Jump to content
Login with your Gmail HERE and start posting in seconds! ×
Don't just read! Be part of the Community! Join the conversation ×

Virus On Pattayadailynews.com?

Maestro

By Maestro
in IT and Computers

 Share

Recommended Posts

Maestro Star Member

Maestro

Posted
Posted

Posts in the topic “Australian Woman Abducted And Gang Raped In Pattaya, Police claim "victim" lied” contain the following two links:

http://www.pattayadailynews.com/shownews.p...NEWS=0000005128

http://www.pattayadailynews.com/shownews.p...NEWS=0000005137

When I clicked on these links I got the following virus reports:

post-21260-1203410019_thumb.png post-21260-1203410035_thumb.png

I did what the warning message suggested and clicked on “Abort connection”

No poster in that topic has mentioned this problem, which seems to indicate that it is unique to my computer. Is it possible that my Avast anti-virus program has made a false report?

--

Maestro

Guest Reimar

Guest Reimar

Posted
Posted
Posts in the topic "Australian Woman Abducted And Gang Raped In Pattaya, Police claim "victim" lied" contain the following two links:

http://www.pattayadailynews.com/shownews.p...NEWS=0000005128

http://www.pattayadailynews.com/shownews.p...NEWS=0000005137

When I clicked on these links I got the following virus reports:

post-21260-1203410019_thumb.png post-21260-1203410035_thumb.png

I did what the warning message suggested and clicked on "Abort connection"

No poster in that topic has mentioned this problem, which seems to indicate that it is unique to my computer. Is it possible that my Avast anti-virus program has made a false report?

--

Maestro

Hi

It's a false positive, so don't need to be worry! Checked with 5 different scanners beside of Avast!

Cheers.

opalhort Platinum Member

opalhort

Posted
Posted

Yes, it appears to be a false positive.

My Avast picked it up as well.

post-3742-1203414293_thumb.jpg

A scan with Avast and AVG after clicking on the link confirmed the PC to be clean, but I'm not brave enough to switch off all protection and try again.

opalhort

klikster Platinum Member

klikster

Posted
Posted

I wonder if they got infected with the irame exploit and the AV is picking up that. Several servers at some large datacenters (and all of my sites) got his somehow. It's an iframe that apparently either tracks or injects something into a user's page. It was first touted as a Wordpress exploit, but went far beyond WP.

My pages had the <iframe ...> code between the </head> and <body> tags on every index.* page on the server .. including all the Apache man pages. The code was also in a number of "footers" and "signup.php" files.

Richard-BKK Platinum Member

Richard-BKK

Posted
Posted

The problem is that Russian scripty kids found a way to use a exploration in CSF, a firewall that is used by many hosting companies.

If your hosting provider has this problem send them a email that they have to install the latest security fix for there CSF installation. Without this security fix, it is possible to execute scripts as root (administrator) on the server.

CSF stands for ConfigServer Firewall, if any problems or questions I would be happy to help

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.






ASEANNOW

ASEANNOW (formally ThaiVisa) is Thailand's oldest and most popular expat and foriegner forum. Sign up today and have your say!

MORE INFO

POPULAR AREAS

CONTACT US

219/59 Asoke Towers, 15th Floor, Soi Sukhumvit 21, Watthana, Bangkok 10110
(+66) 99 196 1100
[email protected]

×
×
  • Create New...