Thread: Malware designation
+
Add Report
Results 1 to 15 of 45
-
06-05-19 09:46 #45
Posts: 189Malware
Originally Posted by OldManInVa [View Original Post]
-
06-04-19 18:24 #44
Posts: 100Malware Warning from Norton
I am getting a warning from my Norton Antivirus every time I visit this site saying it is blocking malware. It is indicating I am visiting a malicious site with this IP 67.22. 44.93.
-
01-01-14 08:29 #43
Posts: 492Malware
Looks like the problem has been taken care of. No more virus alerts from AVG. Thank you.
-
01-01-14 08:15 #42
Posts: 628Originally Posted by SpeedingTicke [View Original Post]
-
12-31-13 19:26 #41
Posts: 156Bad link / Malware
I use Kaspersky and was getting a new warning for every new page load. That tells me that the "bad link" is located in one of the ads that appears on each and every page. As of 12/31 it doesn't seem to be an issue. I would recommend a constant review of your advertisers rotating links.
-
12-29-13 18:03 #40
Posts: 5310Google is full of shit! Switch to Internet Explorer.
Greetings Everyone,
Google has been erroneously reporting that the USASG forum contains malware.
We subscribe to a virus/malware scanning service that scans the USASG site every hour looking for viruses, malware and/or other security hacks on the forum. This service alerted us of the Google warning within minutes of Google's notice.
Our virus/malware scanning service immediately scanned our entire server and advised us that there is no virus or malware hosted on our website or the server itself.
As per Google's own report, THERE IS NO VIRUS or MALWARE on the UsaSexGuide website.
You may read the Google report at...
http://safebrowsing.clients.google.c...de.info/forum/
Please read the text in the middle of the Google report that states...
Originally Posted by google
My programmer and server admin are both working now to identify and remove the EXTERNAL LINK.
Let me repeat: According to Google's own report, the warning is DUE to a MALWARE ISSUE on ANOTHER WEBSITE.
We expect to have problematic links removed from the forum and functioning normally within a few hours.
Of course, it would be very helpful if fucking Google would tell us what is or where they found the link to the alleged malware website, but they are of no fucking use whatsoever.
The reality is that it's probably a redirected link, so we're only going to find it by clicking on every one of the thousands of links in the forum until we find the link that redirects us to the alleged malware website.
Google is a bunch of complete assholes posting these public warnings when they acknowledge that our website is clean of malware and without telling us what link is the problem.
Why don't they just blacklist the alleged malware website and leave it at that?
Anyway, I appreciate your patience in this regard.
Thanks,
Jackson
===========================================
-
12-29-13 09:15 #39
Posts: 575Blocked by Google
The attacks continue:
Category: Intrusion Prevention.
Date & Time, Risk, Activity, Status, Recommended Action, IPS Alert Name, Default Action, Action Taken, Attacking Computer, Attacker URL, Destination Address, Source Address, Traffic Description.
12/29/2013 8:11:38 AM, High, An intrusion attempt by rfdh14 ax. Pawnbrokermechanic. Pw was blocked.,Blocked, No Action Required, Web Attack: Nuclear Exploit Kit Website, No Action Required, No Action Required,"rfdh14 ax. Pawnbrokermechanic. Pw (198.50.139.129, 80)", rfdh14 ax. Pawnbrokermechanic. Pw /4 f5 Qc5 fa-1-e. The-ce-5 O7_3 Hc_7 e_d_1-ddT9 LfX9_3 Y18_eacd-/11/18 f9607831 be1 dc3 c3 e288 cb9 b9 dc19 c.html,"D9 FQLM21-see (10.0.0.3, 2700)",198.50.139.129 (198.50.139.129),"TCP, www. Http".
Network traffic from <be rfdh14 ax. Pawnbrokermechanic. Pw /4 f5 Qc5 fa-1-e. The-ce-5 O7_3 Hc_7 e_d_1-ddT9 LfX9_3 Y18_eacd-/11/18 f9607831 be1 dc3 c3 e288 cb9 b9 dc19 c.html</ be matches the signature of a known attack. The attack was resulted from \DEVICE\HARDDISKVOLUME2\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE. EXE. To stop being notified for this type of traffic, in the <be Actions</ be panel, click <be Stop Notifying Me</ be .
Google now blocks the site.
NC.
-
12-27-13 16:33 #38
Posts: 48Fake antivirus
If your antivirus dosent catch it it will install a fake antivirus program on your computer. I am running an old system with xp and IE8 and the malware installed an exe file in documents and settings / all users / application data. File can be deleted in safe mode.
-
12-27-13 16:05 #37
Posts: 2243Originally Posted by Spaceball1 [View Original Post]
-
12-27-13 16:02 #36
Posts: 261Originally Posted by DildoBaggens [View Original Post]
-
12-27-13 16:00 #35
Posts: 2243Exploit JavaScript Obfuscation
Originally Posted by DildoBaggens [View Original Post]
-
12-27-13 14:55 #34
Posts: 825Exploit JavaScript Obfuscation
I'm getting similar issues, Here is what AVG says:
JavaScript Obfuscation is a malicious code present on fraudulent websites or illegally injected on legitimate but hacked websites without the knowledge of the administrator. The intention behind these code injections is to detect and exploit vulnerabilities on applications installed on your computer to install malicious and unwated software that compromise the security of all data on the affected PC. JavaScript Obfuscation is currently ranked 50 in the world of online malware, affecting less than 100 users, in 199 countries.
Originally Posted by DetLurker [View Original Post]
-
12-27-13 14:20 #33
Posts: 77Norton Blocking a web attack on this site.
Just started getting this today:
Category: Intrusion Prevention.
Date & Time, Risk, Activity, Status, Recommended Action, IPS Alert Name, Default Action, Action Taken, Attacking Computer, Attacker URL, Destination Address, Source Address, Traffic Description.
12/27/2013 1:16:37 PM, High, An intrusion attempt by ujv2 f.explorerexporter. Pw was blocked.,Blocked, No Action Required, Web Attack: Nuclear Exploit Kit Website, No Action are.
-
11-30-13 22:11 #32
Posts: 628Originally Posted by BrianDvd [View Original Post]
-
11-30-13 09:21 #31
Posts: 13I didn't click any links. It just seemed to additionally automatically forward to a site claiming to be. From Cyber police t and that it captured data on computer and wire a money gram or you will be arrested (and that last part pretty much proved it was not legitimate). I couldn't stop the forwarding.. As soon as it got to the site it forwarded even when I tried to hit stop on browser. Tried different browsers did the same thing. All using a phone and not full computer. Was odd.
Originally Posted by SevaLurker [View Original Post]