Currently getting Hack Attacked

[Congadawg]

EF full of trojans??

Starting tonight, every time I go to ANY page on EF, I get a message from my browser saying EF is on googles "Attack Site" list and it wont let me proceed without clicking on "ignore this warning." When I click on "Why am I getting this message." It gives me these results.

https://www.planetcalypsoforum.com/...ry&cp=vbgallery&e=vB_Editor_001&code=&page=2#

Crazy stuff....

 

[Congadawg]

Sorry.. image linked wrong, but its the white box of text in the center. I'm gonna have to figure this out before I come back because that message popping up on every single page is getting far too annoying.

 

[Blake Seven]

There have been "issues" with the site, but as far as I am aware the search function was unaffected

 

[Anzak]

Im getting the same message

 

[Suu Miles]

Yup. Me too. Running ef with google chrome I get the malware thingy, with firefox it seems to be ok.

 

[Danton]

Those browser warnings are still happening because Firefox references Stopbadware.com's list of suspicious sites, which is not maintained in real-time.
........

Thanks for this Info

 

[psychnosiz]

nvm, found the correct topic with 711's reply

 

[Blake Seven]

Big thread about it all here, including all the actions that 711 has taken.

https://www.planetcalypsoforum.com/...m/183428-currently-getting-hack-attacked.html

 

[711]

Im getting the same message

You have the option of temporarily disabling the "Block reported attack sites" while browsing EntropiaForum in Firefox, under the Tools -> Options -> Security menu. Just be sure to re-enable this option after your EF visit, or when you plan to visit other sites.

As I explained earlier in this thread, I am making every possible effort to get the entropiaforum.com domain re-reviewed, and removed from the 'dangerous sites' list at Stopbadware.com, so that the Firefox and Chrome warnings no longer appear.

Thanks for your patience.

 

[Dusk]

It was a shock to get this warning in Firefox for the first time today.

I'll await developments with interest.

 

[garci]

i don't have any antivirus, do i have to make a check with one then ?

 

[thoeri]

Im getting the same message to day at 9:10 CT

 

[jovenos]

yesterday has no problem
but today i have the same problem . I 'm using Firefox and NOD32

 

[jenny ferr]

You have the option of temporarily disabling the "Block reported attack sites" while browsing EntropiaForum in Firefox, under the Tools -> Options -> Security menu. Just be sure to re-enable this option after your EF visit, or when you plan to visit other sites.

Seems to be ok now, I just put on the "Block reported attack sites" and restarted the browser right to my User CP and no warning at all.

And I did scan my computer with AV and Spybot last night, turned up nothing

Did the same this morning but in windows safemode, just to be on the safe side and nothing found there either.
And always make sure your AntiVirus are running and are updated, for example sometimes my AV updates several times/day


Edit: I was just going to say I didn't get the warning even tho I activated "Block reported attack sites" but then when I was going to post, ofc that big ugly red screen prevents me from doing so...

But just disable it and everything should be fine

I did a manual scan with my AV and spybot last night and then this morning I did the same in windows Safemode and both turned up perfectly fine.

Always make sure your AV is running and are updated, as example sometimes my AV update several times/day

 

[jenny ferr]

double post due to that big ugly red warning page lol
so just remove this one

 

[Danton]

Also thought all is Ok now, then in this moment the following appears:

======
Malware https://www.planetcalypsoforum.com/forums/customavatars/avatar277_7.gif
Malware https://www.planetcalypsoforum.com/forums/images/SC/misc/activity/activity5.gif
Malware https://www.planetcalypsoforum.com/forums/images/SC/misc/activity/long20.gif
Malware https://www.planetcalypsoforum.com/forums/signaturepics/sigpic277_8.gif
=========

Didn't know if this is another problem or just another form of what 711 said already is fixed.

 

[Commodore]

Someone loaded something nasty into the gallery then reported us? Maybe the competition is playing dirty

 

[cheffie]

http://www.stopbadware.org/home/rev...m/183428-currently-getting-hack-attacked.html

 

[711]

Im getting the same message to day at 9:10 CT

yesterday has no problem
but today i have the same problem . I 'm using Firefox and NOD32

Someone loaded something nasty into the gallery then reported us? Maybe the competition is playing dirty

http://www.stopbadware.org/home/rev...m/183428-currently-getting-hack-attacked.html

Since it appears many people are not actually reading the thread before posting, I will repeat the post I made earlier:
___________________________________________________

Those browser warnings are still happening because Firefox references Stopbadware.com's list of suspicious sites, which is not maintained in real-time.

