Numerous AV Warnings/Denials - VeggieBoards
Forum Jump: 
 
Thread Tools
#1 Old 04-06-2012, 04:11 PM
Joe
Beginner
 
Joe's Avatar
 
Join Date: Oct 2001
Posts: 5,660
While I've been browsing on VB today, using Opera, I've had numerous AV warnings/denials from Kaspersky.

Quote:
4/6/2012 5:06:03 PM\thttp://www.bannertracker-script.com/icons/icons.php\tOpera Internet Browser\tURL found in the database\t

The heading is: Downloading object, containing malicious URL.

It keeps "denying" these downloads, although I'm not trying to make any downloads.

Does anyone have any insight as to what is going on here?
Joe is offline  
Sponsored Links
Advertisement
 
#2 Old 04-07-2012, 12:10 AM
Beginner
 
clarita osita's Avatar
 
Join Date: Jun 2008
Posts: 3,863
No, but we'll look into it.
clarita osita is offline  
#3 Old 04-07-2012, 12:04 PM
Beginner
 
Sevenseas's Avatar
 
Join Date: Jul 2003
Posts: 25,068
Audiovisual?
Acutely Venereal?
All-around Vicious?
Absolutely Void?

"and I stand

upon a mountain

made of weak and useless men"

Sevenseas is offline  
#4 Old 04-07-2012, 04:59 PM
Joe
Beginner
 
Joe's Avatar
 
Join Date: Oct 2001
Posts: 5,660
Quote:
Originally Posted by Sevenseas View Post

Audiovisual?
Acutely Venereal?
All-around Vicious?
Absolutely Void?

Anti-Virus.
Joe is offline  
#5 Old 04-07-2012, 07:44 PM
Beginner
 
vegan cyberpunk's Avatar
 
Join Date: Dec 2011
Location: Probably some airport
Posts: 1,280
It's a known old exploit, php queries and sql

http://www.youtube.com/watch?v=ncWxHDhRKS0

http://j0hnx3r.me/?p=818 ( in german bacl april 2011 )

http://www.saintcorporation.com/cgi-...abilities.html

http://ipensatori.com/?p=445

I remember i read about it way back. Nothing difficult but quiet efficient.

"The net effect is to load Amazon's site invisibly. Amazon operates using a 24-hour referral period, so if a user happened to make a purchase from Amazon within the next 24 hours, Amazon would credit this affiliate as the putative referer of the traffic -- paying this affiliate a commission of at least 4% and as much as 15%."

Someone is trying to cookie-stuff the vegans ^^

Edit :
the blocked download is a delicious vegan stuffed cookie.

Quote:
Cookie stuffing (also cookie dropping) is a blackhat[neutrality is disputed] online marketing technique used to generate illegitimate[neutrality is disputed] affiliate sales. Cookie stuffing occurs when a user visits a website, and as a result of that visit receives a third-party cookie from an entirely different website (the target affiliate website), usually without the user being aware of it.[1] When (if) the user visits the target website and completes a qualifying transaction, the cookie stuffer is paid a commission.
Source : Wikipedia


http://www.cypherpunks.ca/otr/ https://www.eff.org/ https://www.torproject.org/

http://www.enigmail.net/  http://www.openbsd.org/  https://www.ixquick.com/

http://www.opennicproject.org/ https://www.autistici.org/en/index.html  https://riseup.net/en

https://pay.reddit.com/r/privacy/wiki/index

vegan cyberpunk is offline  
#6 Old 04-08-2012, 02:04 PM
Beginner
 
Josh James xVx's Avatar
 
Join Date: Jun 2010
Posts: 3,097
It seems like every day I come on here I get about 17 viruses during my daily virus scan. There's always two or three but more so on the days I come on here.

Tam! RUGH!
Josh James xVx is offline  
#7 Old 04-08-2012, 02:41 PM
Joe
Beginner
 
Joe's Avatar
 
Join Date: Oct 2001
Posts: 5,660
Quote:
Originally Posted by vegan cyberpunk View Post

It's a known old exploit, php queries and sql

...

http://ipensatori.com/?p=445

I remember i read about it way back. Nothing difficult but quiet efficient.

