What is "flag.php" malware?

All of a sudden today I am getting the error as follows:

URL: http://api.hostip.info/flag.php
Process: I:\Program Files\Avant Browser\webkit\ch…
Infection: URL:Mal

It makes no difference what browser I use, I get this error. in this case it is Avant. Normally I use Firefox and if I have to, IE. All are the current versions. I am using Avast Internet Security version 8.0.1483. The virus database is 130428-0. What is this “malware”? And how do I get rid of it. The scans find nothing.

Hi azism,

What site are you on when this alert occurs?

Have you ever used something similar to hostip.info?

~!Donovan

hi azism,

Scanning with real-time website scanners comes up pretty much empty of malware results. The only exception is zulu.zscaler: http://zulu.zscaler.com/submission/show/d33ad576383b417f45d913ad7a3fff4a-1367192954 You’ll note here that more than one link to this site is marked as suspicious. Other than that, the other scanners come up clean:
http://www.urlvoid.com/scan/api.hostip.info/
http://sitecheck.sucuri.net/results/api.hostip.info/flag.php
http://urlquery.net/report.php?id=2218973
https://www.virustotal.com/en/url/6d559d470b3082586459ad8e7fd336c940b68edb3d827c1ba4c3575e6e4fdaf4/analysis/1367193024/

Network Shield is flagging this site, see attached:

Scanning the main website brings up an XML file without normal web content: http://zulu.zscaler.com/submission/show/4a6865a60495c8ae12e7545faf45c0dd-1367193657 Unable to properly scan the site, zulu did not complete the scan as no Web Server has been found yet. Could be avast! is flagging the site as a whole because of this issue.

As the NShield blocked the two connection attempts, there likely is nothing to clean up. Suggestion: Since you use AIS, use the sandbox function for whatever browser you are running atm. If you were indeed using the Sandbox to run your browsers (smart), then go to Tools>Sandbox>Maintenance within the avast! program and clear the sandbox out. If you do not see the warnings again, you should be good to go.