trojan/malware warning (merged threads)

macafee, sucks, malware bytes picked up two trojans but im not sure if they will reappear since this particular bug seems to replicate itself under different randomly generated names constantly

new update in the legit windows update, windows malicious software remover

 

Case and Point about System Restore and worms working their way into them. The gift that keeps on giving...

 

No problems here yet. I have kapersky, use the Ad block stuff as well. Also current on all the windows and Java updates.

 

Same here on my wife's PC laptop.

 

yep running my full system scan tonight. Also malwarebytes worked well too!

 

the trojan or malware could be a post, attachment or a infected vbulletin file. Someone needs to take a look at it and deal with this situation, had a small talk with the group after the turnbull ride and did not realize it was that bad until then. So far i have been getting it most under the Ride Report forum.

1. Check Vbulletin AdminCP - run the suspected file versions under diagnostics.
2. Run scan on server side, should be able to show infected files if its up to date.
3. Check the plugins and anything that uses (global_start)
4. Update forum software

-----
What is the current listing status for socaltrailriders.org/forum/ride-reports?
Site is listed as suspicious - visiting this web site may harm your computer.

What happened when Google visited this site?
Of the 8 pages we tested on the site over the past 90 days, 2 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-06-23, and the last time suspicious content was found on this site was on 2010-06-23.
Malicious software includes 2 exploit(s), 1 trojan(s). Successful infection resulted in an average of 3 new process(es) on the target machine.

Malicious software is hosted on 2 domain(s), including dubuli.in/, bugedi.in/.

1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including creabec.co.cc/.

This site was hosted on 1 network(s) including AS30496 (COLO4).

Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, socaltrailriders.org/forum/ride-reports did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.

How did this happen?
In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

 

Google reports STR as a reported atack page!

Here is what I got this AM.
Maybe someone needs to know??

http://safebrowsing.clients.google....g/forum/ride-reports/51925-holy-jim-ride.html

 

When I clicked on Brought back a friend from CHSP Windows 7 said no it's an attack page. Amazing irony. (Firefox as browser)

 

Same thing with http://www.socaltrailriders.org/forum/ride-reports/51925-holy-jim-ride.html#post757435 :?:

 

mines giving it to me for the whole ride report forum...

 

http://www.socaltrailriders.org/forum/website-discussion/51815-trojan-warning.html

 

This is all so interesting. I haven't had a single incident with any of these mentioned issues. I am using FF (v 3.6.4), Win7 64 (all current) & Norton 360 (v. 4.2.0), which has come a long ways, uses very low overhead & is very effective.

 

I can't click on the RR forum or any threads from the main page that tied to the RR forum. I can chose to go around it and continue, each click gives me a new warning.

(safari Version 5.0 (6533.16) on a mac - this is a virus issue not a platform war - thanks for killing the bs thread Craig)

I'm sure you guys have enough info now to get patches started...time to get back to work. :wave:

 

This is what Nod32 does when going to the Ride Report forum. Win 7, safari browser.

Dean

 

Same here with Win.7. Using AVG and id expect to be alerted if anything was suspect. Strange

 

I'm running Trend Micro OfficeScan on IE 7, no problems here.

 

Same setup here. I even ran Malwarebytes and MSE and Ad Aware and no trojans here.

 

For those that are having problems, are you current with Windows and Java updates?

 

Yes brand new windows 7 install 4 days ago with all new updates. The bug is there maybe George needs to turn off all advertisements until the offending 3rd party ad is identified.

Dean

 

I'm running a completely up to date Mac OSX machine.
Firefox 3.6.3
Block Reported Attack sites is on
Adblock plus 1.2
Flashblock 1.5.13
Noscropt 1.9.9.87

Seems that Google is reporting the issue and my security settings throw the warning.

Safari 5.0 does not complain with default settings.