| View previous topic :: View next topic |
| Author |
Message |
Xana
Seasoned Veteran
Joined: 27 Aug 2007
Posts: 340
Location: Wandering
|
 Posted: Sun Apr 25, 2010 11:00 pm Post subject: Heads Up |
 |
Visited UO Guide tonight to check something and my antivirus picked up a trojan exploit attempt, most likely from an ad.
Been getting alot of these lately but was shocked to get it here.
Hosted by google.analytics.com followed by a long string of figures and whatnot.
Beware. Feel free to pass it to folks you know and I may not. This is getting out of control and you never know where you'll find it.
LOVE my antivirus.
_________________
An artist is a creature driven by demons ~Faulkner
 |
|
| Back to top |
|
 |
Ariana Lenoir
Lore Master
Joined: 29 Sep 2008
Posts: 1140
Location: City of Britain
|
| Posted: Sun Apr 25, 2010 11:20 pm Post subject: |
|
Thanks for the head's up, Xana! |
|
| Back to top |
|
|
Kaelthir
Certifiable
Joined: 28 Aug 2004
Posts: 1932
|
| Posted: Sun Apr 25, 2010 11:33 pm Post subject: |
|
That's nasty. Ad servers are their own demise by not policing what they put out. THIS is why people get better and better ad-blocking stuff. |
|
| Back to top |
|
|
Xana
Seasoned Veteran
Joined: 27 Aug 2007
Posts: 340
Location: Wandering
|
| Posted: Mon Apr 26, 2010 12:25 am Post subject: |
|
| Kaelthir wrote: | | That's nasty. Ad servers are their own demise by not policing what they put out. THIS is why people get better and better ad-blocking stuff. |
It is really nasty. Wanting to make money on traffic is one thing, but have a standard or two.
People will only come back so many times once they realize what's going on and then what have you got?
As an aside, there's another cutie going around that pops up billing itself as either Windows Defender or Vista Defender.
It looks completely legit.
It's not. It shows you this list of allegedly infected items you have, and asks you to reboot your pc so it can 'clean' it for you.
What it does, is terrible. It resets things so you can't use your backups or even reformat. The only fix, if you are LUCKY is to reinstall an OS--and let's face it. Most PCs aren't coming with OS discs anymore.
So far when this has happened to me, I've been able to shut it down by not agreeing to restart, and going back to the farthest backup I have on record and restoring to that. Might mean you need a new UO patch or something stupid but it DOES work to do it this way. To those of you who aren't backing up, get in the habit! I put all my backups on an external drive. At least if I lose my system I'll have my files (at least in the perfect world right?).
Deviant Art is one of the biggest offenders of this cutie.
I'm not sure my PC would've survived these attempts if it weren't for my NOD. The one was a repeated attack at six second intervals. Alot of antivirus would have crashed with that kind of demand being placed on it.
Good luck everybody. Just beware. Use your flashblockers if you can (Thanks, Cein, for linking me to that the other day) and anything else you can use within reason.
_________________
An artist is a creature driven by demons ~Faulkner
|
|
| Back to top |
|
|
Kaelthir
Certifiable
Joined: 28 Aug 2004
Posts: 1932
|
| Posted: Mon Apr 26, 2010 12:39 am Post subject: |
|
I also use adblock plus. frack ads. |
|
| Back to top |
|
|
Xana
Seasoned Veteran
Joined: 27 Aug 2007
Posts: 340
Location: Wandering
|
| Posted: Mon Apr 26, 2010 7:24 am Post subject: |
|
| Kaelthir wrote: | | I also use adblock plus. frak ads. |
It amazes me, how antiviruses that block malware to spyware to whatever, firewalls, add-ons, all this stuff and you still can barely keep yourself safe.
It's sad.
_________________
An artist is a creature driven by demons ~Faulkner
|
|
| Back to top |
|
|
Tari
Journeyman
Joined: 25 Mar 2010
Posts: 103
Location: Indiana
|
| Posted: Mon Apr 26, 2010 7:57 am Post subject: |
|
| Kaelthir wrote: | | I also use adblock plus. frak ads. |
This. This this this THIS THIS!!!
In the past 2 - 3 years I've been on Firefox with this addon, I've never had an issue with anything malicious on my PC (of course, safe surfing habits probably help). Banner ads are evil, and ad hosts are fraking STUPID for not watching their own butts. I don't care if a website I frequent makes a cent or two if I see the ads on their site if they are going to possibly contain malware. I bet if your mailbox occasionally shot you instead of giving credit card offers people would knock down the fraking mailbox. |
|
| Back to top |
|
|
TayM'real
Journeyman
Joined: 17 May 2007
Posts: 216
Location: Trinsic
|
| Posted: Mon Apr 26, 2010 8:14 am Post subject: |
|
I put partial blame on the site owners themselves. If you're going to expose your customers to a 3rd party vendor generating traffic on your site - you're as much to blame as they are. I believe it's JC the Builder that owns UOGuide - you should let him know so he can contact the vendor doing his ads...if I were him, I'd be PO'd big time.
