« previous next »
Pages: [1] 2   Go Down

Author Topic: HTML:Iframe-inf alert on UStream (False positive?)  (Read 9771 times)

0 Members and 1 Guest are viewing this topic.

Offline Firefly24

  • Jr. Member
  • **
  • Posts: 30
HTML:Iframe-inf alert on UStream (False positive?)
« on: November 01, 2011, 03:09:03 AM »
Hoping this is a false positive, but I got an alert on UStream (even on just its homepage) stating the claimed infection was HTML:Iframe-inf.

I will do a full scan now just in case, but I wanted to ask about it here in case it might really be just a false positive.


EDIT: The scan found nothing, and there are no other symptoms.
« Last Edit: November 01, 2011, 04:08:15 AM by Firefly24 »
Logged

Offline Pondus

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 36282
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #1 on: November 01, 2011, 08:00:36 AM »
« Last Edit: November 01, 2011, 08:04:00 AM by Pondus »
Logged
“Ah beer. The cause of and the solution to all of life’s problems.”

"Operator! Give me the number for 911!"

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61691
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #2 on: November 01, 2011, 10:42:45 AM »
Report    2011-11-01 07:39:50 (GMT 1)
Website    ustream.tv
Domain Hash    a17dced5316ab4a08dc64760706dd1f3
IP Address    199.66.238.51 [SCAN]
IP Hostname    -
IP Country    US (United States)
AS Number    29834
AS Name    USTREAM - USTREAM.TV INC
Detections    0 / 23 (0 %)
Status    CLEAN

Report    2011-11-01 11:06:25 (GMT 1)
IP Address    199.66.238.51
IP Hostname    -
IP Country    US
AS Number    N/A
AS Name    N/A
Detections    0 / 26 (0 %)
Status    CLEAN
Logged
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - Thunderbird 68.2.2 [EM] - ACP/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline tiptopweb

  • Newbie
  • *
  • Posts: 7
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #3 on: November 01, 2011, 11:30:28 AM »
i have same problem
what to do ?
thanks
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61691
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #4 on: November 01, 2011, 11:33:31 AM »
Quote from: tiptopweb on November 01, 2011, 11:30:28 AM
i have same problem
what to do ?
thanks

You can report a possible FP here: http://www.avast.com/contact-form.php?loadStyles
Logged
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - Thunderbird 68.2.2 [EM] - ACP/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline tiptopweb

  • Newbie
  • *
  • Posts: 7
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #5 on: November 01, 2011, 11:36:11 AM »
thanks Asyn
not sure its FP
ustream another... company without any contact form
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61691
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #6 on: November 01, 2011, 11:40:30 AM »
Logged
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - Thunderbird 68.2.2 [EM] - ACP/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Sirmer

  • Avast team
  • Sr. Member
  • *
  • Posts: 322
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #7 on: November 01, 2011, 01:13:23 PM »
Hello,
we detect there stats1.in/stream?1 and it is a correct detection.
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61691
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #8 on: November 01, 2011, 01:14:49 PM »
Quote from: Sirmer on November 01, 2011, 01:13:23 PM
Hello,
we detect there stats1.in/stream?1 and it is a correct detection.

Thanks Sirmer..!
Logged
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - Thunderbird 68.2.2 [EM] - ACP/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline polonus

  • Avast Überevangelist
  • Maybe Bot
  • *****
  • Posts: 31904
  • malware fighter
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #9 on: November 01, 2011, 06:13:08 PM »
See: http://google.com/safebrowsing/diagnostic?site=stats1.in/ redirecting to a hidden iframe
McAfee comes up with: McAfee-GW-Edition   2010.1D   2011.10.31   Heuristic.LooksLike.HTML.Embedded-Data.N

polonus
« Last Edit: November 01, 2011, 06:23:41 PM by polonus »
Logged
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline tiptopweb

  • Newbie
  • *
  • Posts: 7
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #10 on: November 01, 2011, 07:33:15 PM »
nothing fixed ?
what to do?
thanks
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61691
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #11 on: November 01, 2011, 07:35:35 PM »
Quote from: tiptopweb on November 01, 2011, 07:33:15 PM
nothing fixed ?
what to do?
thanks

Well, it's a legit detection. (See Reply #7)
Logged
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - Thunderbird 68.2.2 [EM] - ACP/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline tiptopweb

  • Newbie
  • *
  • Posts: 7
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #12 on: November 01, 2011, 07:38:29 PM »
very strange... nobody correct anything
we will keep this message all days?
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 61691
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #13 on: November 01, 2011, 07:51:00 PM »
Send their webmaster to this topic.
Logged
Win 8.1 [x64] - Avast PremSec 19.9.2394.B1 - CC 5.63 - EEK - Firefox ESR 68.2 [NS/AOS/uBO] - Thunderbird 68.2.2 [EM] - ACP/ASL.BC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline tiptopweb

  • Newbie
  • *
  • Posts: 7
Re: HTML:Iframe-inf alert on UStream (False positive?)
« Reply #14 on: November 01, 2011, 07:52:45 PM »
ustream dont have any contact form
they dont care
they are just interested to sell advertising
Logged
Pages: [1] 2   Go Up
« previous next »