Jump to content

KeyJ

Members
  • Posts

    1
  • Joined

  • Last visited

Reputation

0 Neutral
  1. A user of my website informed me that it's blocked due to malware downloads. I only got a screenshot in German language, but it translates to the following: The thing is, neither emphy.de nor any of its subdomains host anything malicious. What they do contain is so-called "intros" from the demoscene, which are small executables that produce real-time graphics in as little space as possible. To achieve this, they are using rather unconventional runtime executable packers like "kkrunchy" or "Crinkler", which aren't common outside of the demoscene world. It seems that some malware authors have used those in the past, and typical virus scanners took the easy route of detecting the packer instead of the actual payload, which results in almost all demoscene intros being marked as suspicious, even though they are completely harmless. I already took action and removed all direct downloads to mis-detected executables (including those inside .zip files) over a year ago, when Google's malware detection put a blanket ban on the site. It seems that (a) your scanner didn't update the status since or (b) I missed something, and your scanner found it. In the latter case, please tell me the offending URL, and I'll replace it by something that doesn't have a risk of being mis-detected. (Of course, it would be best if you could update the scanner to simply not trigger on every kkrunchy- or Crinkler-packed executable, but that might be asking too much ...)
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.