I wouldn't want people fearing coming to my site...
_________________
To kill a non-believer tis not murder, tis the path to enlightenment... |
|
| Back to top |
|
|
Edda
Certifiable
Joined: 20 Jan 2009
Posts: 1586
Location: US
|
| Posted: Mon Apr 26, 2010 8:15 am Post subject: |
|
From uoguide? That sucks, I go there nearly 100 times a day, I'd imagine. I should be good, though, I had to get better virus software after Tony crashed my computer. |
|
| Back to top |
|
|
Dryzzid
Moderator
Joined: 30 Dec 2003
Posts: 1260
|
| Posted: Mon Apr 26, 2010 11:14 am Post subject: |
|
| Kaelthir wrote: | | I also use adblock plus. frak ads. |
That usually takes care of all my advertisement problems. |
|
| Back to top |
|
|
D'thal Morlith
Journeyman
Joined: 20 Aug 2009
Posts: 200
|
| Posted: Mon Apr 26, 2010 12:23 pm Post subject: |
|
| Edda wrote: | | From uoguide? That sucks, I go there nearly 100 times a day, I'd imagine. I should be good, though, I had to get better virus software after Tony crashed my computer. |
Now I'm going to do it bigger and better next time, just to be a spiteful jerk.
*Locks down more crazy rubbish in his house*
Come over. |
|
| Back to top |
|
|
Edda
Certifiable
Joined: 20 Jan 2009
Posts: 1586
Location: US
|
| Posted: Mon Apr 26, 2010 12:46 pm Post subject: |
|
 OMW. |
|
| Back to top |
|
|
Xana
Seasoned Veteran
Joined: 27 Aug 2007
Posts: 340
Location: Wandering
|
| Posted: Mon Apr 26, 2010 4:18 pm Post subject: |
|
| TayM'real wrote: | I put partial blame on the site owners themselves. If you're going to expose your customers to a 3rd party vendor generating traffic on your site - you're as much to blame as they are. I believe it's JC the Builder that owns UOGuide - you should let him know so he can contact the vendor doing his ads...if I were him, I'd be PO'd big time.
I wouldn't want people fearing coming to my site... |
I agree entirely. Unfortunately to many, if not most, people/businesses/websites/whatever the bottom line is money. It costs money to make money. OK we all accept that; but most site owners aren't going to spend even -more- money to make the little bit that generates from the ads. A lot of the ads only pay if people click. I was shocked too by the website I was on. However, I've gotten the same attempt at other trusted websites. Hence it really does come down to people policing their own stuff. I wouldn't want people to be afraid to come to my site either, and honestly I hate feeling afraid to visit sites I like on a personal and/or professional level for fear of the one time the antivirus might fail.
I think alot of it has to do with how much 'hacking' has changed. It used to be savvy kids and young adults just trying to prove their prowess or very exacting industrial/business espionage. Now it's a huge international business of organized crime trying to swipe your info. Maybe they don't care what's in your hotmail, but they -do- care about what's in your bank or credit card site.
_________________
An artist is a creature driven by demons ~Faulkner
|
|
| Back to top |
|
|
Halister Marner
Site Programmer
Joined: 05 Oct 2006
Posts: 2225
|
| Posted: Mon Apr 26, 2010 9:57 pm Post subject: |
|
This is why I will never bring ads on this site. The risk of infection is always there, especially due to the increasing trend of ad servers sending out malware. Having money is nice, but the cost of Tylenol seems to be increasing, and the ad revenue wouldn't balance out the medication bills involved in dealing with a bunch of people being infected visiting your site.
_________________
"There are those who dream to escape reality, and there are those who dream to change it." |
|
| Back to top |
|
|
Xana
Seasoned Veteran
Joined: 27 Aug 2007
Posts: 340
Location: Wandering
|
| Posted: Mon Apr 26, 2010 11:44 pm Post subject: |
|
Wow, Halister.
I've long been impressed at the ad-free nature of ARPC.
If it came to donations versus ads, I daresay there are plenty here including myself who would kick in rather than see ads and infections here.
When the attempt happened, I was stunned. I even tried to convince myself it wasn't that website. But it was the only one I had open, and when I've seen this behavior before, only one page was open. It makes sense to assume that the offending site is the one a person is viewing when it happens especially if a person's vigilant about updates and scans. I am faithful in those areas.
The common denominators in my antivirus logs are google and the nature of the threats.
_________________
An artist is a creature driven by demons ~Faulkner
|
|
| Back to top |
|
|
|
FAQ
Search
Calendar
Links
Wiki
Register
Usergroups
RSS Feed
Portal
Profile
