Author Topic: Lycos Tripod ALERT  (Read 4461 times)

0 Members and 1 Guest are viewing this topic.

yarok

  • Guest
Lycos Tripod ALERT
« on: April 26, 2013, 10:41:06 PM »
Ever since Wednesday, all FREE Tripod pages are blocked with a Bad URL alert (Trojan 32 gen {gzip}).

Example:

hxxp://malignantselflove.tripod.com (substitute tt for xx in hxxp)

Pages hosted by Tripod under a PAID hosting plan do not trigger this alert.

Example:

hxxp://www.narcissistic-abuse.com (actually: hxxp://samvak.tripod.com )

Can't take a screen shot as Avast won't let me through.

Is this a FP (false positive)?

Yarok
« Last Edit: April 27, 2013, 01:12:11 AM by yarok »

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Lycos Tripod ALERT
« Reply #1 on: April 26, 2013, 11:21:41 PM »
Hi yarok,

Make those links non-click-through (hxtp etc.) else they could be taken for content spam,
for those two links can be visited normally without getting an avast! alert,

polonus

Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37504
  • Not a avast user
Re: Lycos Tripod ALERT
« Reply #2 on: April 26, 2013, 11:21:59 PM »
if you think this is wrong, report it here   http://www.avast.com/en-no/contact-form.php

yarok

  • Guest
Re: Lycos Tripod ALERT
« Reply #3 on: April 27, 2013, 01:15:16 AM »
Thanks, Pondus.

Used the form. Don't know if it's wrong. That's why I asked whether this was a FP.

Y.

armadillo69

  • Guest
Re: Lycos Tripod ALERT
« Reply #4 on: April 28, 2013, 07:56:55 PM »
Hi, I have the same problem. I have two websites with a URL ending ".tripod.com". Avast has been blocking access to these sites since Wednesday.

I have googled other websites hosted by Tripod, and almost all of them are inaccessible on computers running Avast antivirus. Other antivirus programs report that there are no malware threats on those sites.

Armadillo

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37504
  • Not a avast user
Re: Lycos Tripod ALERT
« Reply #5 on: April 28, 2013, 08:00:46 PM »
Hi, I have the same problem. I have two websites with a URL ending ".tripod.com". Avast has been blocking access to these sites since Wednesday.

I have googled other websites hosted by Tripod, and almost all of them are inaccessible on computers running Avast antivirus. Other antivirus programs report that there are no malware threats on those sites.

Armadillo
what are the URLs

armadillo69

  • Guest
Re: Lycos Tripod ALERT
« Reply #6 on: April 28, 2013, 08:03:08 PM »
h**p://internetradio.tripod.com and h**p://radiomiamigo.tripod.com

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37504
  • Not a avast user
Re: Lycos Tripod ALERT
« Reply #7 on: April 28, 2013, 08:08:34 PM »
« Last Edit: April 28, 2013, 08:13:23 PM by Pondus »

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33891
  • malware fighter
Re: Lycos Tripod ALERT
« Reply #8 on: April 28, 2013, 08:18:04 PM »
The first one is alerted by avast! Webshield as infected with VBS:Malware-gen, so do not visit  All in one Keylogger report is being flagged ->
-http://webcache.googleusercontent.com/search?client=flock&channel=fds&q=cache:HoJi2PY7wwEJ:http://members.tripod.com/praisegirl/keylogger_report/01_23_2008_21_14_20/Log/Text/01_23_2008_21_14_18w.htm%2Bhttp://www.tripod.lycos.com/%2526m_LO%3D1%2526m_PR%3D26&oe=utf-8&hl=en&ct=clnk |{gzip}

pol
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

armadillo69

  • Guest
Re: Lycos Tripod ALERT
« Reply #9 on: April 28, 2013, 08:35:04 PM »
Thanks guys for your help!

I've had a look at the reports at

quttera    http://quttera.com/detailed_report/internetradio.tripod.com
and
urlquery   http://urlquery.net/queued.php?id=23080684

I can't see any issues there, so why should Avast be blocking access to this particular website?

Thanks again,

Armadillo