Today i went to access the xbox website. http://www.xbox.com/en-GB/ . I visit this site quite often, but today Avast popped up saying trojan horse blocked. This is my first virus/trojan so i immediatly closed my web browser, used CCleaner with all the options checked, ran a full system scan, nothing. open web browser go to the site and trojan blocked -_-
I can go to all the other sites i regularly visit, but it is only xbox.com, so i guess my question is: what shall i do?
OS: XP PRO
Web Browser: Firefox
Avast Web Shield Log:
Object/URL: hxxp://audience.sysomos.com/track/t?site=12cbd64e7b76873026530e9d9ef46a8d|>{gzip}
Severity: High
Status: Threat: JS:ScriptXE-inf [Trj]
Im quite good with computers but that means nothing to me, and i dont want to put that in the address bar, hope you can help.
Thanks in advance,
Matt
Funny, I also visit that site, and experienced this a few minutes ago, so I am trying to track it down…
On the xbox website, there is a script that calls on this page.
When looking at the contents of the page it looks a little odd…it is on one line and is very long. It also appears obscured.
The true contents are also a little wierd…see images
hi Scott, thanks for the welcome and for the quick reply.
Hopefully its nothing serious, i should think not from an official website like that, but you never know.
I was just concerned with my passwords, etc.
well I shall check back later, and hopefully you have had success in tracking it down.
Thanks again,
Matt
I am getting this same issue on all xbox.com pages. Was wondering if there was any news on it? I’m not used to getting threats from avast show up, should I take any action?
In that script is a link to game-rapidshare.com, which we block. WOT gives all red. I’ve blocked it in a row of many such scamsites around february. It’s beyond me why original xbox site has a link to site “Warez game catalog - Free rapidshare links to download”. But that’s a question for them. :
Thanks for confirming Jindrich, I can see that link.
Quick question, what exactly is the script doing? It looks as though it is just a collection of links…each with another attached bit…the “zEA=”:" bit before each link.
Matt, you’re welcome. I was initially a bit confused at this one as well Just wanted to see who was online ;D
EDIT: Submitted a support request on xbox.com, about this and this thread. Lets see what they say…
I went to the site http://www.xbox.com/en-GB/ this morning, and avast said that it had blocked a Trojan with the exact same information as this, as when i looked up if anyone had found this before i found this page, which at least made me stop worrying that i had one on ma machine, as all scan came back negative and from what you guys said it looks like it is alright, but was just wondering why it has re appeared now as it wasn’t there yesterday or for the past week or so. Also do you have any idea what it is actually meant to do?
