« previous next »
Pages: [1]   Go Down

Author Topic: Malicious URL fake block abuse.  (Read 3065 times)

0 Members and 1 Guest are viewing this topic.

Luore

  • Guest
Malicious URL fake block abuse.
« on: April 21, 2012, 05:47:19 AM »
So I have a dropbox set up for stuff for my own and for forums, however I get such things like.
http://imgur.com/pketN

Which knowing that basically 99% of it is pictures and such, and others are homework / programming stuff.

Now whether its the avast team decidedly take whatever reports and shove it down as an actual issue, or a 3rd party problem, it should be dealt with as it is so easily abused.

Apparently someone seems to have a vendetta against me on the forum or something, but its childish and rather annoying.
Logged

Offline AntiVirusASeT

  • Poster
  • *
  • Posts: 462
Re: Malicious URL fake block abuse.
« Reply #1 on: April 21, 2012, 07:01:23 AM »
it is possible for malware to be inside JPG files. http://www.virusbtn.com/news/2012/04_04.xml?rss

nobody does things like creating false positives to feud against u...it is incredibly stupid.

i recommend u to scan all files in ur dropbox with tools like malwarebytes/ hitmanpro to see if they are safe.

if ur sure they are safe, please report the false positive @ http://forum.avast.com/index.php?board=4.0

edit 1: actually, just scan the offending file as in ur screenshot. (it is sig4.jpg)
« Last Edit: April 21, 2012, 05:16:16 PM by AntiVirusASeT »
Logged

Luore

  • Guest
Re: Malicious URL fake block abuse.
« Reply #2 on: April 21, 2012, 07:05:44 AM »
Considering I set up and made the image myself, yes its malware free.

Also not that odd with people that are intolerant of any content, its rather childish but people do that.
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33904
  • malware fighter
Re: Malicious URL fake block abuse.
« Reply #3 on: April 21, 2012, 04:17:54 PM »
Also consider this report for the AS you are on:
AS Name: AMAZON-AES - Amazon.com, Inc.
IPs allocated: 954368
Blacklisted URLs: 167

Hosts...
...malicious URLs? Yes 
...badware? Yes 
...botnet C&C servers? Yes 
...exploit servers? No 
...Zeus botnet servers? Yes 
...Current Events? Yes 
...phishing servers? No 
...spam servers? No 
...spam bots? Yes 
...spam activity? Yes 

This is a suspicious part of code there:
wXw.tumblr.com/share/photo?source= benign
[nothing detected] (jsvar) wXw.tumblr.com/share/photo?source=
     status: (referer=s.imgur.com/min/js?13)saved 2932 bytes b77d48fc14ba0b124f5a4f1589d3c0a3c58a821f
     info: [img] secure.assets.tumblr dot com/images/logo.png?alpha&5
     info: [script] edge.quantserve dot com/quant.js
     info: [img] pixel.quantserve dot com/pixel/p-19UtqE8ngoZbM.gif
     info: [decodingLevel=0] found JavaScript
     error: undefined variable s
     suspicious,

polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37534
  • Not a avast user
Re: Malicious URL fake block abuse.
« Reply #4 on: April 21, 2012, 04:28:39 PM »
Quote
i recommend u to scan all files in ur dropbox with tools like malwarebytes/ hitmanpro to see if they are safe.
malwarebytes only look for Executable files....
so why not use the 40+ malware scanners you find at www.virustotal.com    that would include the one used by hitmanPRO and a bit more   ;)
Logged

Offline AntiVirusASeT

  • Poster
  • *
  • Posts: 462
Re: Malicious URL fake block abuse.
« Reply #5 on: April 21, 2012, 05:16:52 PM »
thx for pointing out the mistake  :-[
Logged
Pages: [1]   Go Up
« previous next »