Hi everyone, I’m new here. Just read Avast news on the above exploits on legit websites. Like to report the following website for Avast to look into. Cheers.
Well it shouldn’t be avast looking into it but the site owners, etc.
However, the learncpp.com loads OK for me and no alert, the detection is on the feedburner.com site. It is only when you click on the Entries RSS link that avast alerts having tried to load the hXXp://feeds.feedburner.com/LearnCpp page.
So it look like the feedburner.com site has been hacked as there has been a script inserted into that page right in the middle of a Sentence (see edited image to make it easier to see). This is a 1x1 sized iframe, suspicious.
Posted on this forum as the ‘avast news’ April 29, 2009 mentions:
"If avast! displays this warning, you should discontinue your attempt to connect to that particular website and either report the infection to the relevant party so that it can be removed, or post a message on the avast! forum in the section Viruses and Worms so that it can be investigated to determine whether the website is really infected. "
True, avast detected the exploit as soon as the site learncpp was accessed. Not sure why others are not detecting it stright away.
Because avast basically is one of the few that even check and avast IMHO is the best, of all the ones reported in these forums that I have checked every one has proved to be a good detection.
avast is all over this latest fast growing exploit of injecting iframes or script (into legit sites) like a rash.
I am new to this site as well, and need to let someone know I got the warning about hacked websites when trying to access Southwest DING! Will someone be able to check hxxp://www.southwest.com?
Nothing (no avast alert) on the URL you gave is that full URL ?
What is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx or URL, see #### below) ?
Check the avast! Log Viewer (right click the avast ‘a’ icon), Warning section, this contains information on all avast detections. C:\Program Files\Alwil Software\Avast4\ashLogV.exe - Or check the source file using notepad C:\Program Files\Alwil Software\Avast4\DATA\log\Warning.log
When posting URLs to suspect sites, change the http to hXXp so the link isn’t active (clickable) avoiding accidental exposure.
Iwant to report another website with the HTML:lframe-inf virus, www.slingo.com… When attempting to download a number of different games I was told by Avast to disconnect…
Please, make the link non-clickable by putting wXw.slingo.com
Apparently not functioning, but this might be it:
Level: 2) Url checked: (script source)
hxtp://ad.yieldmanager.com/+rm_url+
Blank page / could not connect
No ad codes identified
Malicious software includes 178 trojan(s), 171 exploit(s), 49 scripting exploit(s).
This site was hosted on 6 network(s) including AS14778 (INKTOMI), AS36752 (YAHOO), AS14777 (INKTOMI).
Where you should really be reporting it is the webmaster as it looks like their site has been hacked, very common now. I have had a very quick rummage around but didn’t find anything - Can you give the full path that avast is alerting on so we don’t have to go looking, note the comments #### below.
Please ‘modify’ your post change the URL from http to hXXp or www to wXw, to break the link and avoid accidental exposure to suspect sites, thanks.