Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
Multiple threat detection!
Mirandel
Member UncommonPosts: 143
For 2 days now my antivirus program (AVG) recognises some virus on mmorpg.com . All I can say it is labeled as “top[1].htm” May be it is false alarm, but so far I cannot read the site without multiple warnings coming out.
Comments
using avg as well and not getting any warnings
Sorry for my english
Probably a word or phrase that got picked-up in an ad (that's my guess anyway), I'm not getting any kind of errors or warnings.
View the source for the site and locate any reference to that page...if you can.
And what are these ads of which you people speak?
I miss the MMORPG genre. Will a developer ever make one again?
Explorer: 87%, Killer: 67%, Achiever: 27%, Socializer: 20%
My avast is picking up a threat as well.
This started today, nothing was picked up before today.
Info from avast:
js.downloader-NT [trj]
http://202.133.245.100/np/top.asp
only one thing on this site that might trigger this1its the new ads of gold seller!never had those before!so if you see the gold seller ads scan it for fun probably where your issue is!gold seller are renoun for their shady practice!
Wasn't doing it late last night, but I'm now getting a warning from Kaspersky on every page here, with no other tabs open, sometimes twice from pages. Identifies as a generic exploit script.
http://202.133.245.100/np/top.asp
A quick IP search gives this info:
--------------------------------------------------
202.133.224.0 - 202.133.255.255
with your organisation
20031212
20041223
20060117
20020715
20060127
20070521
netname: ABOVENET
descr: AboveNet Communications Taiwan
country: TW
admin-c: FC159-AP
tech-c: CG195-AP
remarks: ---------------------------------------------------
remarks: This object can only be modified by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to
remarks: account name in the subject line.
remarks: ----------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-TW-ABOVENET
mnt-routes: MAINT-TW-ABOVENET
changed:
status: ALLOCATED PORTABLE
changed:
changed:
source: APNIC
person: Felix Chou
address: Chief Telecom Inc.
address: No.250, Yuang Guang St.,
address: Neihu Chiu, Taipei 114,
address: Taiwan, R.O.C.
country: TW
phone: +886-2-2657-6688
fax-no: +886-2-2797-2998
e-mail:
nic-hdl: FC159-AP
mnt-by: MAINT-TW-UNIGATE
changed:
changed:
source: APNIC
person: Chief Group
address: UniGate Telecom Inc.
address: No.250, Yuang Guang St.,
address: Neihu Chiu, Taipei 114,
address: Taiwan, R.O.C.
country: TW
phone: +886-2-2657-6688
fax-no: +886-2-2657-6460
nic-hdl: CG195-AP
e-mail:
e-mail:
e-mail:
changed:
mnt-by: MAINT-TW-UNIGATE
source: APNIC
----------------------------------------------------------
A little generic in description, but has "Gold seller" written all over it.
A Modest Proposal for MMORPGs:
That the means of progression would not be mutually exclusive from the means of enjoyment.
Im getting Spybot blocks of wow2010.dll
"Never met a pack of humans that were any different. Look at the idiots that get elected every couple of years. You really consider those guys more mature than us? The only difference between us and them is, when they gank some noobs and take their stuff, the noobs actually die." - Madimorga
nortan fired off a red alert to. i then gogled mmorpg.com an the shite was shown as save in the nortan search indicator.came back here an so far so good.Newsrama was red for sevrial days to somehting called a drive by download. their fixed now tho.now off fora virus scan sigh.
"Civilized men are more discourteous than savages because they know they can be impolite without having their skulls split, as a general thing." Robert E. Howard, The Tower of the Elephant (1933)
My avast was also picking it up only today
Kaspersky Anti-Virus 2009:
HEUR:Exploit.Script.Generic
on http://202.133.245.100/np/top.asp
mmorpg staff you should really check your code !!
My AVG picked up 2 as well. It is set to auto delete though so it didnt get vaulted
My AVG picked up the same thing today. Looks like it was a bad ad in the top banner that caused the flag to go off.
There are 3 types of people in the world.
1.) Those who make things happen
2.) Those who watch things happen
3.) And those who wonder "What the %#*& just happened?!"
I'm getting threats when I try to view blogs, too.
I've gotten these warnings every time I try to view an official blog entry on the site, so it's worth looking into.
mm they might have to remove all ads and scan them all !so this is proabably why we get issue trying to access this page then!i do hope mmorpg crew verify and correct this this !
(Got this right now trying to go to http://www.mmorpg.com/blogs/staffblog)
SWG: Astromechs & Friday Features and Guides from SWG O-forums (2003-2005) (Read last post first for clarity)
Hello all,
Yes over the past couple days I've been fighting a script that was intermittently attempting to serve a trojan to our users of our servers. We've been clean for a while now but I am still watching this very closely and will continue to do so. The reported attack site pages you are seeing come from stopbadware.org which work with Google, FireFox and other companies to help inform users of potential problems out there on the web. Once I am sure that we are free of these issues I will submit to have those urls removed from their blacklist.
I'm sorry for the inconvenience this has caused anyone. I'd also like to emphasize how important it is that people have an anti virus program installed on their computers as these types of scripting attacks have increased in size across the internet monumentally.
If anyone get's anymore alerts from their virus scanners from MMORPG.com please email me at ben @ mmorpg.com with the page you got it on and I will investigate.
- MMORPG.COM Staff -
Ive been using adblocker and havnt gotten any of these messages yet, so I would recommend everyone enables it.
My Guild Wars 2 Vids
My Kaspersky was yelling at me for the same exact thing/IP yesterday. Happened everywhere on MMORPG.com everytime.
EDIT: Thanks, Meddle. I'd like to add that I was getting alerts from Kasper even while using Kasper's ad-blocker, so don't rely just on ad-blockers because if they were anything but ad-blockers, they'd be called anti-virus :-) Use a good AV program all the time (internet condom!).
Computers of those who do not use any of the AV protection most likely got infected with trojan?
It's possible if you're using Internet Explorer. Most newer browsers like Google Chrome and FireFox block these kinds of requests from the client. In this day and age these kind of assaults on websites are very common and to protect yourself purchase and install an anti virus solution. Kapersky detected these issues throughout the process while I was fighting it.
- MMORPG.COM Staff -