comicbookdb.com

[Comicsnut]

Avast is currently flagging http://www.comicbookdb.com/collection_m ... atings.php.

It's using a javascript redirect to a trojan outlet.

Not sure if it's a false positive, so I ran it through my work's (IT Desktop Administrator) firewall and there is, in fact, a redirect in place.

[Uthor]

Could it explain this problem on the "user's end"?
viewtopic.php?f=2&t=7672

[Chris]

I run Avast and am not getting any warnings on that page. Can you provide more details?

[Caliban]

Category: Intrusion Prevention
Date & Time,Risk,Activity,Status,Recommended Action,IPS Alert Name,Default Action,Action Taken,Attacking Computer,Attacker URL,Destination Address,Source Address,Traffic Description
2012-08-06 12:26:24,High,An intrusion attempt by 208.76.81.137 was blocked.,Blocked,No Action Required,Web Attack: Mass Injection Website,No Action Required,No Action Required,"208.76.81.137, 80",www.comicbookdb.com/ajax_errorcheck.js?,"PC (******)",208.76.81.137,"TCP, www-http"
Network traffic from <b>www.comicbookdb.com/ajax_errorcheck.js?</b> matches the signature of a known attack. To stop being notified for this type of traffic, in the <b>Actions</b> panel, click <b>Stop Notifying Me</b>.

[Quildra]

NOD32 is picking up the same thing from comicbook.com/js/browserdetect.js? and comicbook.com/ajax_errorcheck.js? indicating a threat for JS/Kryptik.SX.trojan

[Chris]

We've tracked down the bad code in these files and they should be fixed. Please let me know if you find any other problems.

[Quildra]

NOD 32 is not longer reporting and issue

[Caliban]

Likewise NAV is now showing nothing.
Thanks for fixing it.
Reassuring

[Caliban]

NAV is showing the Mass Injection message as back again this morning

[pnova]

http://spyware-experts.com/need-to-remo ... tAod9S8AYw

Follow this is you had this software force it self to down load, you need to use safe mode or reinstall everything on your laptop - it blocks you from using the internet or opening any files or control panel. It downloaded from this site & disables your own security & doesn't let you do anything - takes you to page trying to get you to pay for the software.

[jaxstrawww]

AVG is popping up blocked threat messages left and right.

Also, my original forum name was disabled by an admin? Any idea what that was about?

[pnova]

Unable to add anything on the website - site must be blocked by spyware programs trying to download. Can the admin sort out the pop-up?

[Chris]

I found the problem, I think. Can you guys check again?

[pnova]

I've got another problem - don't know if related. When entering Red Alert (Transformers)(Armada) into an issue it come up without the character name but says something else.

[Caliban]

Seems ok again now