Mouseover/URL spoofing triggers virus scanners

[The Hun]

Lately I've been getting a lot of reports about Trojan virusses, mostly stuff like URL.Spoof Exploits and such. I couldn't find anything on these machines though. I found what it was...

Somehow McAffee detects the following notation of a URL as a URL Spoof Exploit: http://www.sapphicerotica.comhahahah...0000&PA=445213 (if this somehow doesn't make sense, check the notation of the banners on http://www.xfreehosting.com/hardcore...0456/sss34.htm)

It's the '@' between the first part of the URL and the read URL. The first part is made to look like a full URL, but it's send as a password. Somehow McAffee things this is spyware. I'm going to adjust my bot not to accept this anymore since I'm getting a lot of reports. If you want to hide the 'real' URL it might be a better idea to use a mouseover or something...

Oh, and of course, happy new year! ;-)

[klik]

Quote:

Originally posted by The Hun


Oh, and of course, happy new year! ;-)

happy new year hun!

thanks for the heads up

[SoundMan]

seen many spoofs here..

[http]

Happy new year


Atahualpa

[$5 submissions]

Thanks for the heads up, Hun! Happy New Year!

[Libertine]

So you have nothing against on mouseovers being used in galleries you list?

[The Hun]

Why should I have something against a mouseover? As long as it's nothing to trick people in there (using a mouseover for a different domain, for instance, making it look as if people go to playboy.com) and there's no Javasc... included (Javasc... Over:window.location=''') I don't have a problem with it. Oh, for those thinking the javasc... thing is a good idea, my bot already takes care of these redirects ;-)

(very annoying that GFY replaces javasc with hahahahaha)

[SoundMan]

Quote:

Originally posted by The Hun
Why should I have something against a mouseover? As long as it's nothing to trick people in there (using a mouseover for a different domain, for instance, making it look as if people go to playboy.com) and there's no Javasc... included (Javasc... Over:window.location=''') I don't have a problem with it. Oh, for those thinking the javasc... thing is a good idea, my bot already takes care of these redirects ;-)

(very annoying that GFY replaces javasc with hahahahaha)

I think what he meant was 98% of tgps have a rule that SAYS no mouseovers and most live by that rule..

also some scripts wont let you submit with mouseover code.
I have not done any submiting for some time, but I am sure that is what it is...one bans it they all do.. type of rule..

[$5 submissions]

Quote:

Originally posted by SoundMan



I think what he meant was 98% of tgps have a rule that SAYS no mouseovers and most live by that rule..

also some scripts wont let you submit with mouseover code.
I have not done any submiting for some time, but I am sure that is what it is...one bans it they all do.. type of rule..

Exactly. One of my requirements for hand submit clients is ABSOLUTELY NO j a v a s c r i p t. Makes life much simpler.

[Ron2k1]

Quote:

Originally posted by SoundMan



I think what he meant was 98% of tgps have a rule that SAYS no mouseovers and most live by that rule..

also some scripts wont let you submit with mouseover code.
I have not done any submiting for some time, but I am sure that is what it is...one bans it they all do.. type of rule..

98%? Not even close to that. I used mousover pretty much last year and only very few did not accept it like pichunter.com for example

[Head]

Thanx, we'll keep that in mind.
Happy New Year!

[Vitasoy]

Happy New Year, The Hun!

[xanx]

people still use mcafee