Ebaybanned Problem

[Azulsky]

Chrome's built in protection is blacklisting it for me

[Andrew March]

If you have noscript installed on your machine you can identify the script that is bad on the site and block it from running.

[cpldave]

Hmmm interesting, I'm getting the warning too with Chrome, but I'm running Linux (so not a great deal of need for AV and malware software = none installed). That would suggest that Chrome has some kind of phone-home to Googles own malware checker.

 

TBH, I'm not sure what I dislike more, the fact that EBB is infected or that Google Chrome phones home without asking me beforehand :S

 

In either case +1 for the infection being detected. I'm sure if you Google EBB and then click the link it will already have been blocked by them. As Tom-843 said, it is being framed to something called JY-Closet. The server is probably a shared web-host and the JY-Closet site/user has been compromised and also infected any other sites on that server too. I'll probably never know, but it would be kool to find out if the SysAdmins of their server ever heard of SuExec or SELinux and why they thought that was a bad idea?

 

Cheers,

Cpl Dave.

[Warpix]

My McAfee Site advisor plugin seems to tell me nothing. On the other hand, AVG doesn't like this, it doesn't like this, not one bit *licks lips as if it were candy*.

 

Though EB says nothing about it being hacked, so maybe the owner isn't fully aware or addressing this? Or more likely wanting to keep this on the down low?

[Victory]

Sent Paul a message about this.

 

Just got a reply saying that it has been fixed.

 

-Vic

[mattmanic]

http://www.symantec.com/security_response/...-020915-1008-99

 

Ie. People that don't use Acrobat are fine even if they are infected. If you have Acrobat installed you're asking for trouble anyway really. It has *suitcase* loads of holes that they never seem to bother fixing.

[Vercingetorix]

Jar, just accidentally clicked on a ebb link, but I have a mac. problems?

[jond36]

My AVG didn't pick it up.

[mattmanic]

Trojan seems to have gone now. You should be safe

[DEVILHUNTER]

Mi AVG detected it this morning but only once

[DFM56]

NOD32 no longer detecting it. Looks like it's gone.

[Tom-843]

Yeah, It's definitely gone, I checked and the malicious frame is no longer there

 

It'll be safe to visit the site again now. I checked with Google Chrome too and it is no longer detecting the threat so the site is not reported for malware/trojans anymore

[FrostySnowman]

So it was not a real virus? I am using AVG Anti-Virus and the alert popped up two or three times (most recent about 10mins ago), but I just clicked ignore. When/if the alert pops up again, what should I do?

[The General]

So it was not a real virus? I am using AVG Anti-Virus and the alert popped up two or three times (most recent about 10mins ago), but I just clicked ignore. When/if the alert pops up again, what should I do?

 

 

NOT CLICK IGNORE!

[FrostySnowman]

It hasn't popped up in a while, do you think I'm OK? I clicked on the AVG Anti-Virus control center thing and it appears that everything is normal.

[The General]

It hasn't popped up in a while, do you think I'm OK? I clicked on the AVG Anti-Virus control center thing and it appears that everything is normal.

 

 

As has been mentioned it appears the site was hacked and has now been fixed.

 

You did however tell your antivirus to ignore the threat and let it right past your security... So I strongly suggest you update your antivirus software and run a full scan right now. Oh and AVG free is rubbish compared to something like NOD 32.

 

Antivirus is not something anyone wants to cheap out on, yet people do this so very often. Its the most important software on your computer next to the OS.

 

That and Malwarebytes is great for spyware. Go for the paid version of that as well.

[FrostySnowman]

Alright, I'll let my dad know that we need NOD 32 (I'm only 14 ).

 

The alert hasn't popped up recently. I'll run a full scan. Thanks for the help.