This site has a virus !

admin said:
We removed the threat on Tuesday and can find no trace of it.
Click to expand...



Can you explain how something like this happens? I'm presuming that there are a limited number of people who can upload (code) content to your site and that it is done through some secure method. I'm also presuming that the hosting company doesn't want any of the sites they host to be sending malware to site visitors...so how does something like this happen?
 
Sorry, admin, got up this morning and hit the "What's New" button and my NIS went crazy:



Risk Name: HTTP Malicious Toolkit Variant Activity 12

Attacking Computer: browserservices.in (159.148.117.21, 80)

The attack was (sic) resulted from \DEVICE\HARDDISKVOLUME3\PROGRAM FILES\JAVA\JRE6\BIN\JAVA.EXE

and

Risk Name: MSIE CrimePack Toolkit JavaClass Variant

Attacker URL: http://www.autopia.org/forum/search.php?searchid=447385

and

Risk Name: MSIE Java Deployment Toolkit Input Invalidation

Attacker URL: http://www.autopia.org/forum/search.php?searchid=447385



This is a HUGE problem.
 
Just for safety sake Setec, make sure your Java is up to date. Go to control panel, java icon and tell it to update. I know there was a version of Java that allowed for unauthorized code execution a while back. That'll help secure your system more, but it's no excuse for this problem to still exist.



I'm on a Mac at home, so I don't see any 'problem' at the moment.
 
Thanks, Fluxy, I've been doing a "remind me later" on that Java update...I really get into that "if it ain't broken, don't fix it" when everything is running well.
 
Flux......



I also have a mac, and so far I haven't seen a problem..... Keep me posted if you do.



This virus messed up my work comp pretty bad! I'm perplexed why no admin has responded to this thread, makes me wonder if they give a crap??



NOT cheery

greg
 
Firefox just gave me a unsafe url warning for autopia.



lg037.png






There was some plotecco.co.cc stuff in the forum index, I saw it the other day trying to figure out what was causing the problems but when I googled it nothing came up so I wasn't 100% sure that was where it was coming from but this seems to confirm it.
 
I've not seen anything pop up on my end, nor any odd computer behavior.



I run firefox with adblock, so perhaps that is saving me.



Just now, when trying to get on the forum (just a direct link to the forum itself - it's how I have the site bookmarked), firefox would not let me access the site until I disabled "block reported attack sites" from the securities tab in options. However, that function doesn't have anything to do with my actual computer or current session.



However, stuff like this does make me further consider that 200-300% premium to become a mac fanboy.
 
Yeah, I get the same Firefox warning and I can't get the site to open in Firefox. I'm using IE8 just to view the board right now.
 
+1, I was going to reply I got here with Google Chrome, but when I went to reply Google locked up with Malware warnings. I too am using IE8 to view the board.
 
Firefox keeps blocking the page and telling me I should leave it as it has been reported to be full of "badware". When I ignore the warning, the site will not load correctly and the only thing I get is a very basic HTML layout without any graphics or proper tables (all the content is justified to the left).
 
I really like this site, well i did, until all of the "new" and "improved". So far we've had a whole lot of new, but not so much improvement. I'm curious why the admin hasn't piped up with and apology and assurance that the virus is going to be eliminated. This site used to be a great resource for all of my detailing questions and i could stay on here for hours. Now it's just getting to be a big Pain in my arse. Google even tells me this site my harm my computer. GREAT JOB ON THE TAKE OVER AND RUIN OF AUTOPIA!
 
Well I signed on this morning only to get a warning from Firefox that it was a malicious site with 7 infected Trojans. Not good. Last thing I need is a virus. Hope the site admin addresses this ASAP.





Sent from my iPhone using Tapatalk
 
My PC at the office got trashed while logging into Autopia, some trogan virus software that was trying to delete all my programs. Office IT took two days to restore my OS...
 
Safe Browsing

Diagnostic page for autopia.org



What is the current listing status for autopia.org?

Site is listed as suspicious - visiting this web site may harm your computer.



Part of this site was listed for suspicious activity 3 time(s) over the past 90 days.



What happened when Google visited this site?

Of the 449 pages we tested on the site over the past 90 days, 98 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-08-29, and the last time suspicious content was found on this site was on 2010-08-29.

Malicious software includes 7 scripting exploit(s), 7 trojan(s), 5 exploit(s). Successful infection resulted in an average of 3 new process(es) on the target machine.



Malicious software is hosted on 7 domain(s), including plotecco.co.cc/, autourl.in/, browserservices.in/.



1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including plotecco.co.cc/.



This site was hosted on 2 network(s) including AS31815 (MEDIATEMPLE), AS26496 (PAH).



Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, autopia.org did not appear to function as an intermediary for the infection of any sites.



Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.



How did this happen?

In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.



Next steps:

Return to the previous page.

If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.
 
Got another attempt at malware self-installation this morning when I logged on. I've had to seriously restrict my visits to the site, and from now on (until the matter is said to be resolved), I'm only going to be using my iPad to surf Autopia.
 
I was attacked running firefox and xp on my laptop. FUBARd and i mean FUBARD my system. I was able yo remove most of it after 3 hours of trials and tribulations. I still have a browser hook that im working on. Tapatalk is good for now. Haven't been on at all lately anyway but that one day two weeks ago was friggin awful.



Sent from my DROIDX using Tapatalk
 
Can someone post on Detailcity.org when this virus is fixed. I seriously messed up my computer and so I used my MAC. What I did not realize is that my Mac did not get sick, but I sent an e mail to my office from my MAC and the virus flowed over there? How do I clean my MAC of that?
 
You must log in or register to reply here.
Back
Top