bluebooze.ru ads on ECCIE

[GBN94]

One of your advertisers ads are throwing up red flags all day today whenever one visits a page within any of the forums. It ends up requiring the user to be asked if its okay to proceed to the page. This is in Chrome but i am sure people using certain anti virus software are also getting it

The website at www.eccie.net contains elements from the site bluebooze.ru, which appears to host malware – software that can hurt your computer or otherwise operate without your consent. Just visiting a site that contains malware can infect your computer.

[Mokoa]

The staff and the developers are aware of the issue and are working on it at this time.

[fidelpot]

the thing that is sad about this is that, like aspd, there will be hackers going at this site constantly. and they will win. not because a site like this is hard to manage, but because it is outdated, like aspd was. its running an old version of vBulletin (v3.8.1), which is an easy target for hacking.

a published xss exploit has been around for around a year. not that i would, but i could hack this site in about a day, causing all kinds of havoc.

you guys work hard on this site, obviously. but a lot can still be done to ensure security.

[Marcus78]

It appears they fixed it now. It also appears the banner at the top of the page is gone, maybe that was where the leak emerged from?

[fidelpot]

again, nothing is fixed. the site is wide open to attack.

http://forum.intern0t.net/exploits-v...scripting.html

"An XSS flaw within the editor controls has recently been discovered. This could allow an attacker to carry out an action as a user or obtain access to a user's account."

so, add this to my last post: a hacker could gain access to user, admin and owner accounts vis this xss exploit. happy surfing everyone.

[DianaDeepthroats]

I thought I was the only one... My computer actually made it so that I could not use ECCIE anymore.. blocked off the site.. had to use IE to post this.
------------------------------------------------------

Safe Browsing

Diagnostic page for eccie.net


What is the current listing status for eccie.net?

Site is listed as suspicious - visiting this web site may harm your computer.
Part of this site was listed for suspicious activity 2 time(s) over the past 90 days.

What happened when Google visited this site?

Of the 161 pages we tested on the site over the past 90 days, 25 page(s) resulted in malicious software being downloaded and installed without user consent. The last time Google visited this site was on 2010-09-18, and the last time suspicious content was found on this site was on 2010-09-17.Malicious software is hosted on 1 domain(s), including bluebooze.ru/.
This site was hosted on 2 network(s) including AS19066 (WIREDTREE), AS13768 (PEER1).

Has this site acted as an intermediary resulting in further distribution of malware?

Over the past 90 days, eccie.net did not appear to function as an intermediary for the infection of any sites.

Has this site hosted malware?

No, this site has not hosted malicious software over the past 90 days.

How did this happen?

In some cases, third parties can add malicious code to legitimate sites, which would cause us to show the warning message.

[DianaDeepthroats]

Somehow, I doubled posted... gay.

[zont]

if it says ".ru", I dont go there. And sometimes it is really tough NOT to go there... 'Cause my avatar lady is a ".ru" type of gal.

[Mokoa]

The "reported site" error means that the site in question is on some kind of list of reported sites. There is nothing wrong with the site itself, but now there is the task of getting off of that list. It is not instantaneous.

[noway]

installed OPERA, used opera search for eccie; result was no warning for bluebooze on any pages, (so far). hope this helps

[Mokoa]

A caveat for all of you...

It takes a while before all of the various browsers become aware of the update to the "reported sites" list that added this site to the list. That is why some browsers have the issue and some do not. When the issue was first reported the browser I use, Firefox, had no issue. It took over 24 hours before I started experiencing the issue. By that same token, it may take a while before all of the browsers become aware the update to the "reported site" list that removes this site from the list.

[Humpty Dumpty]

This has been a problem for me regardless of which browser I use.

[GBN94]

Quote:

Originally Posted by Marcus78

It appears they fixed it now. It also appears the banner at the top of the page is gone, maybe that was where the leak emerged from?

still happening for me

[repairman]

My Firefox warns not to visit site. IE goes right thru.

[Maggie McNeill]

...instead, it let the malware through and crashed my computer. Cost me $175 to get it fixed and I'm still trying to get everything back to normal.