Just became member to inform admins url is infected.

I DO have some interesting "art' though......

 

I know a few members have downloaded DrS cards and reposted them. What's the associated risk with having downloaded a card on a Windows XP machine, if that is the vulnerable operating system?

All the best,
Andrew.

 

Not Bob, but Juan-Manuel Fantango here, but he is signed on as I cannot and use the K anti virus solfware, etc.

What does all this mean? Please explain in laymans terms. I need my Ferrarichat fix, but am terified of these viruses these selohssa launch. They should recieve the death penalty, as Bob says, after they are tortured. And we will be happy to administer the punishment. I have a strong back, but weak mind and I need to put it to use.

 

So for heaven's sake TELL US ABOUT YOUR DINO!! Welcome to F-Chat - perhaps the
most unusual entry EVER.



Jedi

 

Ahh! When I 1st saw this thread I did the usual checks and Fchat came up clean but El Wayne said he was aware of the issue so didn't reply.
Image Unavailable, Please Login
Image Unavailable, Please Login

 

You would have to have Windows XP/SP2 or earlier and never patched/updated it after 2004. Regardless, whether their OS is safe or not, users who made copies of those cards should just delete them. There is absolutely no reason to perpetuate a bad file if you know it is bad and can easily get to them.

Just to be clear, we don't know 100% that the old DrS cards are the cause of the Kaspersky blocking; it could be seeing something else. However, the cards are the only thing we do know that has been shown to be suspect and Kaspersky gives an alert that is suspiciously like the scenario that *was* analyzed, so that's why we think that's the most likely explanation.

Right now Kaspersky is the only antivirus that blocks the site rather than quarantines the JPG (which is what MSE does). Since it blocks the site, it prevents us from confirming what is happening. It is possible that Kaspersky is seeing something in another uploaded JPG (user or sponsor) or that content that is being sourced via re-direct (such as GoogleAds) is the source of a problem. However, I run MSE continuously, as well as MalwareBytes and AVG scans and this combo has never found anything on the site, except MSE was the first one that found the cards previously mentioned.

Based on this, we're suggesting that users who have Kaspersky switch to another antivirus or find the Kaspersky method for safelisting a site to remove the block on Fchat. Those users that have Kaspersky AND have a penchant for detective work can try to clear the block and then check for Kaspersky triggering an alert on old cards, new cards, sponsor JPGs, and GoogleAds content (not subscribed or logged in). That would help us confirm the false positive or give us leads to track down if something else is going on.

 

DinoSR8LM: Have you tried sending them a false alarm report?
http://forum.kaspersky.com/index.php?showtopic=13881

False positives happen with all AV engines.

 

Well, I am running the same stuff Yin is using, so I guess that's as good as it gets.....