Malicious calls to powerpint.net on FT [Merged threads]
#1
Original Poster
Join Date: Aug 2007
Location: Near SEA
Programs: UA MM, AS MVPG75K, Marriott Lifetime Gold
Posts: 7,969
Malicious code in FT ad?
I've been getting a number of TrendMicro warnings about possible malicious code when visiting FT. Believe it's related to the MileagePlus Explorer card ads.
Error below:
Error below:
#4
Original Poster
Join Date: Aug 2007
Location: Near SEA
Programs: UA MM, AS MVPG75K, Marriott Lifetime Gold
Posts: 7,969
#6
Original Poster
Join Date: Aug 2007
Location: Near SEA
Programs: UA MM, AS MVPG75K, Marriott Lifetime Gold
Posts: 7,969
You can check maliciousness here:
http://global.sitesafety.trendmicro.com/
using "powerpint.net/in.cgi?2" as the destination.
#7
Join Date: Oct 2009
Location: Brisbane Australia
Programs: Singapore, Cathay, QANTAS, Delta, Velocity, Etihad
Posts: 429
I suggest having your ad reps look for redirects on the Chase ads to route via powerpint.net. Right now anyone browsing your site with Trend Micro would get this result.
You can check maliciousness here:
http://global.sitesafety.trendmicro.com/
using "powerpint.net/in.cgi?2" as the destination.
You can check maliciousness here:
http://global.sitesafety.trendmicro.com/
using "powerpint.net/in.cgi?2" as the destination.
#9
No longer with Internet Brands
Join Date: Mar 2011
Location: Los Angeles, CA
Programs: DL DM 1.6MM, Marriott LT Plat
Posts: 5,343
TrendMicro warning
Hi all,
Our internal malvertising team has rescanned the ads in question (Chase) and determined that the ads are safe. Also, Google's SafeBrowsing service did not flag any of the content.
Most likely the reason it was flagged is due to differences in classification of malicious content; the website VirusTotal shows that only 1 out of 17 security sites have listed the URL mentioned here as malicious. That one security site is TrendMicro (https://www.virustotal.com/url/bd943...5b3a/analysis/).
Please let me know if we can be of any further help on this!
Paul
Our internal malvertising team has rescanned the ads in question (Chase) and determined that the ads are safe. Also, Google's SafeBrowsing service did not flag any of the content.
Most likely the reason it was flagged is due to differences in classification of malicious content; the website VirusTotal shows that only 1 out of 17 security sites have listed the URL mentioned here as malicious. That one security site is TrendMicro (https://www.virustotal.com/url/bd943...5b3a/analysis/).
Please let me know if we can be of any further help on this!
Paul
Last edited by IBobi; Feb 9, 2012 at 1:04 pm
#10
Flyertalk Evangelist and Moderator: Coupon Connection and Travel Products
Join Date: Jul 2000
Location: Milton, GA USA
Programs: Hilton Diamond, IHG Platinum Elite, Hyatt Discoverist, Radisson Elite
Posts: 19,040
Malicious calls to powerpint.net on FT [Merged threads]
I am having problems browsing Flyertalk.... I am having to double click on the "Back" button on my IE browser.Used to only have to click once... and I see at the bottom of the screen a web address that has powerpint.net in the name.
That is new to me... never noticed that before.
That is new to me... never noticed that before.
Last edited by wharvey; Feb 14, 2012 at 3:43 pm
#12
No longer with Internet Brands
Join Date: Mar 2011
Location: Los Angeles, CA
Programs: DL DM 1.6MM, Marriott LT Plat
Posts: 5,343
We're not seeing it as an ad; did you try clearing your cache?
Also is it possible it's local to your machine, i.e. a bad cookie or malware? Issue has not been reported by other users as yet.
Also is it possible it's local to your machine, i.e. a bad cookie or malware? Issue has not been reported by other users as yet.
#13
Flyertalk Evangelist and Moderator: Coupon Connection and Travel Products
Join Date: Jul 2000
Location: Milton, GA USA
Programs: Hilton Diamond, IHG Platinum Elite, Hyatt Discoverist, Radisson Elite
Posts: 19,040
Looks like this is related to this issue I just saw in another thread:
http://www.flyertalk.com/forum/techn...ode-ft-ad.html
I tried clearing the cache... but still only getting the powerpint.net message at the bottom when on FT... and having to doble click the back button to get back to the previous page.
http://www.flyertalk.com/forum/techn...ode-ft-ad.html
I tried clearing the cache... but still only getting the powerpint.net message at the bottom when on FT... and having to doble click the back button to get back to the previous page.
#15
FlyerTalk Evangelist
Join Date: Nov 2009
Location: Northeast Kansas | Colorado Native
Programs: Amex Gold/Plat, UA *G, Hyatt Globalist, Marriott LT Gold, NEXUS, TSA Disparager Unobtanium
Posts: 21,606