Go Back   Grim Dawn Forums > Off Topic > Totally Random

Closed Thread
 
Thread Tools Display Modes
  #1  
Old 02-28-2010, 05:04 AM
Starkrun's Avatar
Starkrun Starkrun is offline
Supporter
 
Join Date: Feb 2010
Posts: 190
Default Titanquest.net trojan issues, attack site?

YerkYerk something going down on http://www.titanquest.net/forums/ its trying to install a trojan though webcode and my firewall/virus scanners going nuts...

2/27/2010 11:50:32 PM Detect C:\Documents and Settings\MyLoginName\Local Settings\Temp\jar_cache2830180362023931090.tmp TrojWare.Java.TrojanDownloader.Agent.~AB@92020459 Success

2/27/2010 11:51:09 PM Detect C:\Documents and Settings\MyLoginName\Local Settings\Temp\jar_cache4037689153273976128.tmp TrojWare.Java.TrojanDownloader.Agent.~AB@92020459 Success

anyways GOOGLE is sending block requests out to stop people from going, maybe you can look into this see whats up. I'd hate to see there name dragged though the mud.

Quote:
Safe Browsing
Diagnostic page for titanquest.net/forums

What is the current listing status for titanquest.net/forums?

Site is listed as suspicious - visiting this web site may harm your computer.

Part of this site was listed for suspicious activity 3 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 60 pages we tested on the site over the past 90 days, 11 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-02-27, and the last time suspicious content was found on this site was on 2010-02-27.

Malicious software includes 12 trojan(s), 3 exploit(s). Successful infection resulted in an average of 1 new process(es) on the target machine.

Malicious software is hosted on 2 domain(s), including rebellion.servehttp.com/, documental.serveblog.net/.

2 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including nofear.servehttp.com/, mmfav.servehttp.com/.

This site was hosted on 1 network(s) including AS174 (COGENT).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, titanquest.net/forums did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

How did this happen?

In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

Next steps:

* Return to the previous page.
* If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.
Attached Thumbnails
Click image for larger version

Name:	TQatk.jpg
Views:	206
Size:	60.6 KB
ID:	6  
__________________
“The Blood of my Enemy's will wash my Sins away, in the GRIM DAWN of a new Day”
  #2  
Old 02-28-2010, 06:31 AM
psisci psisci is offline
Supporter
 
Join Date: Jan 2010
Posts: 104
Default

the same happened to me
  #3  
Old 02-28-2010, 12:08 PM
yerkyerk's Avatar
yerkyerk yerkyerk is offline
Lord Advocate
 
Join Date: Jan 2010
Posts: 4,228
Default

It has been widely reported, several times on tq.net. I've set pm's to LANLocked, he's the one that should be able to deal with the problem. He responded, but his actions didn't work. I think he's having weekend now. It sucks, but there's not much I can do about it right now.

Interesting is that IE8 doesn't mark it as a threat, but Chrome and Firefox do. I'm afraid there's something real going on though...

Last edited by yerkyerk; 02-28-2010 at 12:14 PM.
  #4  
Old 02-28-2010, 02:30 PM
Survey_Says Survey_Says is offline
Initiate
 
Join Date: Jan 2010
Posts: 8
Default

Another reason not to use IE. Looks like your forums have been hacked.
  #5  
Old 02-28-2010, 04:09 PM
Void(null)'s Avatar
Void(null) Void(null) is offline
Champion
 
Join Date: Jan 2010
Posts: 1,909
Default

Quote:
Originally Posted by yerkyerk View Post

Interesting is that IE8 doesn't mark it as a threat, but Chrome and Firefox do. I'm afraid there's something real going on though...
That's because IE8 is a threat.

Boo Internet Exploder, Yay Firefox and Chrome!

But seriously, I really do hope this is just a bad code situation and not an actual attack.
  #6  
Old 02-28-2010, 09:50 PM
yerkyerk's Avatar
yerkyerk yerkyerk is offline
Lord Advocate
 
Join Date: Jan 2010
Posts: 4,228
Default

I'm not sure what happened. I hope to find out more tomorrow. And although I'm not sure, it gives me good incentive to use Chrome over IE8, currently..
  #7  
Old 03-01-2010, 01:35 AM
MadWasp's Avatar
MadWasp MadWasp is offline
Advocate
 
Join Date: Jan 2010
Posts: 547
Default

Yerky try to save TqNet forums... We trust in U.


We hate viruses...
  #8  
Old 03-02-2010, 01:59 PM
Renevent's Avatar
Renevent Renevent is offline
Lord Advocate
 
Join Date: Jan 2010
Posts: 4,656
Default

No longer getting that message...was it fixed? Did someone hack the website?
  #9  
Old 03-02-2010, 02:03 PM
yerkyerk's Avatar
yerkyerk yerkyerk is offline
Lord Advocate
 
Join Date: Jan 2010
Posts: 4,228
Default

I still get the message (on Chrome).

According to Venn, they removed some old malware links and were flagged because of this; so because of fixing some possibly dangerous stuff, they were listed as a hostile site.

I really have no idea myself what was going on and why Chrome still lists warnings.
  #10  
Old 03-02-2010, 05:21 PM
Coridan's Avatar
Coridan Coridan is offline
Counsel
 
Join Date: Jan 2010
Posts: 230
Default

I can't wait for the site to be fixed. I've been wanting to pick up the xmax mod from there, unless someone has a direct link to it?
__________________
Quote:
Originally Posted by Rhis View Post
"No Turtles" was just the weirdest request I had ever seen, so I had to do something in the spirit of that.
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


Grim Dawn ©2018 Crate Entertainment, LLC.
vBulletin® 3.8.4 ©2000-2014, Jelsoft Enterprises Ltd.