Browser Says Site Has Malware

**discostig** · 17/09/10 03:31 PM

In regards to browser redirection I can advise a good starting point is to use combofix and MBAM

www.malwarebytes.org/mbam.php

Bleeping Computer Downloads: ComboFix Download

I've seen rare cases where the PC dies on the operating table when uninstalling malware but it's rare. In short - at your own risk!

Combofix aint pretty but it does a bloody good job. MBAM is slicker with a GUI and all and also does a good job.

YOB POM · 17/09/10 07:47 PM

so this is where I picked up surveys.cnet.com trojan?

John.

Banned1 · 17/09/10 11:14 PM

here's what I get ! and I am not pc savvy so dont know about all this stuff ...I have run malware bytes and pc is good so far but dont want a melt down later because of this !

our06t · 18/09/10 03:30 AM

still getting exploit java ,messages every time I run security essentails ,not good definatly picking up infections from here.

**bjc** · 18/09/10 04:46 AM

still getting exploit java ,messages every time I run security essentails ,not good definatly picking up infections from here.

Did you go to the folder in my previous post? Just right click on the Java folder and scan with security essentials, click clean computer in security essential when it has finished scanning the folders then it should not pick it up again in future scans.

If you do a normal scan with security essentials it seems to only pick up 2 of the 4 exploits?

our06t · 18/09/10 05:14 AM

where not even there if you google the site now rapids price list link comes up that's it

I use fire fox and it wont let you do anything every time you move it blocks the site.

removed the java bug 3 times now but still having issues

and no bjc tried looking for it your way but no luck are you using windows7 ?

**Adam** · 18/09/10 05:19 AM

Can't find that location on Win 7.

Norton 360 and Spybot haven't found anything on my PC.

I can't post from my PC. I have to do this from my iPhone.

our06t · 18/09/10 05:34 AM

you can get windows essentials security as a free ad on for win7, it might stuff up your norton though.

this is what I get from it

Microsoft

Microsoft Malware Protection Center Malware Protection Center

Threat Research and Response

Sign In

Having trouble signing in?

* Get the latest definitions

o Microsoft Forefront

o Microsoft Security Essentials

o Windows Live OneCare

o Windows Defender

o Definition change log

* Learn more about malware

o Research malware

o Active malware

o Additional tools and resources

o Guidance and advice

o News and events

o Research papers

o Security Intelligence Report

o Glossary

o MMPC blog

* Submit a sample

o Submit a sample

* Learn about us

o Who we are and what we do

o Awards and certifications

Skip Navigation LinksHome > Learn more about malware > Research Exploit:Java/CVE-2009-3867.JF

Alert level

Exploit:Java/CVE-2009-3867.JF

(?)

Encyclopedia entry

Published: Sep 10, 2010

Aliases

Not available

Alert Level (?)

Severe

Antimalware protection details

Microsoft recommends that you download the latest definitions to get protected.

Detection initially created:

Definition: 1.89.1411.0

Released: Sep 10, 2010

Summary

This threat is detected by the Microsoft antivirus engine. Technical details are not currently available for this threat.

Top

RSS | Blog | Help

Terms of use | Trademarks | Privacy statement

**Adam** · 18/09/10 05:47 AM

Thanks.

My PC hasn't popped up with anything. I'm just having issues on this forum. Everything else works fine.

I'm scanning the entire C drive with Security Essentials now.

our06t · 18/09/10 05:57 AM

google looks like it's test has come up clear , but still can't acess through firefox and we still don't come up on the first two pages on google IE , we were always in the top half of first page.

googles message as of 5mins ago

What is the current listing status for fordxr6turbo.com?

Site is listed as suspicious - visiting this web site may harm your computer.

Part of this site was listed for suspicious activity 1 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 241 pages we tested on the site over the past 90 days, 15 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-09-17, and the last time suspicious content was found on this site was on 2010-09-16.

Malicious software is hosted on 3 domain(s), including demparten.com/, kovertums.com/, blamesllek.com/.

This site was hosted on 1 network(s) including AS21844 (THEPLANET).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, fordxr6turbo.com appeared to function as an intermediary for the infection of 2 site(s) including myaquarium.com.au/, xr6turboforums.com/.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

How did this happen?

In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

Next steps:

Updated 21 hours ago

Edited 18/09/10 06:00 AM by our06t

Sign In

Browser Says Site Has Malware

Recommended Posts

Link to comment

Share on other sites

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Link to comment

Share on other sites

Recently Browsing 0 members