or Connect
New Posts  All Forums:Forum Nav:

Virus Warning

post #1 of 13
Thread Starter 
I'm getting the following message from my anti-virus software (AVG) when I try to log into the site today (10/14/2009)

The page you are trying to access has been identified as a known exploit, phishing, or social engineering web site and therefore has been blocked for your safety. Without protection, such as that in the AVG Security Toolbar and AVG, your computer is at risk of being compromised, corrupted or having your identity stolen. Please follow one of the suggestions below to continue.

IP Address:
post #2 of 13
How funny.  Well, clearly we are a social site.  Norton is not blocking me by the way.
post #3 of 13

I run AVG and no alerts for this website.  But then it's like the family,once you join you can't quit.

post #4 of 13
According to AVG forums moderator,  "resok"

AVG 8.5 Free is an antivirus only ... it doesn't filter the internet.

Websites may also be blocked by your server, or employer.

The IP address you listed: is not the EpicSki server, but I'll ask Adam if this could be one of the ad-servers.  EpicSki Server information follows:

Administrative Contact :  
   Cenname, August
   c/o Network Solutions
   P.O. Box 447
   Herndon, VA 20172-0447
   Phone: 570-708-8780
   Technical Contact :  
   Network Solutions, LLC. 
   13861 Sunrise Valley Drive
   Herndon, VA 20171
   Phone: 1-888-642-9675
   Fax: 571-434-4620
   Record expires on 13-Oct-2010  
   Record created on 14-Oct-1998
   Database last updated on 07-Feb-2009
   Domain servers in listed order: Manage DNS
   This listing is a Network Solutions Private Registration. Mail correspondence to this address must be sent via USPS Express Mail™ or USPS Certified Mail®; all other mail will not be processed. Be sure to include the registrant's domain name in the address.
     Show underlying registry data for this record

Current Registrar: NETWORK SOLUTIONS, LLC.
IP Address: (ARIN & RIPE IP search)
Record Type: Domain Name
Server Type: IIS 5
Lock Status: clientTransferProhibited
WebSite Status: Active
DMOZ 1 listings
Y! Directory: see listings
WebSite Title: EpicSki - The Site For Dedicated Skiers
Meta Description: EpicSki: a community for skiers to discuss skiing, skiing equipment and reviews, ski resorts, ski wear, skiing techniques, snowboarding, backcountry, cross country, and more
Meta Keywords: ski, skiing, equipment, ski resorts, backcountry, heli, EpicSki, ski boots, skiing reviews, epic ski, epicski forum, Discussion, barking bear, elan, salomon, fisher, volkl, atomic, gear reviews, mount
Secure: No
Ecommerce: Yes
Traffic Ranking: 4
Data as of: 22-Apr-2008
post #5 of 13
Everyone remain calm. Exits are to the rear of the site, please file out in an orderly fashion.

No, just kidding! I hear from the dev team that there's nothing to worry about... this was most likely triggered by a bad ad URL. If someone knows the specific URL that was triggering the warning, that information would be helpful, however, and we can look into it more.

Thanks for bringing this up! I'm subscribed to this thread now if anyone has any follow up.
post #6 of 13
I had the same warning when I logged into my email earlier.  It is not there anymore.  It was in an advertising box.
post #7 of 13
This is a fairly common scan to let you think that you have a virus when you don't. So you follow the instructions and you get one. I see it all the time in my business. The problem is that ads from the companies, such as Google Ads, aren't necessarily checked for appropriateness. These ads generate pop-ups and attempt to deceive you into downloading their software, even getting you to buy it, in an attempt to actually infect your computer or at least to get you to pay them for useless software.

I fixed a computer for a client that saw a message indicating that the site he was surfing wasn't safe, he paid Cyber Security $79.00 to install their software, and the problem still wouldn't go away.

Don't trust any pop-ups that indicate you are infected. Run your own anti-virus software and check for yourself. Google the phrases used in the pop-ups and see if there are complaints and/or removal instructions associated with the pop-ups you are encountering.

