Author Topic: http://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js  (Read 31433 times)

0 Members and 1 Guest are viewing this topic.

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 32161
  • malware fighter
Re: http://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js
« Reply #45 on: January 04, 2013, 01:30:02 PM »
Hi Gangplank,

DoNotTrackMe certainly is the way to go in case of new tracking code hacks and to stay clear of further tracking hacks or FPs. Of course avast should not have flagged this as there are a lot of users that do not know or care about in-browser protection and only blame a solutions when there is an issue.
I still am not aware of the reason why avast started to alert it, but these tracking codes are often benign hacks to enable multilevel browser user tracking.
There is always a grey area between acceptable user monitoring and privacy intrusion and there is always the possibility for FP alert interpretation with such code,

polonus
« Last Edit: January 04, 2013, 01:32:03 PM by polonus »
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!

Offline poppie1234

  • Newbie
  • *
  • Posts: 12
Re: http://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js
« Reply #46 on: January 04, 2013, 06:34:42 PM »
Yesterday i couldn't get on the Daily Mail website or Acotis Jewellery without the pop up appearing. I haven't done anything to block things like others have done but i have just switched my computer on and it is no longer popping up with the malicious URL blocked warning on them websites.  ;D

My virus definitions have been updated to 130134-0.

Offline whetzelmomma

  • Newbie
  • *
  • Posts: 5
Re: http://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js
« Reply #47 on: January 04, 2013, 06:39:10 PM »
I also haven't done anything new on my blog (that worked) or used any tracker blocking. The alerts stopped last night.

Offline polonus

  • Avast √úberevangelist
  • Probably Bot
  • *****
  • Posts: 32161
  • malware fighter
Re: http://d1ros97qkrwjf5.cloudfront.net/42/eum/rum.js
« Reply #48 on: January 04, 2013, 09:31:08 PM »
Might have been a silent FP repair through the last avast update as it seems now. We weren't informed. As I see this, this  javascript shouldn't have been blocked by anti-malware programs as it is not malicious or suspicious as such. For those that want to exclude it from their browsers for other and personal reasons they should install the appropriate extensions in their browser that block these.
Some like to block third party access like certain ads, web beacons etc. or third party scripts altogether as they see fit.
With Quttera scanner I see a lot of script alerted as potentially suspicious as later found that it is not. Sometimes obfuscation of scripts could lead to misinterpretation and some solutions block obfuscation per se as it could be easily be abused....

polonus
Cybersecurity is more of an attitude than anything else. Avast Evangelists.

Use NoScript, a limited user account and a virtual machine and be safe(r)!