"The net effect is to load Amazon's site invisibly. Amazon operates using a 24-hour referral period, so if a user happened to make a purchase from Amazon within the next 24 hours, Amazon would credit this affiliate as the putative referer of the traffic -- paying this affiliate a commission of at least 4% and as much as 15%."

Someone is trying to cookie-stuff the vegans ^^

Edit :
the blocked download is a delicious vegan stuffed cookie.

Thank you for posting this. I think you have correctly identified the problem. But I'm afraid I'm not techno-savvy enough to understand what the cure or fix for the problem is. I'm going to have to assume that this is something VB has to fix on its end rather than something I can fix on my end.

BTW, I had my laptop last night at a restaurant with wifi. On my laptop, I was using Firefox as my browser and Norton Security Suite as my antivirus. I was accessing VeggieBoards, but I did not get any warnings or messages about this. How do I interpret this? That http://www.bannertracker-script.com/icons/icons.php and cookie stuffing is not a problem on my laptop? Or that Kaspersky is better than Norton at identifying this problem? I am assuming that the second alternative is correct.
Joe is offline  
#8 Old 04-08-2012, 04:34 PM
Beginner
 
SuicideBlonde's Avatar
 
Join Date: Apr 2003
Posts: 4,337
I blame it on the slut thread.

"Imperfection is beauty, madness is genius and it's better to be absolutely ridiculous than absolutely boring."
 Marilyn Monroe
SuicideBlonde is offline  
#9 Old 04-08-2012, 05:18 PM
Beginner
 
vegkid's Avatar
 
Join Date: Feb 2010
Location: In the depths of N'Kai
Posts: 3,910
Quote:
Originally Posted by SuicideBlonde View Post

I blame it on the slut thread.

Hate to burst your bubble but the kinds of viruses in the Slut thread aren't quite what they're describing here...


Enjoying the view over at http://forum.veggieviews.com/

vegkid is offline  
#10 Old 04-08-2012, 08:13 PM
Beginner
 
vegan cyberpunk's Avatar
 
Join Date: Dec 2011
Location: Probably some airport
Posts: 1,280
Yes, kaspersky has blocked the download of the cookie on your side, so you' re ok.

It's up to VeggieBoards to get rid of the stuff on the server side, if there is no automatic method, then it has to be removed by hand and then update everything since the exploit has been corrected in the newer versions of Vbulletin, contacting vBulletin is probably the best thing to do since they must had some fun with it, so they probably have a clean coffee-free way to do it.

Yes, Norton Sucks, and basically every antivirus wich you receive already installed on your laptop and that you have to pay for after a certain time. The only good antivirus worth buying is kaspersky indeed, all the other good ones are free ( antivir, avg, mainly, avast can be ok ), no antivirus is perfect, so it's a good idea to have a main antivirus running non stop and a secondary one off that you use like once a month for a scan, and that you keep as backup if the main one is compromised ( some viruses drive your antivirus crazy if you try to remove them ).

The quality of antiviruses changes from month to month so there is no real best one, one year bitdefender is the nest, another time it's avira antivir, sometimes avast... your choice according to the look of it, memory consumption etc...

And yeah, you would be surprised of the number of people who think that computer viruses are real ones... if you have a look on internet you should easelly find computer hotline guys explaining how people call them to say that they got a computer virus and now have to go to the doctor, of is they should take care of their laptop during the cold winters, or how long is the incubation period, or that the computer virus made their dog sick... who knows... don't understimate viruses ^^

EDIT : if you use linux you can forget about viruses ^^ ( but cookie stuffing would work ).

http://www.cypherpunks.ca/otr/ https://www.eff.org/ https://www.torproject.org/

http://www.enigmail.net/  http://www.openbsd.org/  https://www.ixquick.com/

http://www.opennicproject.org/ https://www.autistici.org/en/index.html  https://riseup.net/en

https://pay.reddit.com/r/privacy/wiki/index

vegan cyberpunk is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the VeggieBoards forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in

Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.



Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off