Microsoft.com has very good information that will help you avoid problems. Just navigate to www.microsoft.com and click on 'Security & Updates' in the top menu. Educate yourself to avoid opening the door to infection.

post #8 of 13
MastersRacer - I believe he was referring only to his AVG software on his machine that was warning him, not a pop up ad.

You also don't have to worry about any evil ads from Google Adsense. They don't allow any scripts of any type, all ads are generated through their system.
post #9 of 13
Thread Starter 
Yes, it was my AVG software and not a pop-up ad. I did advise AVG about the apparent error.
post #10 of 13
Originally Posted by MattL View Post

MastersRacer - I believe he was referring only to his AVG software on his machine that was warning him, not a pop up ad.

You also don't have to worry about any evil ads from Google Adsense. They don't allow any scripts of any type, all ads are generated through their system.

Industry pundits suggest Google Adsense ads are still a risk. Pop-ups may not be allowed, but the ads can be for bogus 'solutions'; the ad may be vetted, but the company's products and site aren't. An accidental click on an ad and you may be under attack.

My experience is that many users don't understand the difference between a legitimate alert and a fake one. Hence, without first hand evidence, I generally warn people about the insidious ways that they can be compromised.

post #11 of 13
I am still getting a warning from AVG that is warning me not to open the Epicski site.  Any solutions for this?
post #12 of 13
My antivirus/spyware/website inspector programs  (CA, Norton, and AVG on one machine) all give me the option to ignore warnings and add particular sites or programs to the safe or allowed list.  I'm not getting any warnings on this site from my AVG program, or the others though.

You might want to consider trying tp update the program or re-installing it.
post #13 of 13
FWIW, Yahoo owns the IP initially referenced. Also, I'm using AVG Free 8.5.421 and not getting any error messages.

AVG does support 'LinkScanner' which 'works with Internet Explorer and Firefox'. It attempts to protect you from drive-by downloads and other exploits.


Do you get alerts from AVG at other sites?

Screen (or dialog) snapshots (as illustrated above) of the errors will help anyone working to assist you. Simply press Print Screen, open a paint program, paste, save the file and upload. The more details provided, the more assistance that can be provided.



Location: United States [City: Sunnyvale, California]

[Caching always on for search engines and InfoPath]
Using 1 day old cached answer (or, you can get fresh results).
Hiding E-mail address (you can get results with the E-mail address).

OrgName:    Yahoo! Inc. 
OrgID:      YHOO
Address:    701 First Ave
City:       Sunnyvale
StateProv:  CA
PostalCode: 94089
Country:    US

NetRange: - 
NetName:    A-YAHOO-US7
NetHandle:  NET-76-13-0-0-1
Parent:     NET-76-0-0-0-0
NetType:    Direct Allocation
NameServer: NS1.YAHOO.COM
NameServer: NS2.YAHOO.COM
NameServer: NS3.YAHOO.COM
NameServer: NS4.YAHOO.COM
NameServer: NS5.YAHOO.COM
RegDate:    2007-05-02
Updated:    2007-09-13

RTechHandle: NA258-ARIN
RTechName:   Netblock Admin 
RTechPhone:  +1-408-349-3300
RTechEmail:  ********@inktomi.com 

RAbuseHandle: NETWO857-ARIN
RAbuseName:   Network Abuse 
RAbusePhone:  +1-408-349-3300
RAbuseEmail:  *************@cc.yahoo-inc.com 

OrgAbuseHandle: NETWO857-ARIN
OrgAbuseName:   Network Abuse 
OrgAbusePhone:  +1-408-349-3300
OrgAbuseEmail:  *************@cc.yahoo-inc.com

OrgTechHandle: NA258-ARIN
OrgTechName:   Netblock Admin 
OrgTechPhone:  +1-408-349-3300
OrgTechEmail:  ********@inktomi.com

# ARIN WHOIS database, last updated 2009-10-13 20:00
# Enter ? for additional hints on searching ARIN's WHOIS database.
New Posts  All Forums:Forum Nav:
  Return Home