Author Topic: AVG says Geekhack infected! (Read 2474 times)

Mr. C · « **on:** Wed, 29 February 2012, 16:09:46 »

Sorry, I'm too new here to know the Geekhack admin's email. AVG is reported Geekhack.org is infected with Exploit Blackhole Exploit Kit. Bruce Schneiner's web page indicates that is a genuine exploit of PHP/MySQL websites.
Michael

Mr. C · « **Reply #1 on:** Wed, 29 February 2012, 22:28:23 »

Looks fine now. I am really enjoying geekhack.org. Thanks for the community.

reaper · « **Reply #2 on:** Wed, 29 February 2012, 22:48:24 »

Get used to it cuz it'll happen again and welcome to Geekhack! :wave:

Wildcard · « **Reply #3 on:** Thu, 01 March 2012, 01:19:59 »

URLVoid & Virustotal came back with good results.

Avira    - Clean site
BitDefender     - Clean site
CLEAN MX    - Clean site
G-Data    - Clean site
Google Safebrowsing   - Clean site
Malc0de Database   - Clean site
MalwareDomainList   - Clean site
Opera    - Clean site
ParetoLogic     - Clean site
Phishtank    - Clean site
SCUMWARE.org    - Clean site
SpyEyeTracker    - Clean site
TrendMicro    - Clean site
URLQuery    - Unrated site
VX Vault    - Clean site
Websense ThreatSeeker- Clean site
Wepawet    - Unrated site
Yandex Safebrowsing   - Clean site
ZeusTracker    - Clean site

Unless you see your browser redirecting you to other websites on GH, it's most likely a false positive.

Then again those Russians are sneaky!

Edit: looks like iMav did something to resolve the problems.... hmmmmm

Roguemaster8 · « **Reply #4 on:** Thu, 01 March 2012, 02:14:52 »

I kept getting this pop up from Kaspersky.

[ Attachment Invalid Or Does Not Exist ] 42282[/ATTACH]

Trojan Man!

FinancialWar · « **Reply #5 on:** Thu, 01 March 2012, 06:45:50 »

got the same warning from Google.

BobbyUK · « **Reply #6 on:** Thu, 01 March 2012, 06:47:57 »

Same here, keep getting the message "JS/iframe.BQ.trojan"

WhackCheese · « **Reply #7 on:** Thu, 01 March 2012, 09:06:21 »

FinancialWar · « **Reply #8 on:** Thu, 01 March 2012, 14:38:59 »

must be ripster's trolling posts that caused all of this.

Shogunner · « **Reply #9 on:** Fri, 02 March 2012, 13:31:53 »

Bleh, I get security warnings on chrome too.

http://safebrowsing.clients.google.com/safebrowsing/diagnostic?site=http%3A%2F%2Fgeekhack.org%2F&client=googlechrome&hl=en-US

Quote

Of the 471 pages we tested on the site over the past 90 days, 25 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2012-03-02, and the last time suspicious content was found on this site was on 2012-03-02.
Malicious software includes 16 trojan(s), 3 scripting exploit(s), 2 exploit(s). Successful infection resulted in an average of 17 new process(es) on the target machine.

Malicious software is hosted on 2 domain(s), including fraumpo.com/, h2x.ftp1.biz/.

1 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including goodshop.cc/.

This site was hosted on 1 network(s) including AS30691 (LLDC).

News:

Author Topic: AVG says Geekhack infected! (Read 2474 times)