which is a well known site and even Symantec employees recommend it to submit infected files .
But Norton Safe Web gives a YELLOW indication to the site saying it has a threat ...........What is it ?
Here is the Safe Web image of the site
Here is google search result which also shows ThreatExpert marked YELLOW
What is it ? Does it contain threats ?Or Is Safe Web wrong ?
[edit: removed potentially harmful link]
This is an actual threat not a false alarm. If you go to the URL in the report (NOT recommending everybody does this - I do things to test reports), the drive by tries to happen; Auto Protect blocked everything. Just wanted to say that this is live and a real threat. Head the advise of Safe Web; that’s why it is there.
db,
This is really odd, as isn't Threat Expert now owned by Symantec?
"There is an new Symantec page for malware submission, Threat Expert, and we encourage advanced users to try this new page. Below are the available pages for malware submission, and what you should expect:
http://www.threatexpert.com/submit.aspx - use this submission page if you would like a quicker response on your submitted malware. It also provides a place to track your past submissions
https://submit.symantec.com/retail - use this submission page if you would like to pass along malware information to Symantec without an immediate follow-up
Tony Weiss
Norton Forums Administrator
Symantec Corporation"
As Norton Safeweb is partly a community based... ummm... thing (sorry, I just cant think of the right word), do you think it's possible that Symantec isn't aware of this issue? as I would imagine that they would fix it if they are the owners...
Anyway, what are your thoughts?
Matt
Could Symantec simply have entered into a partnership where they endorse Threat Expert instead of entirely owning and operating it themselves?
Shridhar wrote:
which is a well known site and even Symantec employees recommend it to submit infected files .
But Norton Safe Web gives a YELLOW indication to the site saying it has a threat ...........What is it ?
Here is the Safe Web image of the site
Here is google search result which also shows ThreatExpert marked YELLOW
What is it ? Does it contain threats ?Or Is Safe Web wrong ?
[edit: removed potentially harmful link]
Message Edited by MikeLee on 06-13-2009 01:29 PM
There should be a Report coming from the Norton Tool Bar telling you what is there on the Web Page; you can also Click on the Yellow Exclimation Mark to get the Report in the Norton Tool Bar and on the Web Page with Google Results. Just in case you did not know.
mattsegers wrote :
This is really odd, as isn't Threat Expert now owned by Symantec?
"There is an new Symantec page for malware submission, Threat Expert, and we encourage advanced users to try this new page. Below are the available pages for malware submission, and what you should expect:
http://www.threatexpert.com/submit.aspx- use this submission page if you would like a quicker response on your submitted malware. It also provides a place to track your past submissions
https://submit.symantec.com/retail - use this submission page if you would like to pass along malware information to Symantec without an immediate follow-up
Tony Weiss
Norton Forums Administrator
Symantec Corporation"
Thats what I want to say ,If Symantec employees recommend this site ....then
1. How can they direct us to a site containing threat ?
OR
2. Is this a false alarm from Safe Web ?
(I think 2nd option might be the one as I trust Norton and I think they cannot direct us to any malicious site )
Shridhar
It is not the entire THreatExpert site that contains the threat, interestingly enough it is ONLY the URL in the safe web report (at the bottom of the report). the threat is the LivePlayer Misleading Application, and so it is not a serious threat in anycase. the site is still safe to use, provided you do not go to that specific page. Hopefully Symantec is aware of this problem. and NO, it is NOT a false positive, the threat IS there, but like I said, ONLY at that URL :-)
Regards
Matt
norton marks it as safe now???
Hi GreatNate1312,
If any site contains a threat and then the threat is removed, a Safe Web reevaluation would indicate the site as being safe.
That is normal procedure.
which is a well known site and even Symantec employees recommend it to submit infected files .
But Norton Safe Web gives a YELLOW indication to the site saying it has a threat ...........What is it ?
Here is the Safe Web image of the site
Here is google search result which also shows ThreatExpert marked YELLOW
What is it ? Does it contain threats ?Or Is Safe Web wrong ?
[edit: removed potentially harmful link]
mattsegers wrote:Shridhar
It is not the entire THreatExpert site that contains the threat, interestingly enough it is ONLY the URL in the safe web report (at the bottom of the report). the threat is the LivePlayer Misleading Application, and so it is not a serious threat in anycase. the site is still safe to use, provided you do not go to that specific page. Hopefully Symantec is aware of this problem. and NO, it is NOT a false positive, the threat IS there, but like I said, ONLY at that URL :-)
Regards
Matt
Mis-Leading Applications are a pretty nasty Threat to get on your computer as they are a pain to get rid of, as they can put themselves in System Restore. The pop-up of the "Product" is the last step in the Process.
_______________________________________________________
Hackers have started to more towards Hacking Legit. Web Sites and which has a High "Traffic" Rate.
This was as a result of some problems with our LivePlayer antivirus signature. The signature was a little too agressive and was triggering on some websites which referenced the LivePlayer URL. We've now reworked the signature to resolve this problem. Our apologies for any confusion.
Orla Cox
Symantec Security Response
Thanks orla_cox ,
Was out of station for a week ,hence couldn't put down the result .
Anyways Safe Web is now marking the site GREEN