The entropiaforum.com domain was listed in Stopbadware's database of problematic websites due to the issues that happened yesterday, and which were resolved quite a few hours ago.

EntropiaForum is scheduled for an updated review by Stopbadware, as can be seen here:
http://www.stopbadware.org/reports/7d25fbe2410ccaf8cc9f432274dfd69a

Stopbadware review of entropiaforum.com/ in progress as of Mar 21st 2010​

Also, I have submitted a similar review request to Google's Safe Browsing diagnostic tool (which is also one of Stopbadware's data suppliers).

Once those two reviews come back clean, I expect that the warnings appearing in Firefox will cease.

If you want a bit of reassurance that the EntropiaForum website is now once again completely safe, please feel free to test any EF page using McAfee's real-time SiteAdvisor tool, which scans the requested URL for malware or other harmful content each time the form is submitted:

http://siteadvisor.com/sites/entropiaforum.com

 

[DoctorBo]

yep, it works fine now on FireFox.

 

[khaos]

yep, it works fine now on FireFox.

I confirm this, no warnings anymore

 

[ChairmanEdgewise]

Malware detected on EF?

I'm not really sure where to post this, but does anyone else see these messages lately popping up at EF?


https://www.planetcalypsoforum.com/forums/members/langetobias-albums-2947-25392.html





Some info from google about it:

Safe Browsing
Diagnostic page for www.entropiaforum.com/forums

What is the current listing status for www.entropiaforum.com/forums?
This site is not currently listed as suspicious.

Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.

What happened when Google visited this site?
Of the 24 pages we tested on the site over the past 90 days, 3 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-03-21, and the last time suspicious content was found on this site was on 2010-03-20.
Malicious software includes 3 trojan(s). Successful infection resulted in an average of 2 new process(es) on the target machine.

Malicious software is hosted on 1 domain(s), including waycity.net/.

2 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including hyperconnect.com/, ads.is/.

This site was hosted on 1 network(s) including AS36351 (SOFTLAYER).

Has this site acted as an intermediary resulting in further distribution of malware?
Over the past 90 days, www.entropiaforum.com/forums did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?
No, this site has not hosted malicious software over the past 90 days.

Next steps:
Return to the previous page.
If you are the owner of this web site, you can request a review of your site using Google Webmaster Tools. More information about the review process is available in Google's Webmaster Help Center.

 

[711]

Update

EntropiaForum.com has been removed from StopBadware's list of dangerous sites:

StopBadware closed a review due to partners no longer reporting entropiaforum.com/ on Mar 21st 2010
Review requested: Mar 21st 2010
Review closed: Mar 21st 2010
Review status: Closed - URL no longer reported by StopBadware partners​

http://www.stopbadware.org/reports/7d25fbe2410ccaf8cc9f432274dfd69a


Google Safe Browse also has updated its assessment of EntropiaForum:

What is the current listing status for www.entropiaforum.com/forums?

This site is not currently listed as suspicious.​

http://www.google.com/safebrowsing/diagnostic?site=https://www.planetcalypsoforum.com/forums/

This should mean that Firefox will no longer display those annoying security alerts when visiting EntropiaForum.com.

 

[Moksha]

All OK now.

 

[DaveFoz]

Had it ealier when using Laptop with Vista on.

Do not get it on Tower with Win XP 64 Bit

Both have same anti virus.

So have no idea why i see that on 1 and not the other.

Oh and using search would have found you a few other topics which are the same as well

 

[Neuromancer]

It would be interesting to find out if it was a random hack or something else.

 

[StygMa]

Yup, got the same message two days ago

 

[ChairmanEdgewise]

Oh sorry about that.. will go make a search again then

 

[711]

It would be interesting to find out if it was a random hack or something else.

OpenX is the most widely-used ad management software on the internet and is run on millions of websites. The security vulnerability was exploited on a large number and wide array of websites, including some extremely high-traffic mainstream sites.

Part of the problem also seems to be a weakness in Adobe Reader add-ons installed in many broswers.

 

[skogen]

Yup I got it too. Kinda concerning to be honest....