

Name Servers Versions
WARNING: Name servers software versions are exposed:
88.198.23.35: “9.7.3”
88.198.69.134: “9.7.3”
Exposing name server’s versions may be risky, when a new vulnerability is found your name servers may be automatically exploited by script kiddies until you patch the system. Learn how to hide version.

IP badness history: https://www.virustotal.com/nl/ip-address/85.10.197.136/information/

Whenever Kryptik BNQL was detected, it could be a FP.

polonus

Announcements