This site makes extensive use of JavaScript.
Please enable JavaScript in your browser.
Classic Theme
Thottbot Theme
Warning: Spoof Wowhead URL sending out trojan horses
Post Reply
Return to board index
Post by
xaratherus
I'm not sure if this is the appropriate forum, or if there is anything to be done about it.
I went to type in the Wowhead URL earlier this evening and my Avast popped up. It turned out I had typoed the URL; I had put in ww2 instead of www. While the this URL and the official one both appear to resolve to the same IP address, my Avast log shows it blocked a the url ending in which contained the JS:Iframe-GH trojan.
Hopefully it was some temporary hiccup!
Post by
SquireKel
moral of the story: don't typo the url.
Post by
755995
This post was from a user who has deleted their account.
Post by
scr00chy
I miss Koper's blue text :(
Post by
scr00chy
Let's be sad together!
Post by
xaratherus
moral of the story: don't typo the url.
Typos happen. That doesn't mean we should just sit around and let malware possibly get downloaded onto people's machines because they mistyped a URL.
What you say is impossible, if the mistyped URL is
http://ww2.wowhead.com
I'll grab a screenshot of the actual Avast log entry showing the blockage. I did not type anything past the .com (which I confirmed in my browser history) yet it shows the URL it tried to go to was the above, plus |>gzip. I've done a number of Avast scans and ran Malwarebytes and a rootkit detector in the meantime to make sure it wasn't something already on my machine, and found nothing.
Again, it was just a heads-up to Wowhead admins. It may have been nothing.
Post Reply
You are not logged in. Please
log in
to post a reply or
register
if you don't already have an account.