Avast community forum
Home
Help
Search
Login
Register
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
www.citace.com - false positive? (malware - HTML:Iframe-inf)
« previous
next »
Print
Pages: [
1
]
Go Down
Author
Topic: www.citace.com - false positive? (malware - HTML:Iframe-inf) (Read 3625 times)
0 Members and 1 Guest are viewing this topic.
haremheb
Guest
www.citace.com - false positive? (malware - HTML:Iframe-inf)
«
on:
February 01, 2010, 02:34:22 PM »
Hello,
I thing that detected malware on
www.citace.com
is FP... I never had any problem with this page.
Thanks,
Petr
Avast! Free Antivirus v5.0.396 (100131-1)
Logged
Pondus
Probably Bot
Posts: 37534
Not a avast user
Re: www.citace.com - false positive? (malware - HTML:Iframe-inf)
«
Reply #1 on:
February 01, 2010, 02:50:02 PM »
This page seems to be <suspicious>
http://www.UnmaskParasites.com/security-report/?page=www.citace.com
http://www.google.com/safebrowsing/diagnostic?site=www.citace.com
http://www.google.com/safebrowsing/diagnostic?site=4analytics.ws/in.cgi%3F8
«
Last Edit: February 01, 2010, 06:01:48 PM by Pondus
»
Logged
jsejtko
Avast team
Full Member
Posts: 171
Re: www.citace.com - false positive? (malware - HTML:Iframe-inf)
«
Reply #2 on:
February 01, 2010, 02:53:25 PM »
Hello,
not a false positive -> injected iframe at the end of the index.html. It points to 4analytics.ws which is known malware site.
Regards
Logged
BrBrasil
Guest
Re: www.citace.com - false positive? (malware - HTML:Iframe-inf)
«
Reply #3 on:
February 01, 2010, 02:58:15 PM »
Hello,
This means that when you visit this site you get infected?
I visited this site using a trend micro AV but nothing was detected. And I didnt notice any suspected behavior on the machine or in the site?
Thanks!
BrBrasil
Logged
polonus
Avast Überevangelist
Probably Bot
Posts: 33904
malware fighter
Re: www.citace.com - false positive? (malware - HTML:Iframe-inf)
«
Reply #4 on:
February 01, 2010, 05:56:39 PM »
Hi BrBrasil,
At 4analytics.ws there malicious software including 1 scripting exploit resides.
This site was hosted on 2 network(s) including AS49544 (INTERACTIVE3D), AS49770 (SERVERCONNECT),
polonus
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.
Use NoScript, a limited user account and a virtual machine and be safe(r)!
Print
Pages: [
1
]
Go Up
« previous
next »
Avast WEBforum
»
Other
»
Viruses and worms
(Moderators:
Maxx_original
,
misak
) »
www.citace.com - false positive? (malware - HTML:Iframe-inf)
