« previous next »
Pages: [1]   Go Down

Author Topic: airlinemeals.net False Ident ??  (Read 2202 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
airlinemeals.net False Ident ??
« on: May 31, 2015, 10:56:19 PM »
http://www.airlinemeals.net/

website is being identified in chrome as being a nasty. I send same to virustotal and it shows clean no problems found. Is the site flagged wrongly?
Logged

Offline polonus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 33900
  • malware fighter
Re: airlinemeals.net False Ident ??
« Reply #1 on: May 31, 2015, 11:17:33 PM »
Could be a general IP detection: https://www.virustotal.com/nl/ip-address/192.185.41.46/information/
But the main reason Avast flags the website because it is on afraid dot org.
See: http://www.dnsinspect.com/airlinemeals.net/1433106873
If site steers away from being at afraid dot org avast team members may unblock it.

polonus (volunteer website security analyst and website error-hunter)
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline HonzaZ

  • Avast team
  • Advanced Poster
  • *
  • Posts: 1038
Re: airlinemeals.net False Ident ??
« Reply #2 on: June 01, 2015, 09:17:39 AM »
Exactly. DNS hijacked, you need to either move from afraid.org or pay for the stealth account for it not to happen again.

Legit: 192.185.41.46 - airlinemeals.net

Malicious:
95.211.10.82 - adgrixx.airlinemeals.net
176.114.0.105 - sdload.airlinemeals.net
and others.
Logged
Pages: [1]   Go Up
« previous next »